News

CSO Online1d

Black Hat: Researchers demonstrate zero-click prompt injection attacks in popular AI agents

Researchers from Zenity have found multiple ways to inject rogue prompts into agents from mainstream vendors to extract ...
CSO Online1d

Beyond cryptocurrency: Blockchain 101 for CISOs and why it matters

Blockchain is emerging as a powerful tool for CISOs to close trust gaps in identity, audit and supply chain security.
CSO Online1d

ECScape: New AWS ECS flaw lets containers hijack IAM roles without breaking out

Naor Haziz’s discovery shows how a compromised container on EC2-backed ECS tasks can impersonate the ECS agent and steal IAM ...
CSO Online2d

Black Hat 2025 Recap: A look at new offerings announced at the show

AI dominated the conversation at Black Hat 2025, from the rise of autonomous agents and shadow AI to surging identity-based ...
CSO Online3d

Researchers uncover RCE attack chains in popular enterprise credential vaults

Open-source credential management systems HashiCorp Vault and CyberArk Conjur had flaws enabled remote code execution among ...
CSO Online2d

Hybrid Exchange environment vulnerability needs fast action

To exploit the vulnerability, an attacker has to first gain administrative access to an on-premises Exchange server. From ...
CSO Online2d

‘We too were breached,’ says Google, months after revealing Salesforce attacks

Google has admitted it was among the victims of the Salesforce-related data theft campaign first uncovered by its own threat ...
CSO Online2d

Beef up AI security with zero trust principles

“Mature AI security isolates potentially malicious inputs from trusted contexts,” he told the conference. Developers and CSOs ...
CSO Online3d

How not to hire a North Korean IT spy

CISOs are urged to carry out tighter vetting of new hires to ward off potential ‘moles’ — who are increasingly finding their ...
CSO Online2d

Windows tips for reducing the ransomware threat

With identity becoming a top way attackers gain access to corporate networks, security admins must take control of Windows ...
CSO Online3d

ReVault flaws let attackers bypass Windows login or place malware implants on Dell laptops

Vulnerabilities in the ControlVault3 (CV) firmware in Dell laptops, discovered by security researchers from Cisco Talos, ...
CSO Online4d

The age of infostealers is here. Is your financial service secure?

Infostealers are silently targeting financial data; institutions must adopt proactive, modern cybersecurity to safeguard ...