CSOonline1h
ChatGPT API flaws could allow DDoS, prompt injection attacks
A researcher found an OpenAI development oversight that could allow attackers to launch DDoS attacks on unsuspecting ...
CSOonline4h
7 top cybersecurity projects for 2025
A new year opens to both fresh and persistent cybersecurity challenges. These key projects should be at the top of your 2025 ...
CSOonline8h
EU to take aim at healthcare cyber threat
The European Union is working to help fortify the healthcare industry with a new action plan that focuses on prevention, ...
CSOonline1d
HPE’s sensitive data exposed in alleged IntelBroker hack
The hacker is offering to sell stolen HPE source codes, private and public access keys and personally identifiable ...
CSOonline1d
Midsize firms universally behind in slog toward DORA compliance
The deadline for implementing the EU’s DORA has expired. How far have financial service providers come? Not very far, ...
CSOonline4d
Millions of tunneling hosts are vulnerable to spoofing, DDoS attacks, say researchers
The 4 million vulnerable hosts they discovered accept unauthenticated IP in IP (IPIP), Generic Routing Encapsulation (GRE), ...
CSOonline4d
EU’s DORA could further strain cybersecurity skills gap
As the EU’s Digital Operational Resilience Act comes into force, financial sector firms, especially smaller ones, may face ...
CSOonline4d
Biden White House goes all out in final, sweeping cybersecurity order
The ambitious final executive order requires 52 agency actions to bolster cyber protections and counter adversaries, ...
CSOonline6d
Stop wasting money on ineffective threat intelligence: 5 mistakes to avoid
To prevent overspending in the wrong areas of cybersecurity and support ROI, here are five mistakes CISOs should avoid.
CSOonline5d
The CFO may be the CISO’s most important business ally
Despite natural tensions, a CISO-CFO alliance can help CISOs become better business leaders and ensure the business better ...
CSOonline5d
Cybersecurity hiring is deeply flawed, demoralizing, and needs to be fixed
A process that should be about the excitement of career development or a fresh start has become a frustrating experience ...
CSOonline5d
FTC orders GoDaddy to fix its infosec practices
Despite its size and complexity, FTC complained that the company had failed multiple security standards that needed to be ...