CSO Online

5 key ways attack surface management will evolve in 2026

In 2026, ASM gets a major glow-up as cloud control tightens, AI steps in, zero trust becomes the norm, and supply-chain risks ...
CSO Online

Akira ransomware expands to Nutanix AHV, raising stakes for enterprise security

Once focused on SMBs, Akira has shifted to large enterprises across manufacturing, IT, healthcare, and finance, leveraging ...
CSO Online

ISO and ISMS: 9 reasons security certifications go wrong

Numerous problems can arise during the ISO certification process. Here are the most common pitfalls that prevent companies ...
CSO Online

The rise of the chief trust officer: Where does the CISO fit?

The increase of chief trust officers signals a shift from defending systems to safeguarding credibility. Understanding what ...
CSO Online

India’s new data privacy rules turn privacy compliance into an engineering challenge

Mandatory consent orchestration, automated erasure, parental identity verification, algorithmic oversight, and purpose-based ...
CSO Online

North Korea’s ‘Job Test’ trap upgrades to JSON malware dropboxes

The long-running Contagious Interview campaign is now hiding BeaverTail and InvisibleFerret payloads inside JSON storage ...
CSO Online

UK cybersecurity bill brings tougher rules for critical infrastructure

Healthcare, energy, transport, and digital services face stricter compliance rules as ministers gain powers to intervene ...
CSO Online

CISOs must prove the business value of cyber — the right metrics can help

CISOs still struggle to prove the value of their security programs using metrics that their business leaders so desperately ...
CSO OnlineOpinion

Senate moves to restore lapsed cybersecurity laws after shutdown

The continuing resolution would extend CISA 2015 and the Federal Cybersecurity Enhancement Act, reinstating liability shields ...
CSO Online

What CISOs need to know about new tools for securing MCP servers

As MCP servers become more popular, so do the risks. To address some of the risks many vendors have started to offer products ...
CSO Online

Copy-paste vulnerability hit AI inference frameworks at Meta, Nvidia, and Microsoft

Cybersecurity researchers have uncovered a chain of critical remote code execution (RCE) vulnerabilities in major AI ...
CSO Online

Why SOC efficiency is the most valuable currency in cybersecurity

That’s why efficiency has quietly become the most valuable currency inside the security operations center (SOC). Enterprise Strategy Group (ESG) research found that 53% of organizations say network ...