News

CSO Online16h
New botnet hijacks AI-powered security tool on Asus routers
Once inside as an admin, attackers exploit a command injection flaw to trick the AI-powered security feature into executing commands for persistence.
CSO Online17h
Hackerangriff auf Arcona Hotels
Die Arcona Hotels & Resorts-Gruppe kämpft seit einer Woche mit den Folgen eines Cyberangriffs.
CSO Online19h
Novel PumaBot slips into IoT surveillance with stealthy SSH break-ins
The botnet brute-forces SSH credentials against a list of harvested IP addresses, instead of conducting internet-wide scans.
CSO Online19h
Void Blizzard nimmt NATO-Organisationen ins Visier
Die neue russische APT-Bande Void Blizzard hat bereits die niederländische Polizei infiltriert und greift nun nach Unternehmensdaten in der NATO.
CSO Online20h
Passwortlose Authentifizierung wird für CISOs immer wichtiger
Immer mehr Unternehmen setzen auf Alternativen wie Passkeys oder biometrische Verfahren, denn moderne Cyber-Angriffe nutzen ...
CSO Online22h
Hackerangriff auf Außenministerium alarmiert Nato und EU
Hat China jahrelang die diplomatische Kommunikation eines Nato- und EU-Staats mitgelesen? In Brüssel sorgen entsprechende ...
CSO Online23h
Securing Windows 11 and Server 2025: What CISOs should know about the latest updates
Microsoft’s latest rollouts to Windows 11 24H2 and Windows Server 2025 include the arrival of Recall and hotpatching. Here ...
CSO Online1d
Warning: Threat actors now abusing Google Apps Script in phishing attacks
According to new research from Cofense, a new attack has been discovered where, if an employee clicks on a link in a phishing ...
CSO Online1d
Poisoned models hidden in fake Alibaba SDKs show challenges of securing AI supply chains
Fake Alibaba Labs AI SDKs hosted on PyPI included PyTorch models with infostealer code inside. With support for detecting ...
CSO Online1d
Microsoft Entra’s billing roles pose privilege escalation risks in Azure
Guest users with certain billing roles can create and own subscriptions, potentially gaining persistence and privilege ...
CSO Online1d
Most LLMs don’t pass the security sniff test
CISOs are advised to apply the same evaluation discipline to AI as they do to any other app in the enterprise.
CSO Online2d
Separating hype from reality: How cybercriminals are actually using AI
Countering more advanced AI-driven threats requires that we collectively evolve our defenses, and the good news is that many ...