Featured news New CISO appointments 2024 Keep up with news of CSO, CISO, and other senior security executive appointments. Apr 26, 2024 14 mins CSO and CISO IT Jobs IT Governance news Top cybersecurity product news of the week Apr 26, 2024 81 mins Generative AI Security news Salt Security adds defense against OAuth attacks Apr 25, 2024 3 mins Authentication Security Software ArticlesnewsCisco urges immediate software upgrade after state-sponsored attackHackers exploited previously undetected vulnerabilities in Cisco’s Adaptive Security Appliances — a product that combines multiple cybersecurity functions.By Prasanth Aby Thomas Apr 25, 2024 3 minsVulnerabilitiesnewsNew OT security service can help secure against critical systems attacksCritical Start’s new offering is designed to handle security teams with specialized detection and response tooling for operational technology systems.By Shweta Sharma Apr 24, 2024 3 minsSecurity SoftwarenewsAuthentication failure blamed for Change Healthcare ransomware attackAbsence of multi-factor authentication reportedly left a remote access application exposed.By John Leyden Apr 23, 2024 5 minsRansomwareCyberattacksnewsRussian state-sponsored hacker used GooseEgg malware to steal Windows credentialsA now-patched Windows Print Spooler flaw was used by Forest Blizzard to drop the privilege-elevating malware for credential stealing and persistence.By Shweta Sharma Apr 23, 2024 3 minsMalwareWindows SecuritynewsMITRE Corporation targeted by nation-state threat actorsThe non-profit organization said the breach occurred in January 2024 when the nation-state threat actor conducted a reconnaissance of MITRE’s networks by exploiting one of its VPNs through two Ivanti Connect Secure zero-day vulnerabilities.By Gyana Swain Apr 22, 2024 4 minsData BreachnewsRansomware feared in Octapharma Plasma’s US-wide shutdownThe disruption has impacted more than 150 plasma centers in the US, with possible effects on European operations.By Shweta Sharma Apr 19, 2024 3 minsRansomwarenewsUK law enforcement busts online phishing marketplaceThe coordinated takedown has infiltrated the fraud service and made several arrests based on data found on the platform.By Shweta Sharma Apr 18, 2024 4 minsPhishingLegalnewsConsolidation blamed for Change Healthcare ransomware attackUnited HealthGroup said it has already taken $872 million in dealing with the attack and the disruption it caused.By John Leyden Apr 18, 2024 5 minsRansomwareCyberattacksnewsCisco announces AI-powered Hypershield for autonomous exploit patching in the cloud AI-based capability is part of Cisco’s Security Cloud platform for hyperscalers.By John Dunn Apr 18, 2024 4 minsThreat and Vulnerability ManagementCloud SecuritynewsSAP users are at high risk as hackers exploit application vulnerabilitiesResearch highlights heightened threat actor interests in SAP systems, targeting poorly patched organizations.By Shweta Sharma Apr 17, 2024 4 minsApplication SecurityVulnerabilitiesnewsSensitive US government data exposed after Space-Eyes data breachThe breach compromises sensitive data from critical US government agencies including the Department of Justice, Department of Homeland Security, and the US armed forces. By Shweta Sharma Apr 16, 2024 3 minsData BreachCyberattacksnewsHacker dumps data of 2.8 million Giant Tiger customersThe hacked information includes the customers' email addresses who either subscribed to the Canadian retailer's emails or had accounts created on its official website, their names, addresses, and phone numbers. By Shweta Sharma Apr 15, 2024 3 minsData BreachHacking Show more Show less Show me morePopularArticlesPodcastsVideos feature The biggest data breach fines, penalties, and settlements so far By Shweta Sharma and Michael Hill Apr 26, 202416 mins Data BreachSecurity feature Looking outside: How to protect against non-Windows network vulnerabilities By Susan Bradley Apr 25, 20247 mins Windows SecurityNetwork SecuritySecurity Practices brandpost Sponsored by Palo Alto Networks Cloud security teams: What to know as M&A activity rebounds in 2024 By Amol Mathur, SVP & GM of Prisma Cloud, Palo Alto Networks Apr 25, 20244 mins Cloud Security podcast CSO Executive Sessions: Geopolitical tensions in the South China Sea – why the private sector should care Apr 02, 202416 mins CSO and CISO podcast CSO Executive Sessions: 2024 International Women's Day special Mar 13, 202410 mins CSO and CISO podcast CSO Executive Sessions: Former convicted hacker Hieu Minh Ngo on blindspots in data protection Feb 20, 202421 mins CSO and CISO video CSO Executive Sessions: Geopolitical tensions in the South China Sea – why the private sector should care Apr 01, 202416 mins CSO and CISO video CSO Executive Sessions: 2024 International Women's Day special Mar 13, 202410 mins CSO and CISO video LockBit feud with law enforcement feels like a TV drama Mar 05, 202456 mins RansomwareArtificial Intelligence