News

CSO Online8h
‘Would rather pay bounty than ransom’: Coinbase on $20M extortion attempt
Stolen data includes customers’ personal and crypto account details, along with Coinbase’s internal documentation.
CSO Online8h
Proofpoint buying Hornetsecurity in a play to expand email security scope
The deal is one of many big-ticket purchases in the cybersecurity industry in recent years as companies race to keep up with ...
CSO Online1d
Google patches Chrome vulnerability used for account takeover and MFA bypass
In some environments, this could even give attackers the ability to bypass multi-factor authentication (MFA). The ...
CSO Online1d
Data on sale: Trump administration withdraws data broker oversight proposal
While the US Consumer Financial Protection Bureau cites policy shifts and legal concerns, critics argue the move undermines ...
CSO Online1d
‘Aggressive, creative’ hackers behind UK breaches now eyeing US retailers
The same group is believed to be behind the M&S breach and several other high-profile incidents in the US and UK.
CSO Online1d
After helping Russia on the ground North Korea targets Ukraine with cyberespionage
A cyberespionage group linked to North Korea’s military has targeted government organizations in Ukraine since February in ...
CSO Online1d
The most effective phishing QR code is a new drug and alcohol policy supposedly from HR
Phishing emails that appear to be internal and come from the IT or HR department are the emails that trick the most users, ...
CSO Online1d
Stealth RAT uses a PowerShell loader for fileless attacks
Remcos RAT gets a stealthy upgrade as attackers ditch old office exploits for a fileless PowerShell loader that runs entirely ...
CSO Online3d
Merck’s CISO Volker Buß on securing global operations
Cyber attacks on companies are no longer a rarity. Volker Buß, CISO at the Merck Group, explains in the CSO interview what is ...
CSO Online1d
Alternatives to Microsoft Outlook webmail come under attack in Europe
The spear phishing attacks lead to the execution of malicious JavaScript code in the webmail client, so anything in the ...
CSO Online1d
Ivanti patches two EPMM flaws exploited in the wild
The vulnerabilities located in third-party open-source libraries impact Ivanti’s mobile device management appliance and can ...
CSO Online2d
CISA adds the notorious TeleMessage flaw to KEV list
TeleMessage TM SGNL, a version of the Signal messaging app, contains a hidden functionality vulnerability in which the ...