CSO Security Leadership
The day's top cybersecurity news and in-depth coverage
May 28, 2025
Will AI agent-fueled attacks force CISOs to fast-track passwordless projects?
AI agents are looming as another security headache for CISOs that could force their hand on shifting to passwordless authentication. And this could be a rare, good news for cybersecurity.
Read more
Sponsored by IANS Research: Access the Cybersecurity Incident Response Plan Template
This Incident Response Plan template is a playbook for tackling cybersecurity incidents fast. Based on the NIST Incident Handling Guide, it outlines clear procedures and real-world incident scenarios. Use it to create step-by-step response plans that cut downtime and reduce risk.
How CISOs can defend against Scattered Spider ransomware attacks
CISOs should fortify help desk and employee defenses, enhance intrusion detection and tracking capabilities, and recognize that paying ransoms is not a viable strategy.
Breaking RSA encryption just got 20x easier for quantum computers
New research shows that RSA-2048 encryption could be cracked using a one-million-qubit system by 2030, 20x faster than previous estimates. Hereâs what it means for enterprise security.
New Russian APT group Void Blizzard targets NATO-based orgs after infiltrating Dutch police
The cyberespionage group uses compromised credentials to steal emails and data from public and private sector organizations across a wide range of industries.
CISA flags Commvault zero-day as part of wider SaaS attack campaign
Threat actors exploited the Commvault flaw to access M365 secrets, allowing further breaches of SaaS applications.
Open MPIC project defends against BGP attacks on certificate validation
Open MPIC provides certificate authorities with an open-source framework for implementing multi-perspective validation, protecting against BGP hijacking attacks that threaten the web's trust infrastructure.
