Loading...
CSO US First Look
The day's top cybersecurity news and in-depth coverage
April 23, 2025
Security leaders shed light on their zero trust journeys
Most CISOs recognize the improved security posture zero trust will bring. But cultural and technological changes make for an arduous path that takes business savvy and technical acumen to navigate.
Read more
CNAPP buyerâs guide: Top cloud-native app protection platforms compared
Cloud-native application protection platforms (CNAPPs) aim to provide a complete cloud security solution, but some are more complete than others.
Generative AI is making pen-test vulnerability remediation much worse
Organizations already struggle to fix flaws discovered during penetration testing. Gen AI apps bring added complexity and the need for greater expertise.
The state of cyberwar in Ukraine â and how CISOs can help
A visit to Ukraine reveals the daily conflict and context in which Ukraineâs cyber warriors raise the resilience of all the EU. CISOs around the globe have an opportunity to make a difference.
Chinese APT Billbug deploys new malware toolset in attack on multiple sectors
Latest campaign from the group also known as Lotus Blossom and Lotus Panda targeted Southeast Asian organizations with a new backdoor variant, Chrome credential stealers, and a reverse shell program.
North Korea-backed Kimsuky targets unpatched BlueKeep systems in new campaign
The use of RDP vulnerability scanners suggests that BlueKeep is being used for gaining initial access to South Korean and Japanese targets.
Public exploits already available for a severity 10 Erlang SSH vulnerability; patch now
Impacted devices are pervasive in IoT and telecom, and attackers exploiting the vulnerability can easily gain full access, giving them free rein on a network.
© 2025
