CISOs are spending big and still losing ground 2025-12-08 at 07:31 By Anamarija Pogorelec Security leaders are entering another budget cycle with more money to work with, but many still feel no safer. A new benchmark study from Wiz shows a widening gap between investment and impact. Budgets keep rising, cloud programs keep expanding, and […]
CISOs are spending big and still losing ground Read More »
Lumia Security Raises $18 Million for AI Security and Governance 2025-12-05 at 13:32 By Ionut Arghire The startup will invest in expanding its engineering and research teams, deepening product integrations, and scaling go-to-market efforts. The post Lumia Security Raises $18 Million for AI Security and Governance appeared first on SecurityWeek. This article is an excerpt
Lumia Security Raises $18 Million for AI Security and Governance Read More »
Helmet Security Emerges From Stealth Mode With $9 Million in Funding 2025-12-05 at 12:00 By Ionut Arghire Helmet Security has built an end-to-end platform that secures the infrastructure for agentic AI communication. The post Helmet Security Emerges From Stealth Mode With $9 Million in Funding appeared first on SecurityWeek. This article is an excerpt from
Helmet Security Emerges From Stealth Mode With $9 Million in Funding Read More »
What security leaders should watch for when companies buy or sell a business 2025-12-05 at 08:59 By Help Net Security In this Help Net Security video, Lane Sullivan SVP, CISO and Strategy Officer at Concentric AI, explains what security leaders should think about during mergers, acquisitions, and divestitures. Sullivan talks about the types of risk
What security leaders should watch for when companies buy or sell a business Read More »
Agentic Security Firm 7AI Raises $130 Million 2025-12-04 at 17:52 By Mike Lennon Established in 2024 by Cybereason co-founders Lior Div and Yonatan Striem-Amit, the company has raised a total of $166 million in funding. The post Agentic Security Firm 7AI Raises $130 Million appeared first on SecurityWeek. This article is an excerpt from SecurityWeek
Agentic Security Firm 7AI Raises $130 Million Read More »
Global Cyber Agencies Issue AI Security Guidance for Critical Infrastructure OT 2025-12-04 at 15:58 By Eduard Kovacs The 25-page document outlines four principles for securely integrating AI with operational technology. The post Global Cyber Agencies Issue AI Security Guidance for Critical Infrastructure OT appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View
Global Cyber Agencies Issue AI Security Guidance for Critical Infrastructure OT Read More »
AI vs. you: Who’s better at permission decisions? 2025-12-04 at 08:04 By Sinisa Markovic A single tap on a permission prompt can decide how far an app reaches into a user’s personal data. Most of these calls happen during installation. The number of prompts keeps climbing, and that growing pressure often pushes people into rushed
AI vs. you: Who’s better at permission decisions? Read More »
Vulnerability in OpenAI Coding Agent Could Facilitate Attacks on Developers 2025-12-02 at 14:02 By Eduard Kovacs The Codex CLI vulnerability tracked as CVE-2025-61260 can be exploited for command execution. The post Vulnerability in OpenAI Coding Agent Could Facilitate Attacks on Developers appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Vulnerability in OpenAI Coding Agent Could Facilitate Attacks on Developers Read More »
Attackers keep finding new ways to fool AI 2025-12-02 at 08:14 By Anamarija Pogorelec AI development keeps accelerating while the safeguards around it move on uneven ground, according to The International AI Safety Report. Security leaders are being asked to judge exposure without dependable benchmarks. Developers build layered defenses Across the AI ecosystem, developers are
Attackers keep finding new ways to fool AI Read More »
Treating MCP like an API creates security blind spots 2025-12-01 at 09:06 By Mirko Zorz In this Help Net Security interview, Michael Yaroshefsky, CEO at MCP Manager, discusses how Model Context Protocol’s (MCP) trust model creates security gaps that many teams overlook and why MCP must not be treated like a standard API. He explains how
Treating MCP like an API creates security blind spots Read More »
In Other News: HashJack AI Browser Attack, Charming Kitten Leak, Hacker Unmasked 2025-11-28 at 13:28 By SecurityWeek News Other noteworthy stories that might have slipped under the radar: Scattered Spider members plead not guilty, TP-Link sues Netgear, Comcast agrees to $1.5 million fine. The post In Other News: HashJack AI Browser Attack, Charming Kitten Leak,
In Other News: HashJack AI Browser Attack, Charming Kitten Leak, Hacker Unmasked Read More »
OpenAI User Data Exposed in Mixpanel Hack 2025-11-27 at 14:42 By Eduard Kovacs Multiple Mixpanel customers were impacted by a recent cyberattack targeting the product analytics company. The post OpenAI User Data Exposed in Mixpanel Hack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
OpenAI User Data Exposed in Mixpanel Hack Read More »
Criminal networks industrialize payment fraud operations 2025-11-27 at 07:55 By Anamarija Pogorelec Fraud operations are expanding faster than payment defenses can adjust. Criminal groups function like coordinated businesses that develop tools, automate tasks, and scale attacks. New data from a Visa report shows how these shifts are reshaping risk across the financial sector. Fraud now
Criminal networks industrialize payment fraud operations Read More »
Small language models step into the fight against phishing sites 2025-11-26 at 08:31 By Sinisa Markovic Phishing sites keep rising, and security teams are searching for ways to sort suspicious pages at speed. A recent study explores whether small language models (SLMs) can scan raw HTML to catch these threats. The work reviews a range
Small language models step into the fight against phishing sites Read More »
AI Agent Security Firm Vijil Raises $17 Million 2025-11-25 at 20:32 By Ionut Arghire Focusing on improving the resilience of AI agents, the startup will use the funding to accelerate deployments of its platform. The post AI Agent Security Firm Vijil Raises $17 Million appeared first on SecurityWeek. This article is an excerpt from SecurityWeek
AI Agent Security Firm Vijil Raises $17 Million Read More »
WormGPT 4 and KawaiiGPT: New Dark LLMs Boost Cybercrime Automation 2025-11-25 at 15:47 By Eduard Kovacs Palo Alto Networks has conducted an analysis of malicious LLMs that help threat actors with phishing, malware development, and reconnaissance. The post WormGPT 4 and KawaiiGPT: New Dark LLMs Boost Cybercrime Automation appeared first on SecurityWeek. This article is
WormGPT 4 and KawaiiGPT: New Dark LLMs Boost Cybercrime Automation Read More »
How an AI meltdown could reset enterprise expectations 2025-11-25 at 09:02 By Mirko Zorz In this Help Net Security interview, Graham McMillan, CTO at Redgate Software, discusses AI, security, and the future of enterprise oversight. He explains why past incidents haven’t pushed the industry to mature. McMillan also outlines the structural shifts he expects once
How an AI meltdown could reset enterprise expectations Read More »
Microsoft Highlights Security Risks Introduced by New Agentic AI Feature 2025-11-24 at 15:32 By Ionut Arghire Without proper security controls, AI agents could perform malicious actions, such as data exfiltration and malware installation. The post Microsoft Highlights Security Risks Introduced by New Agentic AI Feature appeared first on SecurityWeek. This article is an excerpt from
Microsoft Highlights Security Risks Introduced by New Agentic AI Feature Read More »
The Evolving Role of AI Governance: Turning Risk into Responsibility 2025-11-21 at 16:17 By Carisa Brockman and Bindu Sundaresan Evolving AI Governance: As artificial intelligence becomes integral to decision-making, organizations must prioritize effective governance that fosters innovation while protecting values. Addressing Risks: Recognizing the broader spectrum of AI risks, including bias and privacy concerns, is
The Evolving Role of AI Governance: Turning Risk into Responsibility Read More »
SquareX and Perplexity Quarrel Over Alleged Comet Browser Vulnerability 2025-11-21 at 13:20 By Eduard Kovacs SquareX claims to have found a way to abuse a hidden Comet API to execute local commands, but Perplexity says the research is fake. The post SquareX and Perplexity Quarrel Over Alleged Comet Browser Vulnerability appeared first on SecurityWeek. This
SquareX and Perplexity Quarrel Over Alleged Comet Browser Vulnerability Read More »