Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

CSO Online

20 articles

CSO Online General May 28

What the industrialization of exploitation means for defenders

For decades, cybersecurity was a battle of skill. Elite attackers versus elite defenders.

CSO Online →

CSO Online Malware May 28

Employees are unknowingly inviting tech support impersonators into firms, says FBI

Online or telephone IT support scams have been tricking employees into downloading or clicking on malware for years. But according to the FBI, one group that...

CSO Online →

CSO Online General May 27

Another IT governance headache: AI-enabled sanction evasion

Over the next three to five years, both governments and the private sector will need to rapidly adapt identification and mitigation protocols as adversaries ...

CSO Online →

CSO Online General Google Amazon Cisco May 27

AI models more vulnerable than claimed when faced with iterative attacks

CISOs relying on LLM runtime guardrails and official safety scores when making security decisions about their organizations’ AI usage and model selection are...

CSO Online →

CSO Online CVE May 27

FastAPI-based AI tools exposed to authentication bypass by flaw in Starlette framework

A single malformed character in a web request can let an unauthenticated attacker slip past the access controls that guard applications built on Starlette, t...

T1556 1 IOC

CSO Online →

CSO Online Vulnerability Disclosure May 27

The NSA, ‘Mythos’ and the quiet emergence of AI cyber doctrine

For most of my career running security operations, the shape of cyber conflict has been defined by who could move faster than the other side. Faster at ident...

CSO Online →

CSO Online General May 27

DSPM buyer’s guide: Top 10 data security posture management tools

Data security posture management (DSPM) explained Data security posture management (DSPM) tools help security teams examine their entire data environment to ...

CSO Online →

CSO Online General Microsoft May 27

Microsoft previews automatic device isolation in Defender for Endpoint

Microsoft is previewing a new automatic device isolation capability in Defender for Endpoint’s auto attack disruption tool to help security pros contain cybe...

CSO Online →

CSO Online Campaigns GitHub May 26

GitHub Actions abused by Megalodon attack to slip malicious commits into 5,500 repos

A large-scale automated GitHub backdooring campaign was caught pushing thousands of malicious commits into public repositories while posing as routine CI/CD ...

CSO Online →

CSO Online Campaigns Amazon GitHub May 26

TrapDoor malware campaign puts developer workstations in CISO spotlight

A malicious package campaign across npm, PyPI, and Crates.io has put developer workstations back under scrutiny, after researchers said it targeted developer...

1 IOC

CSO Online →

CSO Online Vulnerability Disclosure May 26

Stop treating AI governance as a review layer. Make it release infrastructure

I’ve spent years building compliance into security products. FedRAMP and Department of War Impact Level authorizations, vulnerability management pipelines: T...

CSO Online →

CSO Online Data Breach Microsoft May 26

Vulnerabilities have become cyber attackers’ No. 1 door to the enterprise

Patching practices are coming under intense pressure of late, as time-to-exploit windows accelerate — a new reality likely to worsen as AI assistance in atta...

T1078 T1598

CSO Online →

CSO Online Phishing Microsoft May 26

Security experts caution MFA alone can no longer stop threat actors

Cybersecurity experts are warning enterprise admins about an increasing number of phishing campaigns aimed at stealing Microsoft 365 (M365) access tokens to ...

T1566

CSO Online →

CSO Online General May 26

Project Glasswing has uncovered 10,000 vulnerabilities: Anthropic

Anthropic says it and upwards of 50 partners involved in Project Glasswing have uncovered an estimated 10,000 critical or high-severity vulnerabilities in th...

CSO Online →

CSO Online General May 25

AI security needs a shift from models to systems, researchers argue

Enterprises cannot secure AI agents by making the underlying models more robust and must instead enforce security controls at the system level around them, r...

CSO Online →

CSO Online Vulnerability Disclosure Oracle May 25

As AI speeds coding, CVE Lite CLI keeps security deliberately AI-free

As AI coding assistants accelerate software development, one OWASP-backed open-source project is arguing that dependency security tooling still arrives too l...

CSO Online →

CSO Online Ransomware May 25

To pay, or not to pay: 58% of CISOs say they would pay the ransom for their data

If you were hit by ransomware tomorrow, would you pay to get your data back? That’s what more than half of CISOs in a recent survey said their organization w...

CSO Online →

CSO Online Vulnerability Disclosure Microsoft Google Oracle May 23

Google leaks details for Chromium bug that can turn browsers into bots

Chromium — the open-source browser that underpins Google Chrome, Microsoft Edge, and Opera, among others — contains an unpatched vulnerability that attackers...

CSO Online →

CSO Online Phishing Microsoft May 22

FBI warns of Kali Oauth stealers

The FBI has warned of the danger from a new wave of phishing attacks generated by a tool called Kali365. It enables cyber criminals to obtain Microsoft 365 a...

T1566

CSO Online →

CSO Online Ransomware May 22

Police take down VPN service (this time with a good reason)

European authorities have cracked down on a VPN that has been used for various criminal activities. The operation, led by investigators in France and the Net...

T1041

CSO Online →

«Previous page 1 ... 7 8 9 10 11 ... 15 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA