CSO Online

Trust in MCP takes first in-the-wild hit via squatted Postmark connector

In a newly disclosed supply-chain attack, an npm package “postmark-mcp” was weaponized to stealthily exfiltrate emails, ...
CSO Online

Meet LockBit 5.0: Faster ESXi drive encryption, better at evading detection

Researchers call it an evolution from earlier versions and not a leap forward, but still advise CSOs to better secure ESXi hosts.
CSO Online

Okta introduces Identity Security Fabric to secure AI agents

The platform’s lifecycle management, cross-app access, and verifiable credentials aim to reduce attack surfaces and ensure compliance as AI agents gain elevated access across enterprise systems.