CSO US First Look
The day's top cybersecurity news and in-depth coverage
April 24, 2024
The rise in CISO job dissatisfaction â whatâs wrong and how can it be fixed?
Frustration, stress, and increased liability are only a few of the off-putting realities giving CISOs cold feet. It doesnât have to be that way, experts say. Read more
Authentication failure blamed for Change Healthcare ransomware attack
Absence of multi-factor authentication reportedly left a remote access application exposed. Read more
Russian state-sponsored hacker used GooseEgg malware to steal Windows credentials
A now-patched Windows Print Spooler flaw was used by Forest Blizzard to drop the privilege-elevating malware for credential stealing and persistence. Read more
MITRE Corporation targeted by nation-state threat actors
The non-profit organization said the breach occurred in January 2024 when the nation-state threat actor conducted a reconnaissance of MITREâs networks by exploiting one of its VPNs through two Ivanti Connect Secure zero-day vulnerabilities. Read more
Get more from the voice of CSOs and IT leadership
Read more from CSO delivered to your inbox. Subscribe now.
Cisco fixes vulnerabilities in Integrated Management Controller
Cisco fixes high-risk flaws in the out-of-band management controller of multiple products Read more
6 security items that should be in every AI acceptable use policy
Companies that donât have security built into an acceptable use policy are leaving employees to explore and use potentially risky AI tech however they see fit. Read more
Top 10 physical security considerations for CISOs
Securing premises and devices from physical attacks can be just as challenging as defending against cyber threats. Collaboration and communication with all teams involved is the key to success. Read more
