access control

Treating AI agents like service accounts for federated query security

access control, agentic AI, AI, CISO, cybersecurity, Don't miss, Features, LLMs, News, opinion, strategy /

Treating AI agents like service accounts for federated query security 2026-06-09 at 08:46 By Mirko Zorz In this interview with Help Net Security, Paras Malhotra, CISO at Starburst, explains how the company handles data governance across federated query environments. Topics include layering Starburst’s access controls above native source permissions, tiering vendor risk across more than […]

Treating AI agents like service accounts for federated query security Read More »

Microsoft Scout agent opens a new category of always-on Autopilots

access control, agentic AI, AI, automation, data, Microsoft, News /

Microsoft Scout agent opens a new category of always-on Autopilots 2026-06-03 at 11:28 By Anamarija Pogorelec Workplace AI assistants have mostly waited for a prompt before doing anything. A user asks, the tool answers, and the exchange ends there. Microsoft is putting a different kind of agent inside its Office applications, one designed to keep

Microsoft Scout agent opens a new category of always-on Autopilots Read More »

Raspberry Pi OS 6.2 disables passwordless sudo by default

access control, hardware, Linux, News, passwordless, Raspberry Pi /

Raspberry Pi OS 6.2 disables passwordless sudo by default 2026-04-15 at 14:29 By Anamarija Pogorelec Raspberry Pi OS 6.2, based on the Trixie version, introduces small changes, bug fixes, and disables passwordless sudo by default for new installations. Screenshot of password prompt (Source: Raspberry Pi) “We continually review the security of Raspberry Pi OS to

Raspberry Pi OS 6.2 disables passwordless sudo by default Read More »

Unbounded AI use can break your systems

access control, Artificial Intelligence, code, cybersecurity, Don't miss, DryRun Security, LLMs, News, Video /

Unbounded AI use can break your systems 2026-01-22 at 08:01 By Help Net Security In this Help Net Security video, James Wickett, CEO of DryRun Security, explains cyber risks many teams underestimate as they add AI to products. He focuses on how fast LLM features are pushed into live applications without limits or guardrails. The

Unbounded AI use can break your systems Read More »

Rethinking OT security for project heavy shipyards

access control, access management, cyber resilience, cybersecurity, Damen, Don't miss, Features, Hot stuff, maritime industry, News, threat /

Rethinking OT security for project heavy shipyards 2026-01-12 at 09:09 By Mirko Zorz In this Help Net Security interview, Hans Quivooij, CISO at Damen Shipyards Group, discusses securing OT and ICS in the shipyard. He outlines how project-based operations, rotating contractors, and temporary systems expand the threat surface and complicate access control. Quivooij also covers

Rethinking OT security for project heavy shipyards Read More »

Wi-Fi evolution tightens focus on access control

access control, authentication, cybersecurity, network, News, predictions, standards, wireless, Wireless Broadband Alliance /

Wi-Fi evolution tightens focus on access control 2026-01-09 at 07:33 By Anamarija Pogorelec Wi-Fi networks are taking on heavier workloads, more devices, and higher expectations from users who assume constant access everywhere. A new Wireless Broadband Alliance industry study shows that this expansion is reshaping priorities around security, identity, and trust, alongside adoption of new

Wi-Fi evolution tightens focus on access control Read More »

Passwords are still breaking compliance programs

access control, Compliance, Don't miss, Hot stuff, News, password management, Passwork /

Passwords are still breaking compliance programs 2026-01-06 at 07:32 By Sinisa Markovic The security stack has grown, but audits still stumble on passwords. CISOs see this every year. An organization may have strong endpoint tools, layered network defenses, and a documented access policy. Then the audit turns to shared credentials, spreadsheet-based password storage, or accounts

Passwords are still breaking compliance programs Read More »

What consumers expect from data security

access control, cybersecurity, Data Protection, News, policy, Privacy, regulation, report, SIIA /

What consumers expect from data security 2025-12-31 at 08:50 By Anamarija Pogorelec Security teams spend years building controls around data protection, then a survey asks consumers a simple question about responsibility and the answer lands close to home. Most people believe they are in charge of their own data privacy, and they want systems that

What consumers expect from data security Read More »

Session tokens give attackers a shortcut around MFA

access control, authentication, Compliance, cside, cybersecurity, Don't miss, MFA, News, Video /

Session tokens give attackers a shortcut around MFA 2025-12-22 at 07:45 By Help Net Security In this Help Net Security video, Simon Wijckmans, CEO at cside, discusses why session token theft is rising and why security teams miss it. He walks through how web applications rely on browsers to store session tokens after login often

Session tokens give attackers a shortcut around MFA Read More »

Smart grids are trying to modernize and attackers are treating it like an invitation

access control, Analog Devices, critical infrastructure, cybersecurity, Don't miss, energy sector, Features, firmware, hardware, Hot stuff, News, strategy, supply chain, threats /

Smart grids are trying to modernize and attackers are treating it like an invitation 2025-12-04 at 09:05 By Mirko Zorz In this Help Net Security interview, Sonia Kumar, Senior Director Cyber Security at Analog Devices, discusses how securing decentralized smart grids demands a shift in defensive strategy. Millions of distributed devices are reshaping the attack

Smart grids are trying to modernize and attackers are treating it like an invitation Read More »

What zero trust looks like when you build it step by step

access control, authentication, cybersecurity, Don't miss, identity management, KeyData Cyber, News, security metrics, Video, zero trust /

What zero trust looks like when you build it step by step 2025-12-01 at 08:36 By Help Net Security In this Help Net Security video, Jonathan Edwards, Managing Director at KeyData Cyber, walks us through what practical zero trust adoption looks like in stages. He explains why he dislikes the term itself, then shifts to

What zero trust looks like when you build it step by step Read More »

How an AI meltdown could reset enterprise expectations

access control, Artificial Intelligence, CIO, CISO, cybersecurity, Don't miss, Features, Hot stuff, Incident Response, News, Redgate Software, regulation, strategy, tips /

How an AI meltdown could reset enterprise expectations 2025-11-25 at 09:02 By Mirko Zorz In this Help Net Security interview, Graham McMillan, CTO at Redgate Software, discusses AI, security, and the future of enterprise oversight. He explains why past incidents haven’t pushed the industry to mature. McMillan also outlines the structural shifts he expects once

How an AI meltdown could reset enterprise expectations Read More »

Supply chain sprawl is rewriting security priorities

access control, cybersecurity, data breach, ISC2, News, report, Risk Management, supply chain, third party compromise /

Supply chain sprawl is rewriting security priorities 2025-11-25 at 07:32 By Anamarija Pogorelec Organizations depend on long chains of vendors, but many cybersecurity professionals say these relationships create gaps they cannot see or control. A new ISC2 survey of more than 1,000 cybersecurity professionals shows that supply chain risk sits near the top of their

Supply chain sprawl is rewriting security priorities Read More »

What insurers really look at in your identity controls

access control, Artificial Intelligence, cyber insurance, cybersecurity, Delinea, identity, News, report, security controls, security ROI /

What insurers really look at in your identity controls 2025-11-21 at 08:30 By Anamarija Pogorelec Insurers judge organizations by the strength of their identity controls and by how consistently those controls are applied, according to a new Delinea report. CISOs are entering a market that rewards maturity and penalizes gaps that once passed without scrutiny.

What insurers really look at in your identity controls Read More »

Automation can’t fix broken security basics

access control, Artificial Intelligence, automation, cyber hygiene, cybersecurity, News, patching, report, Swimlane /

Automation can’t fix broken security basics 2025-11-13 at 07:39 By Anamarija Pogorelec Most enterprises continue to fall short on basic practices such as patching, access control, and vendor oversight, according to Swimlane’s Cracks in the Foundation: Why Basic Security Still Fails report. Leadership often focuses on broad resilience goals while the day-to-day work that supports

Automation can’t fix broken security basics Read More »

Employees keep finding new ways around company access controls

1Password, access control, Artificial Intelligence, cybersecurity, News, passwords, policy, report, SaaS, shadow IT /

Employees keep finding new ways around company access controls 2025-11-03 at 07:30 By Anamarija Pogorelec AI, SaaS, and personal devices are changing how people get work done, but the tools that protect company systems have not kept up, according to 1Password. Tools like SSO, MDM, and IAM no longer align with how employees and AI

Employees keep finding new ways around company access controls Read More »

OpenFGA: The open-source engine redefining access control

access control, DevOps, Don't miss, GitHub, News, open source, software, Terraform /

OpenFGA: The open-source engine redefining access control 2025-10-22 at 15:13 By Sinisa Markovic OpenFGA is an open-source, high-performance, and flexible authorization engine inspired by Google’s Zanzibar system for relationship-based access control. It helps developers model and enforce fine-grained access control in their applications. At its core, OpenFGA enables teams to define who can do what

OpenFGA: The open-source engine redefining access control Read More »

When everything’s connected, everything’s at risk

access control, Brown & Brown, CISO, cyber risk, cybersecurity, Don't miss, Features, Hot stuff, IoT, News, supply chain /

When everything’s connected, everything’s at risk 2025-10-21 at 09:02 By Mirko Zorz In this Help Net Security interview, Ken Deitz, CISO at Brown & Brown, discusses how the definition of cyber risk has expanded beyond IT to include IoT, OT, and broader supply chain ecosystems. As organizations connect these assets through cloud and networked systems,

When everything’s connected, everything’s at risk Read More »

Inside the messy reality of Microsoft 365 management

access control, cybersecurity, identity management, Microsoft 365, MSP, News, report, Syncro /

Inside the messy reality of Microsoft 365 management 2025-10-20 at 07:00 By Anamarija Pogorelec Most MSPs agree that Microsoft 365 is now the backbone of business operations, but a Syncro survey shows that complexity, incomplete backups, and reactive security continue to slow their progress in managing it. About 60% of MSPs said Microsoft 365 powers

Inside the messy reality of Microsoft 365 management Read More »

Behind the screens: Building security customers appreciate

access control, Artificial Intelligence, authentication, CISO, cybersecurity, Don't miss, Features, financial industry, fraud, Hot stuff, identity verification, News, PRA Group, strategy, tips /

Behind the screens: Building security customers appreciate 2025-10-09 at 08:03 By Mirko Zorz In this Help Net Security interview, Jess Vachon, CISO at PRA Group, discusses the company’s multi-layered defense against fraud and its commitment to protecting customer trust. Vachon explains how PRA Group balances identity verification with a seamless customer experience. Vachon also reflects

Behind the screens: Building security customers appreciate Read More »

Scroll to Top