Laden...
CSO US First Look
The day's top cybersecurity news and in-depth coverage
May 30, 2025
Securing Windows 11 and Server 2025: What CISOs should know about the latest updates
Microsoftâs latest rollouts to Windows 11 24H2 and Windows Server 2025 include the arrival of Recall and hotpatching. Here are the security settings and recommendations to note.
Read more
Even $5M a year canât keep top CISOs happy
Many CISOs in large enterprises are unhappy with both their compensation and the resources theyâre given to secure the business; despite this, theyâre aiming to move higher.
Microsoft Entraâs billing roles pose privilege escalation risks in Azure
Guest users with certain billing roles can create and own subscriptions, potentially gaining persistence and privilege escalation within an organizationâs Azure environment.
Warning: Threat actors now abusing Google Apps Script in phishing attacks
Tactic tries to fool employees who trust the Google brand.
Poisoned models in fake Alibaba SDKs show challenges of securing AI supply chains
Fake Alibaba Labs AI SDKs hosted on PyPI included PyTorch models with infostealer code inside. With support for detecting malicious code inside ML models lacking, expect the technique to spread.
© 2025
