The October Orange Rag Is Here! – Legal IT Insider
Hi and welcome to the October 2025 issue of the Orange Rag, published 30 years after the very first issue came out in October 1995. I’m incredibly proud of our…
2025
The unified linkage model: A new lens for understanding cyber risk – CSO Online
When Okta’s support credentials were stolen in 2023, the breach didn’t stop at the identity provider. It rippled outward — through SaaS integrations, internal legacy applications and downstream development pipelines.…
Bug-Bounty-Programm trifft KI – ein zweischneidiges Schwert – CSO Online
KI-gestütztes Bug Hunting verspricht viele Vorteile. Ob sich diese auch in der Praxis verwirklichen, ist eine andere Sache. DC Studio | shutterstock.com Künstliche Intelligenz (KI) wird zunehmend auch zum Treiber…
Agentic AI: What now, what next? – CSO Online
Download the November 2025 issue of the Enterprise Spotlight from the editors of CIO, Computerworld, CSO, InfoWorld, and Network World. aria-label=”Embed of NOVEMBER SPOTLIGHT 02.”>NOVEMBER SPOTLIGHT 02Download – Read More
Clinical negligence roundtable: Speaking up, speaking out – Law Gazette – Features
Health outcome statistics for women expose a ‘gender pain gap’. With a sky-high clinical negligence bill, how can law and lawyers work with patients, clinicians and health trusts to narrow…
Kirkland & Ellis lawyers accused of ‘uncooperative’ negotiating style – Legal Cheek
US giant apparently gave lawyers communication training as a result of feedback Lawyers at US titan Kirkland & Ellis have reportedly come under fire for their “uncooperative behaviour” on private…
Cyber’s Role in the Rapid Rise of Digital Authoritarianism – Dark Reading
Dark Reading Confidential Episode 11: Enterprise cyber teams are in prime position to push back against our current “Golden Age of Surveillance,” according to our guests Ronald Deibert from Citizen…
CISA and NSA Issue Urgent Guidance to Secure WSUS and Microsoft Exchange Servers – The Hacker News
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) and National Security Agency (NSA), along with international partners from Australia and Canada, have released guidance to harden on-premise Microsoft Exchange Server…
Eclipse Foundation Revokes Leaked Open VSX Tokens Following Wiz Discovery – The Hacker News
Eclipse Foundation, which maintains the open-source Open VSX project, said it has taken steps to revoke a small number of tokens that were leaked within Visual Studio Code (VS Code)…
Aembit Introduces Identity and Access Management for Agentic AI – CSO Online
Aembit today announced the launch of Aembit Identity and Access Management (IAM) for Agentic AI, a set of capabilities that help organizations safely provide and enforce access policies for AI…
CISA Flags VMware Zero-Day Exploited by China-Linked Hackers in Active Attacks – The Hacker News
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a high-severity security flaw impacting Broadcom VMware Tools and VMware Aria Operations to its Known Exploited Vulnerabilities (KEV) catalog,…
AI-powered bug hunting shakes up bounty industry — for better or worse – CSO Online
AI-powered bug hunting has changed the calculus of what makes for an effective bounty program by accelerating vulnerability discovery — and subjecting code maintainers to ballooning volumes of AI flaw-hunting…
A New Security Layer for macOS Takes Aim at Admin Errors Before Hackers Do – The Hacker News
A design firm is editing a new campaign video on a MacBook Pro. The creative director opens a collaboration app that quietly requests microphone and camera permissions. MacOS is supposed…
Malicious packages in npm evade dependency detection through invisible URL links: Report – CSO Online
Threat actors are finding new ways to insert invisible code or links into open source code to evade detection of software supply chain attacks. The latest example was found by…
Legal Services Board sets out scope of Mazur review – Legal Futures
The Legal Services Board is to probe “the scale and impact” of breaches of the right to conduct litigation in the wake of the Mazur ruling. The post Legal Services…