csoonline.com

The days of perimeter security acting as the core of cybersecurity defenses are long gone. No organization would be caught without firewalls and antivirus scanners to catch low-sophistication attacks, but the real...

The UK’s National Cyber Security Centre (NCSC) and leading mobile networks have warned of a new SMS-based spyware scam dubbed “FluBot”. It targets Android smartphones and devices across the UK. As a result, UK...

Whether you are a sysadmin, a threat intel analyst, a malware researcher, forensics expert, or even a software developer looking to build secure software, these 15 free tools from GitHub or GitLab can easily fit into...

Indian trading platform Upstox has openly acknowledged a data breach, weeks after another Indian company, mobile payment app MobiKwik, aggressively denied what a security researcher described as “probably the largest...

A cloud of uncertainty hangs over the immediate and long-term future of the UK’s  GDPR compliance position post-Brexit. As a result, data protection and compliance experts are calling on UK CISOs to take action to...

Over the past few months, several cyberespionage groups, including one believed to be tied to the Chinese government, have been breaking into the networks of organizations from the United States and Europe by exploiting...

Pop quiz: What has been the most popular — and therefore least secure — password every year since 2013? If you answered “password,” you’d be close. “Qwerty” is another contender for the dubious...

IT architectures are increasingly complex, cumbersome and difficult to protect. As cybersecurity threats grow in number and sophistication, it’s a constant challenge for CISOs to manage cyber risk and secure...

It’s been a boom time for social engineering. Pandemic panic, desperation as income concerns grew, and worry over health and wellness made it easier for criminals to tap into fear.Social engineering, of course, means...

Machine learning adoption exploded over the past decade, driven in part by the rise of cloud computing, which has made high performance computing and storage more accessible to all businesses. As vendors integrate...

Zero day definitionA zero day is a security flaw for which the vendor of the flawed system has yet to make a patch available to affected users. The name ultimately derives from the world of digital content piracy: if...

A group of criminals behind a stealthy backdoor known as more_eggs is targeting professionals with fake job offers tailored to them based on information from their LinkedIn profiles. The gang is selling access to...

The trial of Xiaorong You is set to begin today, April 6, in Greenville, TN. She is accused of trade secret theft and economic espionage after allegedly stealing bisphenol-A-free (BPA-free) technologies owned by several...

Details of the 2020 SolarWinds attack continue to unfold, and it may be years before the final damages can be tallied.While it is “hard to say” if the SolarWinds software supply-chain compromise will become known as...

A security operations center (SOC) analyst works within a team to monitor and fight threats to an organization's IT infrastructure, as well as to identify security weaknesses and opportunities for potential...

Editor's note: This article, originally published on March 27, 2014, has been updated to more accurately reflect recent trends. Wildfires in California. A snowstorm in Texas.  Windstorms across the Midwest. Floods in...

Cloudflare has added two new major features to its Cloudflare One network-as-a-service platform. Magic WAN allows organizations to connect their branch offices, data centers, cloud assets, and remote workers to its...

What is Ryuk ransomware?Ryuk is a sophisticated ransomware threat that has been targeting businesses, hospitals, government institutions and other organizations since 2018. The group behind the malware is known for...