Die offengelegten Zugangsdaten stellen ein erhebliches Sicherheitsrisiko dar. Digineer Station – shutterstock.com Der Cybersicherheitsforscher Jeremiah Fowler deckte kürzlich ein Datenleck mit 149…
Date Archives January 2026
Critical FortiCloud SSO zero‑day forces emergency service disablement at Fortinet
Fortinet has disclosed a critical authentication bypass zero-day vulnerability affecting its FortiCloud single sign-on feature after the company took the emergency step…
Sicarii ransomware locks your data and throws away the keys
A newly observed Sicarii ransomware strain contains a critical encryption key handling defect that can leave encrypted data unrecoverable, even if a…
Always-on privileged access is pervasive — and fraught with risks
Privileged access management (PAM) has always been about ensuring least privilege. But the nature of enterprise cybersecurity — on top of the…
Delegation is a risk decision every leader makes, not an ops choice
You make delegation decisions every day. Sometimes they look like management choices: who owns a workflow, which team runs a tool, how…
Skills CISOs need to master in 2026
Three decades ago, when Steve Katz became the world’s first CISO at Citicorp/Citigroup, he quickly realized that his role was more than…
AI-powered polymorphic attack lures victims to phishing webpages
AI-fueled attacks can transform an innocuous webpage into a customed phishing page. The attacks, revealed in a research from Palo Alto Networks’…
Fixes released for a serious Microsoft Office zero-day flaw
Microsoft is warning admins of an Office security bypass zero day vulnerability that can be triggered simply by a user opening a…
4 Probleme, die CISOs behindern
Lesen Sie, welche strategischen Probleme CISOs bei ihren Aufgaben behindern. alphaspirit.it – shutterstock.com Viele Sicherheitsverantwortliche glauben, dass ein Cybervorfall unvermeidlich ist –…
CISA releases technology readiness list for post-quantum cryptography
The US Cybersecurity and Infrastructure Security Agency (CISA) has released a new advisory mapping post-quantum cryptography (PQC) standards to common enterprise hardware…