CSO Online

Identity as the primary attack surface: What modern breaches are really exploiting

Hackers aren't breaking through firewalls anymore; they are just logging in with stolen credentials, meaning your identity ...
CSO Online

Google folds CodeMender into agent ecosystem amid push for AI-led AppSec

Expansion beyond autonomous patching reflects growing emphasis on orchestration, governance, and enterprise trust ...
CSO Online

Microsoft patches two zero-day flaws in Defender

CISA has added the Microsoft Malware Protection Engine and Microsoft Defender Antimalware Platform vulnerabilities to its KEV ...
CSO Online

Unpatched ChromaDB flaw leaves servers open to remote code execution

The ChromaToast vulnerability can be exploited by forcing the ChromaDB API server to fetch and load maliciously crafted AI ...
CSO Online

Microsoft releases open-source tools to operationalize AI agent safety

Rampart turns red-team findings into repeatable tests; Clarity documents and validates agent design assumptions before code ...