News

CSO Online18h
Anatomy of a Scattered Spider attack: A growing ransomware threat evolves
The cybercriminal group has broadened its attack scope across several new industries, bringing valid credentials to bear on ...
CSO Online8h
McDonald’s AI hiring tool’s password ‘123456’ exposed data of 64M applicants
A security flaw in McHire allowed access to sensitive applicant data via default admin credentials and a vulnerable API. The ...
CSO Online1d
AMD discloses new CPU flaws that can enable data leaks via timing attacks
Four newly revealed vulnerabilities in AMD processors, including EPYC and Ryzen chips, expose enterprise systems to ...
CSO Online1d
US Treasury Department sanctions individuals and entities over illegal IT worker scheme
Russians and North Koreans contributed to the scheme to provide illegal remote IT workers to US companies to fund the North ...
CSO Online2d
Trump seeks unprecedented $1.23 billion cut to federal cyber budget
Trump’s 2026 budget would slash cyber spending by over $1 billion from 2024 levels, a move that could weaken federal defenses ...
CSO Online1d
MCP is fueling agentic AI — and introducing new security risks
MCP allows AI agents and chatbots to connect to data sources, tools, and other services, but they pose significant risks for ...
CSO Online2d
IBM Power11 challenges x86 and GPU giants with security-first server strategy
While Intel, AMD, and Nvidia focus on performance and AI training, IBM doubles down on reliability, cyber defense, and AI ...
CSO Online1d
Exploit details released for Citrix Bleed 2 flaw affecting NetScaler
Amid confusing reports about Citrix NetScaler exploits in the wild, researchers offer technical analyses and indicators of ...
CSO Online1d
NightEagle hackers exploit Microsoft Exchange flaw to spy on China’s strategic sectors
Cybersecurity firm QiAnXin links a North America-based APT group to long-term espionage targeting China’s AI, semiconductor, ...
CSO Online2d
How a 12-year-old bug in Sudo is still haunting Linux users
Two flaws, one undetected for over a decade, allow unintended root access on Ubuntu and Debian systems, prompting urgent ...
CSO Online1d
Verified, featured, and malicious: RedDirection campaign reveals browser marketplace failures
Despite verified status and high ratings, 18 extensions silently deployed surveillance code, raising urgent questions about ...
CSO Online2d
How CISOs are training the next generation of cyber leaders
With cyber risk now a boardroom issue, CISOs are training their teams through personalized coaching for company-wide programs ...