News

CSO Online36m
4 big mistakes you’re probably still making in vulnerability management…and how to fix them
Fix it! Embrace risk-based vulnerability management (RBVM). Look for tools that factor in exploitability, asset value, ...
CSO Online7h
Reporting lines: Could separating from IT help CISOs?
CISOs who report to the CFO find that the shift away from IT can improve their ability to translate risk into business terms, ...
CSO Online9h
IT-Security ist keine Vertrauenssache
Geht es um Cybersicherheit, fühlt sich die Mehrheit der Anwender bei ihren IT-Kollegen gut aufgehoben. Knapp acht von zehn ...
CSO Online2d
SAP NetWeaver customers urged to deploy patch for critical zero-day vulnerability
The unrestricted file upload flaw is likely being exploited by an initial access broker to deploy JSP web shells that grant ...
CSO Online2d
Proof-of-concept bypass shows weakness in Linux security tools, claims Israeli vendor
An Israeli vendor was able to evade several leading Linux runtime security tools using a new proof-of-concept (PoC) rootkit ...
CSO Online2d
Lesson from huge Blue Shield California data breach: Read the manual
Data on 4.7 million members was captured over almost four years from a misconfiguration that sent Google Analytics data to ...
CSO Online2d
Commvault warns of critical Command Center flaw
The flaw, tracked as CV-2025-34028, could allow remote attackers to execute arbitrary code without authentication on affected ...
CSOonline2d
Die Bösen kooperieren, die Guten streiten sich
Die CISOs betonen, dass trotz zahlreicher neuer Cybersicherheitsgesetze weltweit die internationale Zusammenarbeit nur unzureichend funktioniere. Die zunehmende Fragmentierung der Vorschriften ...
CSO Online3d
Darcula phishing toolkit gets AI boost, democratizing cybercrime
Darcula’s new AI-integrated phishing toolkit allows criminals to create customized, multi-language phishing kits in minutes — ...
CSOonline3d
Vor diesen Ransomware-Banden sollten Sie sich hüten
„Dieser Trend deutet auf intelligentere, schnellere und schwerer zu verfolgende Kampagnen sowie Gruppen hin, die versuchen, die Gesellschaft zu sabotieren und zu manipulieren“, sagte Shykevich.