CSO Security Leadership
The day's top cybersecurity news and in-depth coverage
January 13, 2025
Malware targets Mac users by using Appleâs security tool
Using Appleâs proprietary string encryption, the malware evaded detection for months.
Read more
Sponsored by Microsoft Sentinel: Looking to modernize your security information and event management system?
More CISOs are choosing Microsoft Sentinel to transform the SOC and protect their entire multi-cloud, multi-platform environment. Find out why. Read more
UN agencyâs job application database breached, 42,000 records stolen
The agency, which supports the operation of international civil aviation, said air traffic is safe, but one analyst raised doubts about that.
DNA sequencer vulnerabilities signal firmware issues across medical device industry
Eclypsium security researchers have uncovered UEFI vulnerabilities in the Illumina iSeq 100 DNA sequencer, but the broader issue involves the device development process at large.
Critical Mitel, Oracle flaws find active exploitation, CISA urges patching
CISA added the flaws to its known vulnerability catalog, recommending swift patching pursuant to Binding Operational Directive (BOD) 22-01.
Ivanti warns critical RCE flaw in Connect Secure exploited as zero-day
The software maker announced that a stack-based buffer overflow flaw in its VPN appliance has been exploited in the wild. Ivanti Policy Secure and Ivanti Neurons for ZTA gateways are also impacted.
SOAR buyerâs guide: 11 security orchestration, automation, and response products â and how to choose
While the category is aging, the need for better automation and leveraging AI is still very much needed to defend the enterprise stack.
