News

CSO Online18h
Iranian cyber threats overhyped, but CISOs can’t afford to let down their guard
Fears of Iranian retaliation in cyberspace surged after US and Israeli military strikes on Iran, but experts say the risk is ...
CSO Online12h
New ‘Echo Chamber’ attack can trick GPT, Gemini into breaking safety rules
A novel jailbreak method manipulates chat history to bypass content safeguards in large language models, without ever issuing ...
CSO Online17h
The CISO’s 5-step guide to securing AI operations
Security leaders must become AI cheerleaders, risk experts, data stewards, teachers, and researchers. Here’s how to lead your ...
CSO Online1d
10 tough cybersecurity questions every CISO must answer
From anticipating new threats to balancing risk management and business enablement, CISOs face a range of complex challenges ...
CSO Online1d
Turning evasion into detection: Varonis Jitter-Trap redefines beacon defense
In a landscape of AI-proof malware and modular C2 kits, Jitter-Trap brings statistical rigor to catching post-compromise ...
CSO Online6d
WormGPT returns: New malicious AI variants built on Grok and Mixtral uncovered
Cybercriminals are hijacking mainstream LLM APIs like Grok and Mixtral with jailbreak prompts to relaunch WormGPT as potent ...
CSO Online4d
GitHub hit by a sophisticated malware campaign as ‘Banana Squad’ mimics popular repos
Attackers use typo-squatting, obfuscation, and fake accounts to slip Python-based malware into open-source projects, raising ...
CSO Online4d
Chain IQ data theft highlights need to oversee third party suppliers
Firm says hack on 19 companies came from ‘tools and techniques that had never before been seen on a global scale.’ ...
CSO Online4d
IBM combines governance and security tools to solve the AI agent oversight crisis
With AI agents multiplying across enterprises, IBM’s watsonx–Guardium integration aims to provide unified AgentOps visibility ...
CSO Online6d
GitHub Actions attack renders even security-aware orgs vulnerable
Many open-source repositories contain privileged GitHub Actions workflows that execute untrusted code and can be triggered by ...
CSO Online5d
Third-party risk management is broken — but not beyond repair
TPRM today prioritizes fear of penalty over pursuit of real security. By investing in a comprehensive, targeted approach, ...
CSO Online5d
Phishing campaign abuses Cloudflare Tunnels to sneak malware past firewalls
The last option is to get Cloudflare itself to block the abuse. That might be successful as long as the company conducts ...