CSO Security Leadership
The day's top cybersecurity news and in-depth coverage
December 11, 2024
Salt Typhoon poses a serious supply chain risk to most organizations
The Salt Typhoon intrusion gives China a chance to exfiltrate massive amounts of data from most organizations, especially voice calls that can be stored for later use in deepfake campaigns.
Sponsored by Zscaler: ThreatLabz research: 87.2% of attacks use encrypted channels
Encrypted threats continue to increase, with 32.1 billion attacks hiding in TLS/SSL traffic in the past year alone, accounting for 87.2% of all threats blocked by the Zscaler cloud. The new ThreatLabz 2024 Encrypted Attacks Report uncovers how attackers are using encrypted channels to deliver malware and hide malicious activities. In the report, youâll find expert analysis and insights as well as 2025 predictions on how encrypted threats will evolve in the coming year.
Bug bounty programs can deliver significant benefits, but only if youâre ready
Bug bounty programs can be a big boon to software security and provide expanded vulnerability visibility, but they're not for all organizations and can come with risks.
Black Hat Europe preview: Cryptographic protocol attacks and AI in the spotlight
The infosecurity world decamps to London this week, with research on vulnerabilities in AI systems at the fore of the latest edition of Black Hat Europe.
Top tips for CISOs running red teams
Learning that your systems arenât as secured as expected can be challenging for CISOs and their teams. Here are a few tips that will help change that experience.
Data deletion enters the ransomware chat
New cyber gangs are increasingly using ransomware to delete data rather than encrypt it.
US may plan legislation to contain Chinese cyber espionage
A classified briefing has revealed a sweeping espionage campaign stealing call data, sparking calls for action against Chinese cyber activities.