News

CSO Online

Entra ID vulnerability exposes gaps in cloud identity trust models, experts warn

Though patched, the flaw underscores systemic risks in cloud identity systems where legacy APIs and invisible delegation ...
CSO Online

HybridPetya ransomware bypasses Windows Secure Boot

Researchers from cybersecurity company ESET have detected a new ransomware called HybridPetya, which is similar to the infamous Petya and NotPetya malware. Like its predecessors, the malware targets ...
CSO Online

Cybersecurity in smart cities, under scrutiny

Municipalities are increasingly incorporating smart city strategies into their development plans. But such projects don’t always include adequate cybersecurity safeguards against their complex, ...
CSO Online

Brute force attacks hitting SonicWall firewall configuration backups

SonicWall is warning admins that recent brute force attacks on its firewall’s API service for cloud backup could have exposed ...
CSO Online

New Rowhammer technique against DDR5 achieves privilege escalation

By reverse-engineering the Target Row Refresh (TRR) mechanisms that have thus far protected DDR5 RAM against bit flips, ...
CSO Online

WatchGuard patches ‘critical’ VPN flaw in firewalls that could lead to compromise

WatchGuard has patched a dangerous branch office and mobile VPN configuration vulnerability affecting nearly three dozen ...
CSO Online

Meet ShadowLeak: ‘Impossible to detect’ data theft using AI

Radware has created a zero-click indirect prompt injection technique that could bypass ChatGPT to trick OpenAI servers into ...