automation

Zabbix: Open-source IT and OT observability solution

automation, Don't miss, GitHub, monitoring, News, open source, security operations, software /

Zabbix: Open-source IT and OT observability solution 2025-12-17 at 08:08 By Anamarija Pogorelec Zabbix is an open source monitoring platform designed to track the availability, performance, and integrity of IT environments. It monitors networks along with servers, virtual machines, applications, services, databases, websites, and cloud resources. For cybersecurity professionals, this visibility matters because operational issues […]

Zabbix: Open-source IT and OT observability solution Read More »

CISOs are spending big and still losing ground

Artificial Intelligence, automation, CISO, cloud security, Compliance, cybersecurity, News, report, Wiz /

CISOs are spending big and still losing ground 2025-12-08 at 07:31 By Anamarija Pogorelec Security leaders are entering another budget cycle with more money to work with, but many still feel no safer. A new benchmark study from Wiz shows a widening gap between investment and impact. Budgets keep rising, cloud programs keep expanding, and

CISOs are spending big and still losing ground Read More »

Threat intelligence programs are broken, here is how to fix them

automation, Compliance, cybersecurity, ISACA, News, report, Risk Management, Threat Intelligence, threat modeling /

Threat intelligence programs are broken, here is how to fix them 2025-12-03 at 07:12 By Anamarija Pogorelec Security teams often gather large amounts of threat data but still struggle to improve detection or response. Analysts work through long lists of alerts, leaders get unclear insights, and executives see costs that do not lead to better

Threat intelligence programs are broken, here is how to fix them Read More »

The collapse of trust at the identity layer

automation, cybersecurity, deepfakes, fraud, identity verification, News, Regula, report, security metrics, social engineering /

The collapse of trust at the identity layer 2025-12-02 at 07:49 By Anamarija Pogorelec Identity verification has become the latest front in the fight against industrialized fraud, according to a new report from Regula. The shift is visible across sectors that once relied on predictable verification routines. Criminals have learned to target the identity step

The collapse of trust at the identity layer Read More »

cnspec: Open-source, cloud-native security and policy project

automation, cloud security, DevSecOps, Don't miss, GitHub, News, open source, software /

cnspec: Open-source, cloud-native security and policy project 2025-11-24 at 08:32 By Sinisa Markovic cnspec is an open source tool that helps when you are trying to keep a sprawling setup of clouds, containers, APIs and endpoints under control. It checks security and compliance across all of it, which makes it easier to see what needs

cnspec: Open-source, cloud-native security and policy project Read More »

Chinese cyber spies used Claude AI to automate 90% of their attack campaign, Anthropic claims

agentic AI, Anthropic, Artificial Intelligence, automation, cyber espionage, Don't miss, Hot stuff, LLMs, News /

Chinese cyber spies used Claude AI to automate 90% of their attack campaign, Anthropic claims 2025-11-14 at 17:03 By Zeljka Zorz Anthropic threat researchers believe that they’ve uncovered and disrupted the first documented case of a cyberattack executed with the help of its agentic AI and minimal human intervention. “The threat actor manipulated [Anthropic’s large

Chinese cyber spies used Claude AI to automate 90% of their attack campaign, Anthropic claims Read More »

What happens when employees take control of AI

agentic AI, Artificial Intelligence, automation, cybersecurity, Moveworks, News, report /

What happens when employees take control of AI 2025-11-14 at 07:42 By Anamarija Pogorelec Executives may debate AI strategy, but many of the advances are happening at the employee level. A recent Moveworks study shows that AI adoption is being led from the ground up, with employees, not senior leaders, driving the change. The research

What happens when employees take control of AI Read More »

Automation can’t fix broken security basics

access control, Artificial Intelligence, automation, cyber hygiene, cybersecurity, News, patching, report, Swimlane /

Automation can’t fix broken security basics 2025-11-13 at 07:39 By Anamarija Pogorelec Most enterprises continue to fall short on basic practices such as patching, access control, and vendor oversight, according to Swimlane’s Cracks in the Foundation: Why Basic Security Still Fails report. Leadership often focuses on broad resilience goals while the day-to-day work that supports

Automation can’t fix broken security basics Read More »

Autonomous AI could challenge how we define criminal behavior

Artificial Intelligence, automation, cybersecurity, Don't miss, Features, LLMs, News, research /

Autonomous AI could challenge how we define criminal behavior 2025-11-12 at 10:44 By Sinisa Markovic Whether we ever build AI that thinks like a person is still uncertain. What seems more realistic is a future with more independent machines. These systems already work across many industries and digital environments. Alongside human-to-human and human-to-machine contact, communication

Autonomous AI could challenge how we define criminal behavior Read More »

When every day is threat assessment day

Artificial Intelligence, automation, cybersecurity, Don't miss, Features, financial industry, generative AI, Hot stuff, Insurance, News, Sammons Financial Group, strategy, threat, threats /

When every day is threat assessment day 2025-11-12 at 09:00 By Mirko Zorz In this Help Net Security interview, Paul J. Mocarski, VP & CISO at Sammons Financial Group, discusses how insurance carriers are adapting their cybersecurity strategies. He explains how ongoing threat assessments, AI-driven automation, and third-party risk management help maintain readiness. Mocarski also

When every day is threat assessment day Read More »

Metrics don’t lie, but they can be misleading when they only tell IT’s side of the story

automation, CIO, CISO, cloud security, Compliance, cybersecurity, Don't miss, Features, Hot stuff, Interval Group, News, orchestration, strategy /

Metrics don’t lie, but they can be misleading when they only tell IT’s side of the story 2025-11-07 at 13:28 By Mirko Zorz In this Help Net Security interview, Rik Mistry, Managing Partner at Interval Group, discusses how to align IT strategy with business goals. He explains how security, governance, and orchestration shape IT operations

Metrics don’t lie, but they can be misleading when they only tell IT’s side of the story Read More »

PortGPT: How researchers taught an AI to backport security patches automatically

Artificial Intelligence, automation, Canonical, CISO, cybersecurity, DevSecOps, Don't miss, Features, Git, Hot stuff, Linux, LLMs, News, open source, patching, research, strategy, tips /

PortGPT: How researchers taught an AI to backport security patches automatically 2025-11-05 at 09:07 By Mirko Zorz Keeping older software versions secure often means backporting patches from newer releases. It is a routine but tedious job, especially for large open-source projects such as the Linux kernel. A new research effort has built a tool that

PortGPT: How researchers taught an AI to backport security patches automatically Read More »

Google says 2026 will be the year AI supercharges cybercrime

Artificial Intelligence, automation, CISO, cloud security, cybercrime, cybersecurity, Don't miss, Google, Google Cloud, identity management, News, predictions, report /

Google says 2026 will be the year AI supercharges cybercrime 2025-11-05 at 07:06 By Anamarija Pogorelec Security leaders are staring down a year of major change. In its Cybersecurity Forecast 2026, Google paints a picture of a threat landscape transformed by AI, supercharged cybercrime, and increasingly aggressive nation-state operations. Attackers are moving faster, scaling their

Google says 2026 will be the year AI supercharges cybercrime Read More »

Attackers turn trusted OAuth apps into cloud backdoors

attack tools, automation, cloud security, Don't miss, enterprise, Hot stuff, Microsoft Entra ID, News, OAuth, privileged accounts, Proofpoint /

Attackers turn trusted OAuth apps into cloud backdoors 2025-10-22 at 15:43 By Zeljka Zorz Attackers are increasingly abusing internal OAuth-based applications to gain persistent access to cloud environments, Proofpoint researchers warn. These apps often remain unnoticed for quite some time and allow attackers to maintain access to high-privileged accounts even after passwords are reset or

Attackers turn trusted OAuth apps into cloud backdoors Read More »

GPT needs to be rewired for security

Artificial Intelligence, automation, cybersecurity, Don't miss, Exaforce, Expert analysis, Expert corner, Hot stuff, LLMs, News, opinion, SOC /

GPT needs to be rewired for security 2025-10-02 at 09:18 By Help Net Security LLMs and agentic systems already shine at everyday productivity, including transcribing and summarizing meetings, extracting action items, prioritizing critical emails, and even planning travel. But in the SOC (where mistakes have real cost), today’s models stumble on work that demands high

GPT needs to be rewired for security Read More »

LLMs can boost cybersecurity decisions, but not for everyone

Artificial Intelligence, automation, CISO, cybersecurity, Don't miss, Features, Hot stuff, LLMs, News, research, security operations, tips /

LLMs can boost cybersecurity decisions, but not for everyone 2025-09-19 at 09:11 By Mirko Zorz LLMs are moving fast from experimentation to daily use in cybersecurity. Teams are starting to use them to sort through threat intelligence, guide incident response, and help analysts handle repetitive work. But adding AI into the decision-making process brings new

LLMs can boost cybersecurity decisions, but not for everyone Read More »

CISOs brace for a new kind of AI chaos

Artificial Intelligence, automation, cybersecurity, machine learning, News, report, SANS, security operations, SOC /

CISOs brace for a new kind of AI chaos 2025-09-12 at 08:47 By Anamarija Pogorelec AI is being added to business processes faster than it is being secured, creating a wide gap that attackers are already exploiting, according to the SANS Institute. The scale of the problem Attackers are using AI to work at speeds

CISOs brace for a new kind of AI chaos Read More »

AI Emerges as the Hope—and Risk—for Overloaded SOCs

AI, Artificial Intelligence, automation, Security Infrastructure, SOC /

AI Emerges as the Hope—and Risk—for Overloaded SOCs 2025-09-11 at 14:30 By Kevin Townsend With security teams drowning in alerts, many suppress detection rules and accept hidden risks. AI promises relief through automation and triage—but without human oversight, it risks becoming part of the problem. The post AI Emerges as the Hope—and Risk—for Overloaded SOCs

AI Emerges as the Hope—and Risk—for Overloaded SOCs Read More »

Automated network pentesting uncovers what traditional tests missed

automation, cybersecurity, Don't miss, Hot stuff, network, News, patching, penetration testing, Vonahi Security /

Automated network pentesting uncovers what traditional tests missed 2025-09-10 at 11:45 By Zeljka Zorz Most organizations run an annual network penetration test, remediate the issues it uncovers, and move on. But attackers are probing networks every day, using publicly available tools to exploit common misconfigurations and overlooked vulnerabilities. A new report, based on over 50,000

Automated network pentesting uncovers what traditional tests missed Read More »

Identity management was hard, AI made it harder

Artificial Intelligence, automation, CISO, data security, identity management, News, report, SailPoint, survey /

Identity management was hard, AI made it harder 2025-09-08 at 07:33 By Anamarija Pogorelec Identity security is becoming a core part of cybersecurity operations, but many organizations are falling behind. A new report from SailPoint shows that as AI-driven identities and machine accounts grow, most security teams are not prepared to manage them at scale.

Identity management was hard, AI made it harder Read More »

Scroll to Top