News

CSO Online17m
Secure by Design is likely dead at CISA. Will the private sector make good on its pledge?
CISA’s high-profile proselytizing of its Secure by Design program will likely end, but some experts think the idea still has ...
CSO Online2h
Huntress expands ITDR capabilities to combat credential theft and BEC
The identity-based improvements target rogue applications, credential theft, and BEC attacks while fully managed SIEM adds to ...
CSO Online11h
Reporting lines: Could separating from IT help CISOs?
CISOs who report to the CFO find that the shift away from IT can improve their ability to translate risk into business terms, ...
CSO Online2d
SAP NetWeaver customers urged to deploy patch for critical zero-day vulnerability
The unrestricted file upload flaw is likely being exploited by an initial access broker to deploy JSP web shells that grant ...
CSO Online4d
RSA Conference 2025 — News and analysis
Whether you're attending RSA this year or watching from a distance, follow this page for the latest news on keynotes, product announcements and more.
CSO Online4d
10 key questions security leaders must ask at RSA 2025
Agentic AI, platform hype, identity management, and economic uncertainty will dominate the RSA agenda. But discussions with ...
CSO Online3d
Lesson from huge Blue Shield California data breach: Read the manual
Data on 4.7 million members was captured over almost four years from a misconfiguration that sent Google Analytics data to ...
CSO Online3d
6 types of risk every organization must manage — and 4 strategies for doing it
From cyberthreats to financial volatility, security leaders must grasp the nuances of risk management to build resilient and ...
CSO Online4d
Ransomware the most pervasive threat to US critical infrastructure in 2024, says FBI
Despite successful operations against ransomware gangs in 2024, ransomware was still the most pervasive threat to critical ...
CSO Online2d
Proof-of-concept bypass shows weakness in Linux security tools, claims Israeli vendor
An Israeli vendor was able to evade several leading Linux runtime security tools using a new proof-of-concept (PoC) rootkit ...
CSO Online4d
Group of CISOs calls on OECD, G7 for stronger alignment of security regs
The coalition notes that despite a recent proliferation of cybersecurity laws and regulations globally, international ...
CSO Online4d
Cohesity-Veritas makes its pitch: Real-time cyberattack data recovery, AI analysis without the data lake
At a press conference in Seoul, data protection company Cohesity outlined how its AI engine, combined with Veritas’ backup ...