资讯

CSO Online11 小时

VoidProxy phishing-as-a-service operation steals Microsoft, Google login credentials

If a victim is unwise enough to enter their primary Microsoft or Google credentials on the phishing page, the data is sent to ...
CSO Online12 小时

2025 CSO Hall of Fame: Laura Deaner on AI, quantum threats, and cyber leadership

Today’s security leaders should focus on continuous learning and strengthening defenses against evolving cyber threats.
CSO Online12 小时

VMScape Spectre BTI attack breaks VM isolation on AMD and Intel CPUs

The Spectre-like CPU branch target injection (BTI) breaks the guest-host layer in virtualized environments, introducing a new ...
CSO Online12 小时

How Wesco cut through the noise and reimagined risk management

The supply chain solutions provider used data consolidation and AI to turn overwhelming security alerts into clear priorities ...
CSO Online21 小时

Why domain-based attacks will continue to wreak havoc

Largely due to the increased adoption of AI, domain-based attacks are gaining volume, speed and sophistication at an alarming ...
CSO Online20 小时

Stealthy AsyncRAT flees the disk for a fileless infection

Attackers are abusing legitimate remote access tools and lightweight scripts to deliver AsyncRAT entirely in memory, ...
CSO Online1 天

12 digital forensics certifications to accelerate your cyber career

As cyberattacks grow more complex, digital forensics certs can equip professionals with the skills and credibility to ...
CSO Online2 天

AI prompt injection gets real — with macros the latest hidden threat

Attackers are evolving their malware delivery tactics by weaponing malicious prompts embedded in document macros to hack AI ...
CSO Online3 天

When AI nukes your database: The dark side of vibe coding

As developers lean on Copilot and GhostWriter, experts warn of insecure defaults, hallucinated dependencies, and attacks that ...
CSO Online1 天

Docker malware breaks in through exposed APIs, then changes the locks

The new variant of Docker-targeting malware skips cryptomining in favor of persistence, backdoors, and even blocking rivals ...
CSO Online2 天

Ransomware gang going after improperly patched SonicWall firewalls

Vulnerable SonicWall firewalls that should have been patched a year ago for an access control vulnerability are being hacked ...
CSO Online3 天

California, two other states to come down hard on GPC violators

David Shipley, head of Canadian-based Beauceron Security, likened the move by the CPPA and the three states as the equivalent ...