CSOonline2d
Adobe evolves its risk management strategy with homegrown framework
The software maker’s Security Framework (SRMF) helps leadership prioritize mitigation decisions and ensures everyone is ...
CSOonline3d
No evidence that TP-Link routers are a Chinese security threat
Despite a request for a US government investigation into Chinese-made TP-Link, evidence presented by a US House committee ...
CSOonline3d
GitHub Actions typosquatting: A high-impact supply chain attack-in-waiting
Developers who mistype names and owners of GitHub Actions expose their repositories and accounts to malicious code execution, ...
CSOonline3d
US charges 5 Russian spies for Ukraine, NATO cyberattacks
The five officers of Russia’s GRU military intelligence service have been indicted for WhisperGate attacks and other ...
CSOonline2d
Two weeks on from Pavel Durov’s arrest, Telegram ramps up moderation of ‘illegal content’
Less than two weeks after Telegram founder and CEO Pavel Durov’s high-profile arrest by French police, the company has ...
CSOonline4d
‘Unusual’ Voldemort cyberespionage attack impersonates tax authorities
The phishing-initiated campaign combines common and rare payload delivery techniques to sideload via Cisco software a custom ...
CSOonline4d
Hackers are cloning YubiKeys via new side-channel exploit
Rated of moderate severity, the flaw affects YubiKey 5 series and Key Series with firmware earlier than version 5.7, and ...
CSOonline5d
Cloud providers must own up to their part in the current state of insecurity
Yes, the shared responsibility model long predates the cloud, but the cloud era is proving that true sharing of ...
CSOonline6d
North Korean hackers actively exploited a critical Chromium zero-day
“On August 19, 2024, Microsoft identified a North Korean threat actor exploiting a zero-day vulnerability in Chromium to gain ...
CSOonline3d
CISO budget survey: Modest increases in 2024
However, that has meant hiring has slowed, leading to overworked staff. The risk is that some will leave when the job market ...
CSOonline3d
CSO Executive Sessions: EDOTCO’s Mohammad Firdaus Juhari on safeguarding critical infrastructure in the telecommunications industry
Mohammad Firdaus Juhari – Head of Digital Security at EDOTCO Group – joins Xiou Ann Lim for this CSO Executive Sessions ...
CSOonline11d
How not to hire a North Korean IT spy
CISOs are urged to carry out tighter vetting of new hires to ward off potential ‘moles’ — who are increasingly finding their ...