CSO US First Look
The day's top cybersecurity news and in-depth coverage
November 30, 2023
Almost all developers are using AI despite security concerns, survey suggests
About 96% of developers are using AI tools and nearly eight out of 10 coders are bypassing security policies to use them, while placing unfounded trust into AIâs competence and security, according to the report by Snyk. Read more
FBI probes Pennsylvanian water utility hack by pro-Iran group
Federal and state investigations are underway for the recent pro-Iran hack into a Pennsylvania-based water utility targeting Israel-made equipment. Read more
3 ways to fix old, unsafe code that lingers from open-source and legacy programs
Code vulnerability is not only a risk of open-source code, with many legacy systems still in use â whether out of necessity or lack of visibility â the truth is that cybersecurity teams will inevitably need to address the problem. Read more
North Korean hackers mix code from proven malware campaigns to avoid detection
Threat actors are combining RustBucket loader with KandyKorn payload to effect an evasive and persistent RAT attack. Read more
How to maintain a solid cybersecurity posture during a natural disaster
Fire, flood, eathquake, hurricane, tornado: natural disasters are becoming more prevalent and theyâre a threat to cybersecurity that isnât always on a companyâs radar. Here are some ways to prepare for the worst. Read more
Attackers could abuse Google's SSO integration with Windows for lateral movement
Compromised Windows systems can enable attackers to gain access to Google Workspace and Google Cloud by stealing access tokens and plaintext passwords. Read more
