CSO US First Look
The day's top cybersecurity news and in-depth coverage
November 28, 2024
How not to hire a North Korean IT spy
CISOs are urged to carry out tighter vetting of new hires to ward off potential âmolesâ â who are increasingly finding their way onto company payrolls and into their IT systems.
A US soldier is suspected of being behind the massive Snowflake data leak
The hacker told fellow members of criminal forums that he was from the US Army and shared pictures of himself in uniform.
Russian APT RomCom combines Firefox and Windows zero-day flaws in drive-by exploit
The no-click exploit launched in October infected computers in Europe and North America with the RomCom backdoor when victims were redirected through attacker-controlled websites.
QNAP fixes critical security holes in its networking solutions
The critical flaws impacting QNAPâs NAS and QuRouter solutions could allow remote attackers to execute arbitrary commands on compromised systems.
Starbucks operations hit after ransomware attack on supply chain software vendor
Blue Yonder, a supply chain software provider for Starbucks and other retailers, confirmed service disruptions caused by a ransomware attack.
Cybersecurityâs oversimplification problem: Seeing AI as a replacement for human agency
CISOs should be thinking now about changing the assumption that the âGreat Machineâ of artificial intelligence is so transformational it can replace, rather than augment, human activity.
9 VPN alternatives for securing remote network access
Virtual private networks have shortcomings when it comes to protecting remote network connections. These technologies can replace or supplement them.