CSO Online

South Korea fines Louis Vuitton, Christian Dior, Tiffany $25M for SaaS security failures

The Personal Information Protection Commission (PIPC) has imposed large-scale fines totaling over 36 billion won on three ...
CSO Online

Why key management becomes the weakest link in a post-quantum and AI-driven security world

Stop obsessing over trendy algorithms; your sloppy key management is the real security "black hole" that AI and quantum ...
CSO OnlineOpinion

The foundation problem: How a lack of accountability is destroying cybersecurity

The Navy trains 18-year-olds to run nukes, so why can't we train security analysts? The "talent shortage" is actually just a ...
CSO Online

Battling bots face off in cybersecurity arena

The benchmark tests run inside isolated Docker containers with sufficient resources and no per-challenge timeouts, so scores reflect capability rather than throttling. Each agent uses its native tools ...
CSO Online

Researchers unearth 30-year-old vulnerability in libpng library

The widely used open-source library has been patched to defend against a heap buffer overflow flaw that’s been in the code since its inception.
CSO Online

Four new reasons why Windows LNK files cannot be trusted

By putting conflicting metadata in LNK files, a researcher found four new ways to spoof targets, hide arguments, and run unintended programs in Windows Explorer.
CSO Online

Google fears massive attempt to clone Gemini AI through model extraction

The company identified over 100,000 prompts it suspects were intended to extract proprietary reasoning capabilities.
CSO Online

The democratization of AI data poisoning and how to protect your organization

It only takes 250 bad files to wreck an AI model, and now anyone can do it. To stay safe, you need to treat your data pipeline like a high-security zone.