CSO US First Look
The day's top cybersecurity news and in-depth coverage
January 31, 2024
SolarWinds calls SEC charges unfounded and inexplicable, files for dismissal
The SolarWinds court filing demands that SEC charges be dropped for lacking foundation, material proof, or scope of indictment. Read more
6 user experience mistakes made for security and how to fix them
Despite guidance to the contrary, some organizations continue to impose security measures that are needlessly complex and counterproductive on their employees and customers. Read more
Time running out to patch Jenkins CI/CD server vulnerability
Threat actors are already scanning the internet for vulnerable Jenkins servers after a proof of concept was published. Read more
10 penetration testing tools the pros use
Pentesting involves reconnaissance, fingerprinting, gaining and maintaining access, defense evasion, covering tracks, privilege escalation, and data exfiltration. Here are 10 open source pententing tools. Read more
Zero-day, supply-chain attacks drove data breach high for 2023
Zero-day exploits, supply chain attacks fuel 72% increase over previous record for incidents of compromise. Another increase is expected for 2024. Read more
HPEâs corporate emails breached by Russian state-sponsored actor âCozy Bearâ
The company says the threat actor, also believed to be behind a recent Microsoft attack, accessed a âsmall percentageâ of corporate mailboxes. Read more
Top cybersecurity product news of the week
New product and service announcements from Black Kite, Zscaler, Mitiga, Thales, ArmorPoint, and VulnCheck. Read more
