CSO US First Look
The day's top cybersecurity news and in-depth coverage
March 13, 2025
Hiring privacy experts is tough â hereâs why
Unrealistic expectations by hiring managers paired with budget constraints are some of the impediments to hiring experts in privacy, on top of the constant changes to privacy regulations.
Read more
Generative AI red teaming: Tips and techniques for putting LLMs to the test
Getting started with a generative AI red team or adapting an existing one to the new technology is a complex process that OWASP helps unpack with its latest guide.
Trump nominates cyber vet Sean Plankey for CISA chief amid DOGE cuts and firings
The cybersecurity veteranâs extensive leadership chops might spare the US federal cybersecurity agency from further damaging layoffs and spending cuts following a brutal seven weeks, observers say.
CISA cybersecurity workforce faces cuts amid shifting US strategy
CISA red teams have been dismantled as federal cybersecurity funding faces deep cuts.
Chinese cyberespionage group deploys custom backdoors on Juniper routers
The threat group UNC3886 uses stolen credentials and custom malware implants to compromise end-of-life routers from Juniper Networks still in use by enterprises and ISPs.
SAP patches severe vulnerabilities in NetWeaver and Commerce apps
The enterprise software vendor bundled 25 security patches into its March update, addressing flaws that impact middleware, interfaces, custom apps, and more.
March Patch Tuesday warnings: Act fast to plug zero day holes in Windows, VMware
Note also that apps using OpenSSH have to be patched to close a decade-old hole.
