CSO US First Look
The day's top cybersecurity news and in-depth coverage
September 22, 2023
Gitlab fixes bug that exploited internal policies to trigger hostile pipelines
It was possible for an attacker to run pipelines as an arbitrary user via scheduled security scan policies. Read more
Chinaâs offensive cyber operations support âsoft powerâ agenda in Africa
Researchers track Chinese cyber espionage intrusions targeting African industrial sectors. Read more
Key findings from the CISA 2022 Top Routinely Exploited Vulnerabilities report
CISAâs recommendations for vendors, developers, and end-users promote a more secure software ecosystem. Read more
Insider risks are getting increasingly costly
The cost of cybersecurity threats caused by organization insiders rose over the course of 2023, according to a new report from the Ponemon Institute and DTEX Systems. Read more
US cyber insurance claims spike amid ransomware, funds transfer fraud, BEC attacks
Cyber insurance claims frequency increased by 12% in the first half of 2023 while claims severity increased by 42% with an average loss amount of more than $115,000. Read more
Top cybersecurity M&A deals for 2023
Fears of recession, rising interest rates, mass tech layoffs, and conservative spending trends are likely to make dealmakers cautious, but an ever-increasing need to defend against bigger and faster attacks will likely keep M&A activity steady in 2023. Read more
