News

CSO Online2h
Alternatives to Microsoft Outlook webmail come under attack in Europe
The spear phishing attacks lead to the execution of malicious JavaScript code in the webmail client, so anything in the ...
CSO Online3h
Stealth RAT uses a PowerShell loader for fileless attacks
Remcos RAT gets a stealthy upgrade as attackers ditch old office exploits for a fileless PowerShell loader that runs entirely ...
CSO Online4h
Data on sale: Trump administration withdraws data broker oversight proposal
While the US Consumer Financial Protection Bureau cites policy shifts and legal concerns, critics argue the move undermines ...
CSO Online5h
The most effective phishing QR code is a new drug and alcohol policy supposedly from HR
Phishing emails that appear to be internal and come from the IT or HR department are the emails that trick the most users, ...
CSO Online5h
‘Aggressive, creative’ hackers behind UK breaches now eyeing US retailers
The same group is believed to be behind the M&S breach and several other high-profile incidents in the US and UK.
CSO Online18h
Ivanti patches two EPMM flaws exploited in the wild
The vulnerabilities located in third-party open-source libraries impact Ivanti’s mobile device management appliance and can ...
CSO Online23h
Patch Tuesday for May: Five zero day vulnerabilities CISOs should focus on
CISOs need to pay attention to patching five zero day Windows vulnerabilities and two other holes with available ...
CSO Online1d
CISA adds the notorious TeleMessage flaw to KEV list
TeleMessage TM SGNL, a version of the Signal messaging app, contains a hidden functionality vulnerability in which the ...
CSO Online1d
Spain to vet power plants’ cybersecurity for ‘great blackout’ cause
The Spanish government is gathering information on the cybersecurity measures of the country’s small electricity generating ...
CSO Online1d
Researchers bypass Intel’s Spectre fixes — six years of CPUs at risk
The new attack method can leak privileged kernel memory on CPUs released in the past six years that have hardware mitigations ...
CSO Online1d
New EU vulnerability database will complement CVE program, not compete with it, says ENISA
After the CVE’s program’s near-death experience in April, might the Europeans be looking for a more reliable long-term system ...
CSO Online1d
CISA’s alert pivot reflects a new era of decentralized cyber threat communication
CISA’s realignment of its alerting strategy reflects a broader trend in cybersecurity: the pursuit of clarity in an age of ...