CSO Online

Gemini for Chrome gets a second AI agent to watch over it

Google acknowledged the prompt injection risks in its browsing assistant, deploying a ‘user alignment critic’ to vet its ...
CSO Online

Racks, sprawl and the myth of redundancy: Why your failover isn’t as safe as you think

Today’s outages hit harder, so smart redundancy — backed by good policies, automation and testing — is the only way to keep ...
CSO Online

Ignoring AI in the threat chain could be a costly mistake, experts warn

While some researchers dismiss reports of AI-driven cyberattacks as merely marketing messages, threat intel experts counter ...
CSO Online

Manufacturing fares better against ransomware — with room for improvement

Although defenses have improved, more than half of the affected manufacturing companies pay ransom, with 39% suffering data ...
CSO Online

Apache Tika hit by critical vulnerability thought to be patched months ago

CVE-2025-54988 is a weakness in the tika-parser-pdf-module used to process PDFs in Apache Tika from version 1.13 to and ...
CSO OnlineOpinion

When it comes to security resilience, cheaper isn’t always better

Chasing the cheapest vendors feels great — until a breach wipes out the “savings”; real wins come when procurement bakes ...
CSO Online

Keep AI browsers out of your enterprise, warns Gartner

AI browsers including Perplexity Comet and OpenAI’s ChatGPT Atlas present security risks that cannot be adequately mitigated, ...
CSO Online

Offensive security takes center stage in the AI era

A growing percentage of CISOs see OffSec as a must-have for improving their overall security posture — especially as AI cyber ...
CSO Online

Vaillant CISO: NIS2 complexity and lack of clarity endanger its mission

Raphael Reiß, CISO at EU HVAC giant Vaillant Group, explains what cyber challenges his industry faces, including how to ...
CSO Online

Warning: React2Shell vulnerability already being exploited by threat actors

It has been seen spreading cryptojacking malware and in attempts to steal cloud credentials from compromised machines.
CSO Online

Insecure use of Signal app part of wider Department of Defense problem, suggests Senate report

The Signalgate scandal that enveloped US Secretary of Defense Pete Hegseth in March appears to be symptomatic of a wider lax ...
CSO Online

Chinese cyberspies target VMware vSphere for long-term persistence

CISA and the NSA warn that Chinese state-sponsored attackers are deploying malware dubbed BRICKSTORM on VMware servers to ...