CSO OnlineOpinion

The CIA triad is dead — stop using a Cold War relic to fight 21st century threats

The world has shifted, and our cybersecurity models must shift, too. We need a model that is layered, contextual, and built ...
CSO Online

Open-source DFIR Velociraptor was abused in expanding ransomware efforts

China-based threat actors abused outdated Velociraptor to maintain persistence and help deploy Warlock, LockBit, and Babuk ...
CSO Online

SonicWall data breach affects all cloud backup customers

September, SonicWall reported a security incident in its cloud backup service. It’s now clear that all customers are affected.
CSO Online

FBI seizes BreachForums servers as threatened Salesforce data release deadline approaches

Only days ago, a message on the BreachForums extortion site threatened to leak one billion records allegedly stolen from the ...
CSO Online

Salesforce AI agents set to assist enterprises with security and compliance

Salesforce has been adding new features and capabilities since the launch of its AI agent platform a year ago at a furious ...
CSO Online

Apple bumps RCE bug bounties to $2M to counter commercial spyware vendors

We’re doubling our top award to $2 million for exploit chains that can achieve similar goals as sophisticated mercenary ...
CSO Online

LockBit, DragonForce, and Qilin form a ‘cartel’ to dictate ransomware market conditions

The FBI did not immediately respond to a request for comment.
CSO Online

Homeland Security’s reassignment of CISA staff leaves US networks exposed

As the DHS moves some CISA staff to immigration and border roles, experts warn of slower threat detection, delayed advisories ...
CSO Online

Google DeepMind launches an AI agent to fix code vulnerabilities automatically

CodeMender aims to help developers keep pace with AI-powered vulnerability discovery by automatically patching security flaws ...
CSO Online

CISOs rethink the security organization for the AI era

As AI becomes more ingrained in business strategies, CISOs are re-examining their security organizations to keep up with the ...
CSO Online

Unplug Gemini from email and calendars, says cybersecurity firm

The warning comes after the discovery that some AI agents, including Gemini, are vulnerable to ASCII Smuggling attacks.
CSO Online

Phishers turn 1Password’s Watchtower into a blind spot

A convincing fake breach alert nearly tricked a Malwarebytes employee into giving away their 1Password credentials.