CSO Online

The rise of the chief trust officer: Where does the CISO fit?

The increase of chief trust officers signals a shift from defending systems to safeguarding credibility. Understanding what ...
CSO Online

5 key ways attack surface management will evolve in 2026

In 2026, ASM gets a major glow-up as cloud control tightens, AI steps in, zero trust becomes the norm, and supply-chain risks ...
CSO Online

ISO and ISMS: 9 reasons security certifications go wrong

Numerous problems can arise during the ISO certification process. Here are the most common pitfalls that prevent companies ...
CSO Online

Akira ransomware expands to Nutanix AHV, raising stakes for enterprise security

Once focused on SMBs, Akira has shifted to large enterprises across manufacturing, IT, healthcare, and finance, leveraging ...
CSO Online

India’s new data privacy rules turn privacy compliance into an engineering challenge

Mandatory consent orchestration, automated erasure, parental identity verification, algorithmic oversight, and purpose-based ...
CSO Online

North Korea’s ‘Job Test’ trap upgrades to JSON malware dropboxes

The long-running Contagious Interview campaign is now hiding BeaverTail and InvisibleFerret payloads inside JSON storage ...
CSO Online

Microsoft fixes Windows 10 update flaw

Microsoft said the update issued last week on November Patch Tuesday — KB5068781 for Windows 10 22H2 builds 19044.6575 and ...
CSO Online

UK cybersecurity bill brings tougher rules for critical infrastructure

Healthcare, energy, transport, and digital services face stricter compliance rules as ministers gain powers to intervene ...
CSO OnlineOpinion

Senate moves to restore lapsed cybersecurity laws after shutdown

The continuing resolution would extend CISA 2015 and the Federal Cybersecurity Enhancement Act, reinstating liability shields ...
CSO Online

What CISOs need to know about new tools for securing MCP servers

As MCP servers become more popular, so do the risks. To address some of the risks many vendors have started to offer products ...
CSO Online

Copy-paste vulnerability hit AI inference frameworks at Meta, Nvidia, and Microsoft

Cybersecurity researchers have uncovered a chain of critical remote code execution (RCE) vulnerabilities in major AI ...
CSO Online

Rogue MCP servers can take over Cursor’s built-in browser

A new proof-of-concept attack shows that malicious Model Context Protocol servers can inject JavaScript into Cursor’s browser ...