CSOonline9h
Ransomware gangs extort victims 17 hours after intrusion on average
The window for intrusion detection keeps getting shorter as ransomware group’s time-to-ransom (TTR) accelerates.
CSOonline2d
CISO success story: How LA County trains (and retrains) workers to fight phishing
The CISO for LA County, charged with safeguarding 38 departments and 100,000 employees, shares tips on cross-agency ...
CSOonline10d
CIOs and CISOs grapple with DORA: Key challenges, compliance complexities
Now in force, DORA has proved challenging for many IT leaders to achieve compliance, particularly around third-party ...
CSOonline5d
Beyond the paycheck: What cybersecurity professionals really want
In the face of talent shortages, organisations must rethink their approach to retaining cybersecurity professionals as money ...
CSOonline3d
PostgreSQL patches SQLi vulnerability likely exploited in BeyondTrust attacks
Rapid7 researchers believe the BeyondTrust Remote Support attacks from December also exploited a zero-day flaw in PostgreSQL.
CSOonline3d
What is anomaly detection? Behavior-based analysis for cyber threats
Anomaly detection can be powerful in spotting cyber incidents, but experts say CISOs should balance traditional ...
CSOonline4d
Russian hacking group targets critical infrastructure in the US, the UK, and Canada
The operation, attributed to the notorious Russian threat actor Seashell Blizzard, has compromised high-profile targets in ...
CSOonline4d
What security teams need to know about the coming demise of old Microsoft servers
While the planned phase-out of Microsoft Exchange 2016 and Exchange 2019 is many months away, evaluate your organization’s ...
CSOonline5d
Authorities seize Phobos and 8Base ransomware servers, arrest 4 suspects
An international law-enforcement collaboration has taken down two Russian nationals and two unidentified women in Thailand ...
CSOonline3d
Unusual attack linked to Chinese APT group combines espionage and ransomware
The attacker deployed a variant of the PlugX cyberespionage toolset previously associated with Chinese APT groups against a ...
CSOonline3d
whoAMI name confusion attacks can expose AWS accounts to malicious code execution
Due to a misconfiguration, developers could be tricked into retrieving malicious Amazon Machine Images (AMI) while creating ...
CSOonline6d
Top 5 ways attackers use generative AI to exploit your systems
Cybercriminals are increasingly exploiting gen AI technologies to enhance the sophistication and efficiency of their attacks.