CSO US First Look
The day's top cybersecurity news and in-depth coverage
April 21, 2025
Two ways AI hype is worsening the cybersecurity skills crisis
Expected to ease security teamsâ workloads, AI is adding pressure, forcing them to govern and adopt it while managing existing responsibilities, often without proper training.
Read more
When AI moves beyond human oversight: The cybersecurity risks of self-sustaining systems
What happens when AI cybersecurity systems start to rewrite themselves as they adapt over time? Keeping an eye on what theyâre doing will be mission-critical.
Will politicization of security clearances make US cybersecurity firms radioactive?
Following Trump's executive order to strip SentinelOne of its security clearances, many wonder if CISOs will soon put American security firms in the same bad light as Russiaâs Kaspersky and Chinaâs Nuctech.
Hackers target Apple users in an âextremely sophisticated attackâ
The bugs, found in Appleâs CoreAudio and RPAC components, enabled code execution and memory corruption attacks.
CISOs no closer to containing shadow AIâs skyrocketing data risks
A 30-fold increase in company data being exposed to shadow AI shows that offering users official AI tools doesnât reduce the data leak and compliance risks of unsanctioned AI use.
Update these two servers from Gladinet immediately, CISOs told
Hard-coded key vulnerability has been exploited since March, says report; analyst says programmers arenât trained to prevent this kind of issue.
Russia-linked APT29 targets European diplomats with new malware
The phishing campaign impersonates ambassadors by sending out invitations to wine tastings.
