Shweta Sharma

Senior Writer

Shweta Sharma is a senior journalist covering enterprise information security and digital ledger technologies for IDG’s CSO Online, Computerworld, and other enterprise sites.

Articles by Shweta Sharma

Filter by

Linux, macOS users infected with malware posing as legitimate Go packages

Threat actors are typosquatting popular Go packages such as Hypert and Layout to drop malware on Linux and macOS systems.

By Shweta Sharma

07 Mar 2025 3 mins

Malware Security

Badbox Android botnet disrupted through coordinated threat hunting

By Shweta Sharma

06 Mar 2025 4 mins

Android Security Security

Krypto-Rekordraubzug von Nordkorea gesteuert?

By Shweta Sharma and Florian Maier

26 Feb 2025 6 mins

Cryptocurrency Cybercrime

Critical deserialization bugs in Adobe, Oracle software actively exploited, warns CISA

The flaws allow attackers to use a serialization oversight to compromise systems for remote code execution.

By Shweta Sharma

25 Feb 2025 3 mins

Vulnerabilities

Bybit’s $1.5B hack linked to North Korea’s Lazarus group

Investigation revealed that BingX, & Phemex hacks were also connected to the same cluster as Bybit's, confirming the threat actor’s identity as the Lazarus group.

By Shweta Sharma

24 Feb 2025 3 mins

Hacker Groups Security

Mac users duped with FrigidStealer posing as browser updates

Threat actors are seen distributing the new macOS stealer in a web inject campaign, along with stealers for other operating systems.

By Shweta Sharma

20 Feb 2025 4 mins

MacOS Security Malware Security

Hackers gain root access to Palo Alto firewalls through chained bugs

A recently disclosed medium-severity bug was chained with critical, older bugs to gain root-level access to PAN firewall systems.

By Shweta Sharma

19 Feb 2025 3 mins

Network Security Security Vulnerabilities

Russian malware discovered with Telegram hacks for C2 operations

Stealthy C2 messages operated by the Golang backdoor could easily be mistaken for legitimate Telegram API communication.

By Shweta Sharma

18 Feb 2025 3 mins

APIs Malware Security

whoAMI name confusion attacks can expose AWS accounts to malicious code execution

Due to a misconfiguration, developers could be tricked into retrieving malicious Amazon Machine Images (AMI) while creating EC2 instances.

By Shweta Sharma

14 Feb 2025 3 mins

Cloud Security Cyberattacks Security

CISA, FBI call software with buffer overflow issues ‘unforgivable’

The federal directive forbids vendors from shipping software with such flaws, and flags recent Microsoft, and Ivanti zero-days as examples.

By Shweta Sharma

13 Feb 2025 3 mins

Bugs Security Vulnerabilities

Show me more

8 obstacles women still face when seeking a leadership role in IT

By Christina Wood

07 Mar 20258 mins

CareersIT Leadership

What is risk management? Quantifying and mitigating uncertainty

By Josh Fruhlinger

07 Mar 202510 mins

IT Governance FrameworksIT LeadershipRisk Management

Chinese APT Silk Typhoon exploits IT supply chain weaknesses for initial access

By Lucian Constantin

06 Mar 20256 mins

Advanced Persistent ThreatsGovernmentHacker Groups

CSO Executive Sessions: How cybersecurity impacts company ratings - A fey factor for investors and consumers

12 Feb 202527 mins

CSO Executive Sessions: Guardians of the Games - How to keep the Olympics and other major events cyber safe

07 Aug 202417 mins

CSO Executive Session India with Dr Susil Kumar Meher, Head Health IT, AIIMS (New Delhi)

17 Jul 202417 mins

CSO Executive Sessions: How cybersecurity impacts company ratings - A fey factor for investors and consumers

12 Feb 202527 mins

CSO Executive Sessions: How should software solution providers keep themselves and their enterprise clients safe?

26 Jan 202518 mins

CSO Executive Sessions: Open Source Institute’s Eric Nguyen on supply chain risks to critical infrastructure (Part 2)

14 Nov 202415 mins

Critical InfrastructureIT GovernanceSupply Chain