资讯

CSO Online6 小时
Ransomware-Bande erpresst Volkswagen
Die Stormous-Bande, die sich mit dem aktuellen VW-Angriff brüstet, sorgte bereits in den vergangenen Jahren für Aufsehen mit ...
CSO Online6 小时
BKA enthüllt Identität von Trickbot-Anführer
Seit Jahren sorgt die russische Hackergruppe Trickbot weltweit für Angst und Millionenverluste. Als CEO soll der Beschuldigte ...
CSO Online8 小时
FBI cracks down on crypting crew in a global counter-antivirus service disruption
A seizure under Operation Endgame dismantled four crypting and CAV sites, along with their supporting infrastructure, ...
CSO Online10 小时
6 hard truths security pros must learn to live with
Increasingly sophisticated attacks, breach blame and inevitability, a relentless workload — working in cybersecurity requires ...
CSO Online3 天
Securing Windows 11 and Server 2025: What CISOs should know about the latest updates
Microsoft’s latest rollouts to Windows 11 24H2 and Windows Server 2025 include the arrival of Recall and hotpatching. Here ...
CSO Online4 天
Microsoft Entra’s billing roles pose privilege escalation risks in Azure
Guest users with certain billing roles can create and own subscriptions, potentially gaining persistence and privilege ...
CSO Online3 天
Novel PumaBot slips into IoT surveillance with stealthy SSH break-ins
The botnet brute-forces SSH credentials against a list of harvested IP addresses, instead of conducting internet-wide scans.
CSO Online5 天
If you use OneDrive to upload files to ChatGPT or Zoom, don’t
Users could potentially allow access to the entire drive because of the way Microsoft implements OAuth in OneDrive File ...
CSO Online5 天Opinion
‘Secure email’: A losing battle CISOs must give up
Security wise, email has long been an outdated mode of communication in our increasingly cyber-threatened world. It’s time we ...
CSO Online3 天
New botnet hijacks AI-powered security tool on Asus routers
Once inside as an admin, attackers exploit a command injection flaw to trick the AI-powered security feature into executing ...
CSO Online3 天
Poisoned models in fake Alibaba SDKs show challenges of securing AI supply chains
Fake Alibaba Labs AI SDKs hosted on PyPI included PyTorch models with infostealer code inside. With support for detecting ...
CSO Online5 天
New Russian APT group Void Blizzard targets NATO-based orgs after infiltrating Dutch police
The cyberespionage group uses compromised credentials to steal emails and data from public and private sector organizations ...