CSO US First Look
The day's top cybersecurity news and in-depth coverage
April 02, 2025
Malicious actors increasingly put privileged identity access to work across attack chains
Identity-based attacks fueled over half of security breaches last year, according to research from Cisco Talos, providing attackers initial access and valid means for lateral movement.
Read more
Sponsored by Pega: Get hands-on with AI-fueled, enterprise-level tech
Discover what's next in enterprise technology at PegaWorld, Pega's global tech event happening this June in Las Vegas. Enter the Innovation Hub, a 100k sq. ft. wonderland of interactive demos and jaw-dropping tech. Discover the power of new solutions and meet the minds who built them.
Microsoft takes first step toward passwordless future
The company is shifting to access keys, first in its consumer offerings, with business applications to follow.
10 best practices for vulnerability management according to CISOs
After years of neglect, organizations are investing in vulnerability management programs to address business risk. A dozen CISOs offer lessons learned and best practices.
LLMs are now available in snack size but digest with care
Distilled models can improve the contextuality and accessibility of LLMs, but can also amplify existing AI risks, including threats to data privacy, integrity, and brand security.
Oracle warns customers of health data breach amid public denial
Oracle continues to publicly deny two separate data breaches despite emerging evidence of the breaches.
Infostealer malware poses potent threat despite recent takedowns
Law enforcement action has failed to dent the impact of infostealer malware, a potent and growing threat to enterprise security.
