CSOonline7h
Palo Alto Networks zero-day firewall flaws caused by basic dev mistakes
Attackers are chaining two flaws in the wild to bypass authentication and escalate privileges via the PAN-OS management web ...
CSOonline17h
From MFA mandates to locked-down devices, Microsoft posts a year of SFI milestones at Ignite
The Key Secure Future Initiative's November update includes compulsory MFA, device isolation, and secrets security.
CSOonline15h
At Ignite, Microsoft looks to genAI, exposure managment, and new bug bounties to secure enterprise IT
Microsoft is allocating $4 million to a new bug bounty program, Zero Day Quest, among other measures to enhance software ...
CSOonline1d
Musk’s anticipated cost-cutting hacks could weaken American cybersecurity
An Elon Musk-led initiative that aims to cut $2 trillion from the federal budget could hollow out US agencies' cybersecurity ...
CSOonline2d
So, you don’t have a chief information security officer? 9 signs your company needs one
Many companies have yet to embrace the role of CISO, but with the ever-expanding threat landscape there are growing reasons ...
CSOonline4d
Misconfigurations can cause many Microsoft Power Pages sites to expose sensitive data
Organizations that develop websites with Microsoft Power Pages can accidentally overprovision database privileges for ...
CSOonline4d
Security awareness training: Topics, best practices, costs, free options
Security awareness training helps develop an information security mindset in your workforce, equipping employees with the ...
CSOonline4d
CISOs who delayed patching Palo Alto vulnerabilities now face real threat
CISA said it has evidence of active exploitation for two out of six Expedition v Palo Alto Networks patched in October.
CSOonline5d
Implementing zero trust in AI and LLM architectures: A practitioner’s guide to secure and responsible AI systems
This guide provides IT leaders with a comprehensive approach to applying zero-trust principles in AI and LLM architectures, ...
CSOonline9d
7 reasons security breach sources remain unknown
Many security leaders remain clueless about the cause of recent security incidents their organizations have experienced, ...
CSOonline5d
US says China conducted massive espionage through breached telcos
FBI and CISA have warned that some US telecommunication companies have been breached by China-backed Salt Typhoon to snoop on ...
CSOonline5d
Overcome fragmented cloud security operations with unified XDR and SIEM
To better defend hybrid and multicloud cloud environments, organizations need a unified security operations center (SOC) ...