automation

ENISA advisory examines package manager security risks

ENISA advisory examines package manager security risks 2026-03-12 at 15:24 By Anamarija Pogorelec Developers install external libraries with a single command, and that step can introduce more code than expected into a project environment. Dependency resolution inside package managers extends software supply chains across large collections of external components. ENISA’s Technical Advisory for Secure Use […]

ENISA advisory examines package manager security risks Read More »

Cursor Automations turns code review and ops into background tasks

Cursor Automations turns code review and ops into background tasks 2026-03-06 at 12:18 By Anamarija Pogorelec Cursor Automations, the always-on agent platform from Cursor, is expanding with a new generation of autonomous systems that streamline code review, incident response, and other engineering workflows. The platform runs AI agents on schedules or in response to development

Cursor Automations turns code review and ops into background tasks Read More »

What happens when AI teams compete against human hackers

What happens when AI teams compete against human hackers 2026-03-06 at 07:58 By Anamarija Pogorelec A cybersecurity competition produced what may be the largest controlled dataset comparing AI-augmented teams to human-only teams on professional-grade offensive security tasks. The event, called NeuroGrid, ran for 72 hours on the Hack The Box platform and drew 1,337 registered

What happens when AI teams compete against human hackers Read More »

BlacksmithAI: Open-source AI-powered penetration testing framework

BlacksmithAI: Open-source AI-powered penetration testing framework 2026-03-02 at 08:00 By Mirko Zorz BlacksmithAI is an open-source penetration testing framework that uses multiple AI agents to execute different stages of a security assessment lifecycle. A multi-agent structure for offensive workflows BlacksmithAI runs as a hierarchical system in which an orchestrator coordinates task execution across specialized agents.

BlacksmithAI: Open-source AI-powered penetration testing framework Read More »

Industrial networks continue to leak onto the internet

Industrial networks continue to leak onto the internet 2026-02-27 at 07:30 By Mirko Zorz Industrial operators continue to run remote access portals, building automation servers, and other operational technology services on public IP address ranges. Palo Alto Networks, Siemens, and Idaho National Laboratory describe the scope of that exposure in the Intelligence-Driven Active Defense Report

Industrial networks continue to leak onto the internet Read More »

What boards need to hear about cyber risk, and what they don’t

What boards need to hear about cyber risk, and what they don’t 2026-02-02 at 09:10 By Help Net Security In this Help Net Security video, Rishi Kaushal, CIO at Entrust, explains how security leaders should talk to the board about cyber risk. He focuses on what matters to board members and what does not. He

What boards need to hear about cyber risk, and what they don’t Read More »

n8n adds Chat Hub to centralize AI access inside automation workflows

n8n adds Chat Hub to centralize AI access inside automation workflows 2026-01-28 at 12:32 By Anamarija Pogorelec Teams using automation platforms are starting to treat conversational AI as another operational interface. That change is reflected in a new feature from n8n, which has introduced a built-in Chat Hub designed to let users interact with AI

n8n adds Chat Hub to centralize AI access inside automation workflows Read More »

Security leaders push for continuous controls as audits stay manual

Security leaders push for continuous controls as audits stay manual 2026-01-21 at 07:03 By Anamarija Pogorelec Security teams say they want real-time insight into controls, but still rely on periodic checks that trail daily operations. New RegScale research shows how wide that gap remains and where organizations are directing time, staff, and budget to manage

Security leaders push for continuous controls as audits stay manual Read More »

Automation forces a reset in security strategy

Automation forces a reset in security strategy 2025-12-29 at 08:08 By Anamarija Pogorelec Enterprise security teams are working under the assumption that disruption is constant. A global study by Trellix shows that resilience has moved from a long term goal to a structural requirement for CISOs. Infrastructure design, operational integration, and the use of AI

Automation forces a reset in security strategy Read More »

Anubis: Open-source web AI firewall to protect from scraper bots

Anubis: Open-source web AI firewall to protect from scraper bots 2025-12-22 at 08:49 By Sinisa Markovic Anubis is an open-source tool designed to protect websites from automated scraping and abusive traffic by adding computational friction before a request is served. Maintained by TecharoHQ, the project targets a growing problem for site operators who want to

Anubis: Open-source web AI firewall to protect from scraper bots Read More »

Identity risk is changing faster than most security teams expect

Identity risk is changing faster than most security teams expect 2025-12-19 at 07:35 By Anamarija Pogorelec Security leaders are starting to see a shift in digital identity risk. Fraud activity is becoming coordinated, automated, and self-improving. Synthetic personas, credential replay, and high speed onboarding attempts now operate through shared infrastructures that behave less like scattered

Identity risk is changing faster than most security teams expect Read More »

Zabbix: Open-source IT and OT observability solution

Zabbix: Open-source IT and OT observability solution 2025-12-17 at 08:08 By Anamarija Pogorelec Zabbix is an open source monitoring platform designed to track the availability, performance, and integrity of IT environments. It monitors networks along with servers, virtual machines, applications, services, databases, websites, and cloud resources. For cybersecurity professionals, this visibility matters because operational issues

Zabbix: Open-source IT and OT observability solution Read More »

CISOs are spending big and still losing ground

CISOs are spending big and still losing ground 2025-12-08 at 07:31 By Anamarija Pogorelec Security leaders are entering another budget cycle with more money to work with, but many still feel no safer. A new benchmark study from Wiz shows a widening gap between investment and impact. Budgets keep rising, cloud programs keep expanding, and

CISOs are spending big and still losing ground Read More »

Threat intelligence programs are broken, here is how to fix them

Threat intelligence programs are broken, here is how to fix them 2025-12-03 at 07:12 By Anamarija Pogorelec Security teams often gather large amounts of threat data but still struggle to improve detection or response. Analysts work through long lists of alerts, leaders get unclear insights, and executives see costs that do not lead to better

Threat intelligence programs are broken, here is how to fix them Read More »

The collapse of trust at the identity layer

The collapse of trust at the identity layer 2025-12-02 at 07:49 By Anamarija Pogorelec Identity verification has become the latest front in the fight against industrialized fraud, according to a new report from Regula. The shift is visible across sectors that once relied on predictable verification routines. Criminals have learned to target the identity step

The collapse of trust at the identity layer Read More »

cnspec: Open-source, cloud-native security and policy project

cnspec: Open-source, cloud-native security and policy project 2025-11-24 at 08:32 By Sinisa Markovic cnspec is an open source tool that helps when you are trying to keep a sprawling setup of clouds, containers, APIs and endpoints under control. It checks security and compliance across all of it, which makes it easier to see what needs

cnspec: Open-source, cloud-native security and policy project Read More »

Chinese cyber spies used Claude AI to automate 90% of their attack campaign, Anthropic claims

Chinese cyber spies used Claude AI to automate 90% of their attack campaign, Anthropic claims 2025-11-14 at 17:03 By Zeljka Zorz Anthropic threat researchers believe that they’ve uncovered and disrupted the first documented case of a cyberattack executed with the help of its agentic AI and minimal human intervention. “The threat actor manipulated [Anthropic’s large

Chinese cyber spies used Claude AI to automate 90% of their attack campaign, Anthropic claims Read More »

What happens when employees take control of AI

What happens when employees take control of AI 2025-11-14 at 07:42 By Anamarija Pogorelec Executives may debate AI strategy, but many of the advances are happening at the employee level. A recent Moveworks study shows that AI adoption is being led from the ground up, with employees, not senior leaders, driving the change. The research

What happens when employees take control of AI Read More »

Automation can’t fix broken security basics

Automation can’t fix broken security basics 2025-11-13 at 07:39 By Anamarija Pogorelec Most enterprises continue to fall short on basic practices such as patching, access control, and vendor oversight, according to Swimlane’s Cracks in the Foundation: Why Basic Security Still Fails report. Leadership often focuses on broad resilience goals while the day-to-day work that supports

Automation can’t fix broken security basics Read More »

Autonomous AI could challenge how we define criminal behavior

Autonomous AI could challenge how we define criminal behavior 2025-11-12 at 10:44 By Sinisa Markovic Whether we ever build AI that thinks like a person is still uncertain. What seems more realistic is a future with more independent machines. These systems already work across many industries and digital environments. Alongside human-to-human and human-to-machine contact, communication

Autonomous AI could challenge how we define criminal behavior Read More »

Scroll to Top