CSO Online

Runtime: The new frontier of AI agent security

Security leaders say monitoring agent behavior inside enterprise systems may be the next major challenge for CISOs.
CSO Online

AWS Bedrock’s ‘isolated’ sandbox comes with a DNS escape hatch

BeyondTrust shows how AWS Bedrock AgentCore’s ‘isolated’ environment can be tricked into data exfiltration and command ...
CSO Online

Open VSX extensions hijacked: GlassWorm malware spreads via dependency abuse

Threat actors are publishing clean extensions that later update to depend on hidden payload packages, bypassing marketplace ...
CSO Online

What it takes to win that CSO role

Security leaders seeking to earn a promotion to top security exec need deep expertise in one or two cyber domains, broad fluency across the security ecosystem, and a mindset shift that marries risk ...
CSO Online

Nine critical vulnerabilities in Linux AppArmor put over 12M enterprise systems at risk

Qualys researchers expose ‘CrackArmor’ flaws that allow unprivileged users to escalate privileges to root, break container isolation, and crash systems, with no CVE identifiers yet assigned.
CSO Online

Jack & Jill went up the hill — and an AI tried to hack them

In a red-team test, CodeWall’s autonomous agent chained together four small bugs in the Jack & Jill hiring platform to gain ...
CSO Online

ClickFix techniques evolve in new infostealer campaigns

Recent social engineering schemes involving WordPress and Microsoft’s Windows Terminal show that this relatively basic tactic is a growing threat.
CSO Online

Why access decisions are becoming the weakest link in identity security

As identity environments grow more complex, access failures increasingly stem from decisions made without sufficient context ...
CSO Online

Google warns of two actively exploited Chrome zero days

One allows a remote attacker to execute arbitrary code inside a sandbox, the other could result in loss of sensitive ...
CSO OnlineOpinion

Anthropic AI ultimatums and IP theft: The unspoken risk

Anthropic’s run-in with the Pentagon over Claude guardrails and a China-based distillation campaign against its IP highlight ...
CSO Online

Veeam warns admins to patch now as critical RCE flaws hit Backup & Replication

Critical vulnerabilities in Veeam Backup & Replication could allow authenticated users to execute code on backup servers, prompting calls for urgent patching.
CSO Online

State-affiliated hackers set up for critical OT attacks that operators may not detect

Threat groups are weaponizing industrial control access they’ve gained over the years, but critical infrastructure operators ...