Redefining the Role: What Makes a CISO Great – Dark Reading
Security is everyone’s responsibility, but as a CISO, it starts with you. – Read More
August 2025
Data Dump From APT Actor Yields Clues to Attacker Capabilities – Dark Reading
The tranche of information includes data on recent campaigns, attack tools, compromised credentials, and command files used by a threat actor believed to be acting on behalf of China or…
Attackers Target the Foundations of Crypto: Smart Contracts – Dark Reading
A whole criminal ecosystem revolves around scamming users out of their crypto assets, but malicious — or vulnerable — smart contracts could be used against businesses as well. – Read…
ECScape: New AWS ECS flaw lets containers hijack IAM roles without breaking out – CSO Online
At Black Hat USA 2025, Sweet Security’s Naor Haziz revealed a significant privilege escalation flaw in Amazon ECS that allows a low-privilege container running on an EC2-backed task to hijack…
Beyond cryptocurrency: Blockchain 101 for CISOs and why it matters – CSO Online
When I first heard someone suggest blockchain for enterprise cybersecurity, I nearly rolled my eyes. At the time, I was knee-deep in helping a Fortune 100 company drive a cloud…
Leaked Credentials Up 160%: What Attackers Are Doing With Them – The Hacker News
When an organization’s credentials are leaked, the immediate consequences are rarely visible—but the long-term impact is far-reaching. Far from the cloak-and-dagger tactics seen in fiction, many real-world cyber breaches begin…
RubyGems, PyPI Hit by Malicious Packages Stealing Credentials, Crypto, Forcing Security Changes – The Hacker News
A fresh set of 60 malicious packages has been uncovered targeting the RubyGems ecosystem by posing as seemingly innocuous automation tools for social media, blogging, or messaging services to steal…
Litera announces strategic investment in Postilize – Legal Futures
Litera has announced a strategic investment in Postilize to accelerate innovation in business development with the launch of Foundation Proactive, Powered by Postilize. The post Litera announces strategic investment in…
13 Produkt-Highlights der Black Hat USA – CSO Online
Das Mandalay Bay Convention Center wird zur Black Hat USA zum Cybersecurity-Hub – 2025 lag der Fokus dabei insbesondere auf Agentic und Generative AI. Andrey Bayda | shutterstock.com Zur Black-Hat-Konferenz…
College of Legal Practice secures SQE training deal with Pinsent Masons flexi-lawyer arm – Legal Cheek
Support paralegals to qualify as solicitors The College of Legal Practice has teamed up with Pinsent Masons’ flexible lawyering arm to support its paralegals on the path to solicitor qualification.…
Magistrate given formal advice after interrupting court to complain about parking situation – Legal Cheek
Wasn’t aware session had started A magistrate has received formal advice for misconduct after he interrupted a court session to complain about the parking situation. Mr Alfred Bean JP, of…
GreedyBear Steals $1M in Crypto Using 150+ Malicious Firefox Wallet Extensions – The Hacker News
A newly discovered campaign dubbed GreedyBear has leveraged over 150 malicious extensions to the Firefox marketplace that are designed to impersonate popular cryptocurrency wallets and steal more than $1 million…
What is a CISO? The top IT security leader role explained – CSO Online
The chief information security officer (CISO) is the top-level executive responsible for an organization’s information and data security. Not every company has a security executive who operates at the top…
So sparen CISOs, ohne die Sicherheit zu torpedieren – CSO Online
Geht’s dem Security-Budget an den Kragen, ist der Spielraum für CISOs denkbar gering. TippaPatt | shutterstock.com Vor etlichen Jahren fand sich David Mahdi, heute CISO Advisor beim IAM-Spezialisten Transmit Security,…
Black Hat 2025 Recap: A look at new offerings announced at the show – CSO Online
Black Hat 2025 is on its home stretch, having gathered together thousands of security professionals to discuss the latest developments in adversarial tradecraft and cybersecurity defense. Security leaders and teams…