CSO US First Look
The day's top cybersecurity news and in-depth coverage
April 19, 2025
When AI moves beyond human oversight: The cybersecurity risks of self-sustaining systems
What happens when AI cybersecurity systems start to rewrite themselves as they adapt over time? Keeping an eye on what theyâre doing will be mission-critical.
Read more
CVE program averts swift end after CISA executes 11-month contract extension
After DHS did not renew its funding contract for reasons unspecified, MITREâs 25-year-old Common Vulnerabilities and Exposures (CVE) program was slated for an abrupt shutdown on April 16, which would have left security flaw tracking in limbo. CISA stepped in to provide a bridge.
AI hallucinations lead to a new cyber threat: Slopsquatting
Attackers can weaponize and distribute a large number of packages recommended by AI models that donât really exist.
What boards want and donât want to hear from cybersecurity leaders
To get through to board members, cybersecurity leaders need to not only learn the language of business but how to translate cyber risk in a way board members can make sense of.
Agentic AI is both boon and bane for security pros
AI agents are predicted to reduce time to exploit by half in two years, here is what you need to know to figure out if your business need agentic AI and how to find the right one.
