A new vulnerability in GitLab’s Ultimate Enterprise Edition used for managing source code is “dangerous” and needs to be ...

While Symantec couldn’t identify the initial infection vector used in the attack, Fog ransomware actors have used critical ...

Strained budgets, overstretched teams, and a rise in sophisticated threats is leading to plummeting security confidence among ...

A single email can silently trigger Copilot to exfiltrate sensitive corporate data — no clicks, no warnings, no user action.

BrowserVenom is a malicious implant that reroutes and manipulates web traffic to collect sensitive browsing data.

Winners will be recognized in-person at the CSO Conference + Awards at the Grand Hyatt Indian Wells Resort & Villas, Indian ...

FIN6’s latest campaign combines professional rapport-building with cloud-hosted malware delivery to target sensitive HR ...

Interpol, together with 26 countries and several cybersecurity companies, has carried out a major international operation ...

PurpleHaze and ShadowPad campaigns targeted over 70 organizations globally, including government and critical infrastructure ...

The packages carry backdoors that first collect environment information and then delete entire application directories.

CSO ASEAN is pleased to launch the CSO30 ASEAN Awards 2025, recognizing the top 30 senior cybersecurity leaders and teams ...

A destructive new malware, dubbed PathWiper, has struck Ukraine’s critical infrastructure, erasing data and disabling ...