CSO Online

Critical sandbox bypass fixed in popular Thymeleaf Java template engine

The 9.1-CVSS vulnerability enables attackers to circumvent RCE protections in the de facto template engine for the Java ...

For Iran, Flexing Control Over Waterway Is New Deterrent

Iran’s government could emerge from the conflict with a blueprint to keep adversaries at bay, regardless of any restrictions ...

Why Iran’s ‘Mosquito Fleet’ Remains a Potent Threat in the Strait of Hormuz

Although much of the regular Iranian navy is destroyed, the Islamic Revolutionary Guards Corps can still deploy small, speedy ...

The Mythos Breach: Why Frontier Models Turn AI Safety Into A Fiduciary Responsibility

Frontier Models create new fiduciary responsibilities for corporate governance. Corporate boards need to understand the new ...

The MCP Disclosure Is the AI Era’s ‘Open Redirect’ Moment

The MCP flaw reveals a systemic AI security gap, exposing enterprise systems to supply chain attacks and forcing a shift ...

3 things to know about naval blockades as the U.S. patrols the Strait of Hormuz

The White House says it wants to choke off Iran's oil export revenue. But experts say that blockades are often unpredictable ...