CSO Online

JumpCloud agent turns uninstall into a system shortcut

The bug lets attackers with local access elevate to “system” or destabilize machines through unsafe privilege file operations ...
CSO Online

The devil of proposed SEC AI disclosure rule is in the details

The proposed rule from an SEC committee will force CIOs, CISOs, and other execs to analyze and report all manner of AI ...
CSO Online

The Raspberry Pi wakeup call: Why enterprises must rethink physical security

Analysts argue that many enterprises cut corners in physical security that they would never consider in the virtual world, ...
CSO Online

Microsoft warns MSMQ may fail after update, breaking apps

A security update issued on December Patch Tuesday changes the MSMQ security model, causing failures in programs ranging from ...
CSO Online

‘Ink Dragon’ threat group targets IIS servers to build stealthy global network

A Chinese-linked threat group identified as “Ink Dragon” is targeting common weaknesses in Internet Information Services (IIS ...
CSO Online

Russian APT group pivots to network edge device misconfigurations

According to Amazon’s telemetry, the group’s infrastructure has overlaps with Sandworm, a group also known as APT44 and ...
CSO OnlineOpinion

Demystifying risk in AI

AI can supercharge work, but without guardrails it can mislead fast — so humans, governance and smart frameworks still need ...
CSO Online

The mistold story of a software failure that grounded 6,000 jets

The impact on the Airbus A320 fleet and the airlines that have deployed them would be widespread. Potentially, 6,000 planes ...
CSO Online

‘Featured’ Urban VPN caught stealing private AI chats

The browser extension injects scripts to capture AI prompts and responses even when the VPN features are disabled.
CSO Online

How to create a ransomware playbook that works

Planning, tabletops, and the right skills and training are vital to being prepared for one of the most prevalent business ...
CSO Online

FortiGate firewall credentials being stolen after vulnerabilities discovered

Arctic Wolf says last week’s revelation of authentication holes is leading to attacks on unpatched Fortinet devices.
CSO Online

The 5 power skills every CISO needs to master in the AI era

AI is changing the game fast, and the CISOs who’ll thrive are the ones who think deeper — turning data, communication and ...