CSO Online

ZombieAgent ChatGPT attack shows persistent data leak risks of AI agents

Security researchers from Radware have demonstrated techniques to exploit ChatGPT connections to third-party apps to turn ...
CSO Online

CrowdStrike to acquire SGNL for $740M, expanding real-time identity security

The acquisition brings SGNL’s real-time, risk-aware authorization to CrowdStrike’s platform as machine identities and AI ...
CSO Online

CISA flags max-severity bug in HPE OneView amid active exploitation

The flaw allows remote code execution via a public REST API, giving attackers a direct path to compromise enterprise ...
CSO Online

Jamie Norton’s journey to CISO started with an early interest in computers

Norton, who has held CISO roles in both the private and public sector, including the Australian Taxation Office, discusses ...
CSO Online

Top cyber threats to your AI systems and infrastructure

From data poisoning to prompt injection, threats against enterprise AI applications and foundations are beginning to move ...
CSO Online

Enterprises still aren’t getting IAM right

A large number of employees still work around identity controls, and agentic AI is only exacerbating the problem, according ...
CSO Online

Cisco identifies vulnerability in ISE network access control devices

The latest flaw in Cisco Systems Identity Services Engine (ISE), which could expose sensitive information to an attacker, ...
CSO Online

Critical jsPDF vulnerability enables arbitrary file read in Node.js deployments

The path traversal bug allows attackers to include arbitrary filesystem content in generated PDFs when file paths are not ...
CSO Online

8 things CISOs can’t afford to get wrong in 2026

AI, cloud, and the increasingly interconnected nature of business and technology present CISOs with a range of risks and ...
CSO Online

Critical RCE flaw allows full takeover of n8n AI workflow platform

A compromised n8n instance doesn’t just mean losing one system — it means handing attackers the keys to everything,’ security ...
CSO Online

Microsoft warns of a surge in phishing attacks exploiting email routing gaps

Threat actors are abusing misconfigured MX records and weak DMARC/SPF policies to make phishing emails look internal, ...
CSO Online

Cybersecurity at the edge: Securing rugged IoT in mission-critical environments

Edge IoT keeps the lights on and responders moving, but without rethinking security for harsh, disconnected environments, the ...