5 key takeaways from Black Hat USA 2024 – CSO Online
The infosecurity world came together in Las Vegas this week for Black Hat USA 2024, offering presentations and product announcements that will give CISOs plenty to consider. Here are the…
CSO Online
6 IT risk assessment frameworks compared – CSO Online
Technology is one of the greatest assets companies have, essential to running or supporting many business processes. It’s also one of the biggest risks. That’s why IT risk assessment frameworks…
Exclusive: CrowdStrike eyes Action1 for $1B amid fallout from Falcon update mishap – CSO Online
Cybersecurity giant CrowdStrike is in talks to acquire Action1, a cloud-based patch management and vulnerability remediation company for close to $1 billion. According to a source close to the matter…
S3 shadow buckets leave AWS accounts open to compromise – CSO Online
Researchers have found a new way to attack AWS services or third-party projects that automatically provision AWS S3 storage buckets. Dubbed Shadow Resource, the new attack vector can result in…
Phishers have figured out that everyone is afraid of HR – CSO Online
The most effective subject lines for phishing attacks are focused on things that employees tend to be scared to ignore, such as “HR”, “IT”, and “DropBox file shared”, based on…
Generative AI takes center stage at Black Hat USA 2024 – CSO Online
While the Black Hat USA 2024 conference, held in Las Vegas, has served as a launchpad for several cybersecurity tools and technologies, this year’s launches were all about leveraging the…
The top new cybersecurity products at Black Hat USA 2024 – CSO Online
Black Hat USA 2024 once again served as a launchpad for several cybersecurity products and services with many notable vendors as well as up-and-coming startups showcasing their innovations at the…
Back to the future: Windows Update is now a trojan horse for hackers – CSO Online
A recent discovery has revealed a serious flaw in Microsoft’s Windows Update. Instead of protecting computers, it can be tricked into installing older, vulnerable operating system versions. This allows hackers…
Musk’s X under scrutiny in Europe for data privacy practices – CSO Online
Elon Musk’s X platform faces legal action in Ireland, with the Data Protection Commission (DPC) filing High Court proceedings over concerns related to the handling of European users’ personal data.…
EU’s DORA regulation explained: New risk management requirements for financial firms – CSO Online
What is the Digital Operational Resilience Act (DORA)? The Digital Operational Resilience Act (DORA) is designed to “consolidate and upgrade ICT risk requirements” across the financial entities to ensure all…
Ransomware attack paralyzes milking robots — cow dead – CSO Online
Even small farmers are not immune to cyberattacks. Vital Bircher, a farmer in Hagendorn, Switzerland, between Zurich and Lucerne, recently experienced an attack on his computer systems, which were also…
APT groups increasingly attacking cloud services to gain command and control – CSO Online
An increasing number of advanced persistent threat (APT) groups are leveraging cloud-based storage services offered by Microsoft and Google for command and control (C2) and data exfiltration, according to research…
CrowdStrike backs Microsoft’s demand for reducing kernel-level access – CSO Online
In a significant shift in the security landscape, CrowdStrike appears to be aligning with Microsoft’s demand to reconsider kernel-level access for security vendors after CrowdStrike’s Falcon update sent Windows servers…
How cyber insurance shapes risk: Ascension and the limits of lessons learned – CSO Online
In May 2024, the news broke that Ascension, a St. Louis-based nonprofit healthcare system, had been hit by a ransomware attack that interrupted access to electronic records, disrupted use of…
You’re not doing enough to educate insiders about data protection – CSO Online
Our insiders need to be better educated in the art of protecting data — and by extension their own livelihoods. Everyone knows about risks from outside an organization, that’s the…