CSO US First Look
The day's top cybersecurity news and in-depth coverage
April 05, 2025
10 best practices for vulnerability management according to CISOs
After years of neglect, organizations are investing in vulnerability management programs to address business risk. A dozen CISOs offer lessons learned and best practices.
Read more
Oracle quietly admits data breach, days after lawsuit accused it of cover-up
A lawsuit filed Monday accused Oracle of failing to acknowledge a recent data breach â but the company has reportedly since informed some customers.
How CISOs can balance business continuity with other responsibilities
With business continuity, CISOs must navigate a complex mix of security, business priorities and operational resilience â often without clear ownership of the process.
6 hard-earned tips for leading through a cyberattack â from CSOs whoâve been there
When a cyberattack strikes, security leaders must go beyond the incident response plan to ensure holistic preparation, effective collaboration, and strong leadership under fire.
Malicious actors increasingly put privileged identity access to work across attack chains
Identity-based attacks fueled over half of security breaches last year, according to research from Cisco Talos, providing attackers initial access and valid means for lateral movement.
Google adds end-to-end email encryption to Gmail
The new encryption system doesnât require external exchange of keys or complex user certificate management
Volume of attacks on network devices shows need to replace end of life devices quickly
Cisco report reveals two of the three top vulnerabilities attackers went after in 2024 were in old network devices.
