CSO Security Leadership
The day's top cybersecurity news and in-depth coverage
June 30, 2025
Beyond CVE: The hunt for other sources of vulnerability intel
Were the CVE program to be discontinued, security teams would have a hard time finding one resource that would function with the same impact across the board. Here are current issues of relying on CVE and some existing options to look into.
Read more
Cybercriminals take malicious AI to the next level
Fraudsters are optimizing illicit models with underground datasets, while criminal vendors roll out increasingly sophisticated deepfake generation and prompt engineering services.
6 key trends redefining the XDR market
X marks the spot: Extended detection and response (XDR) continues to evolve, with XDR-as-a-service on the rise, AI developments reshaping whatâs possible, and vendor movements aplenty.
How to make your multicloud security more effective
From containing costs to knowing what to keep in-house or not here is how to sesurely manage your multicloud environment.
Misconfigured MCP servers expose AI agent systems to compromise
Hundreds of Model Context Protocol (MCP) servers used to link LLMs to third-party services, data sources, and tools include default configurations that could expose users to unauthorized OS command execution and other risks.
Microsoft hints at revoking access to the Windows kernel â eventually
A new Microsoft announcement suggests it has found a way to deliver kernel-level visibility and capabilities to apps running in user mode. Experts conclude a ban on kernel access for cybersecurity tools could be forthcoming.
