News

CSO Online1d

Black Hat: Researchers demonstrate zero-click prompt injection attacks in popular AI agents

Researchers from Zenity have found multiple ways to inject rogue prompts into agents from mainstream vendors to extract ...
CSO Online2d

Beyond cryptocurrency: Blockchain 101 for CISOs and why it matters

Blockchain is emerging as a powerful tool for CISOs to close trust gaps in identity, audit and supply chain security.
CSO Online2d

Hybrid Exchange environment vulnerability needs fast action

Administrators with hybrid Exchange Server environments are urged by Microsoft and the US Cybersecurity and Infrastructure ...
CSO Online2d

ECScape: New AWS ECS flaw lets containers hijack IAM roles without breaking out

Naor Haziz’s discovery shows how a compromised container on EC2-backed ECS tasks can impersonate the ECS agent and steal IAM ...
CSO Online3d

Black Hat 2025 Recap: A look at new offerings announced at the show

AI dominated the conversation at Black Hat 2025, from the rise of autonomous agents and shadow AI to surging identity-based ...
CSO Online3d

Project Ire: Microsoft’s autonomous AI agent that can reverse engineer malware

Developed by Microsoft Research and the Defender teams, Project Ire utilizes advanced reasoning and reverse engineering tools ...
CSO Online4d

Researchers uncover RCE attack chains in popular enterprise credential vaults

Open-source credential management systems HashiCorp Vault and CyberArk Conjur had flaws enabled remote code execution among ...
CSO Online4d

How cybersecurity leaders are securing AI infrastructures

AI models, agentic frameworks, data pipelines, and all the tools, services, and open-source libraries that make AI possible ...
CSO Online3d

Beef up AI security with zero trust principles

“Mature AI security isolates potentially malicious inputs from trusted contexts,” he told the conference. Developers and CSOs ...
CSO Online4d

How not to hire a North Korean IT spy

CISOs are urged to carry out tighter vetting of new hires to ward off potential ‘moles’ — who are increasingly finding their ...
CSO Online3d

ReVault flaws let attackers bypass Windows login or place malware implants on Dell laptops

Vulnerabilities in the ControlVault3 (CV) firmware in Dell laptops, discovered by security researchers from Cisco Talos, ...
CSO Online3d

‘We too were breached,’ says Google, months after revealing Salesforce attacks

Google has admitted it was among the victims of the Salesforce-related data theft campaign first uncovered by its own threat ...