cybersecurity

Apple strengthens storage flexibility with new disk image formats

apple, cybersecurity, digital forensics, Encryption, News /

Apple strengthens storage flexibility with new disk image formats 2025-10-03 at 08:04 By Sinisa Markovic Apple’s release of macOS 26 Tahoe introduced a new disk image format and updated an older one, both of which are drawing attention from system testers and forensic examiners. Apple Sparse Image Format (ASIF) The Apple Sparse Image Format (ASIF) […]

React to this headline:

Loading spinner

Apple strengthens storage flexibility with new disk image formats Read More »

Building a mature automotive cybersecurity program beyond checklists

agentic AI, Agero, automotive security, Compliance, cybersecurity, Don't miss, Features, Hot stuff, News, security controls, security metrics, strategy /

Building a mature automotive cybersecurity program beyond checklists 2025-10-02 at 09:41 By Mirko Zorz In this Help Net Security interview, Robert Sullivan, CIO & CISO at Agero, shares his perspective on automotive cybersecurity. He discusses strategies for developing mature security programs, meeting regulatory requirements, and addressing supply chain risks. Sullivan also looks ahead to how

React to this headline:

Loading spinner

Building a mature automotive cybersecurity program beyond checklists Read More »

GPT needs to be rewired for security

Artificial Intelligence, automation, cybersecurity, Don't miss, Exaforce, Expert analysis, Expert corner, Hot stuff, LLMs, News, opinion, SOC /

GPT needs to be rewired for security 2025-10-02 at 09:18 By Help Net Security LLMs and agentic systems already shine at everyday productivity, including transcribing and summarizing meetings, extracting action items, prioritizing critical emails, and even planning travel. But in the SOC (where mistakes have real cost), today’s models stumble on work that demands high

React to this headline:

Loading spinner

GPT needs to be rewired for security Read More »

Chekov: Open-source static code analysis tool

cloud security, code analysis, cybersecurity, Don't miss, GitHub, News, open source, software /

Chekov: Open-source static code analysis tool 2025-10-02 at 09:18 By Sinisa Markovic Checkov is an open-source tool designed to help teams secure their cloud infrastructure and code. At its core, it’s a static code analysis tool for infrastructure as code (IaC), but it also goes a step further by providing software composition analysis (SCA) for

React to this headline:

Loading spinner

Chekov: Open-source static code analysis tool Read More »

The energy sector is ground zero for global cyber activity

critical infrastructure, cybersecurity, Don't miss, energy sector, machine learning, News, research, threats /

The energy sector is ground zero for global cyber activity 2025-10-02 at 08:27 By Sinisa Markovic A new study from the Karlsruhe Institute of Technology shows how geopolitical tensions shape cyberattacks on power grids, fuel systems, and other critical infrastructure. How the research was done Researchers reviewed major cyber threat databases including MITRE ATT&CK Groups,

React to this headline:

Loading spinner

The energy sector is ground zero for global cyber activity Read More »

Biotech platforms keep missing the mark on security fundamentals

access control, cybersecurity, Data leak, data security, healthcare, News, report, Sekurno /

Biotech platforms keep missing the mark on security fundamentals 2025-10-02 at 08:27 By Anamarija Pogorelec A new security posture report on the biotech sector shows how quickly attackers could reach sensitive health data with only basic reconnaissance. Researchers needed less than two hours per company to uncover exposed genomic records, unprotected APIs, and misconfigured systems,

React to this headline:

Loading spinner

Biotech platforms keep missing the mark on security fundamentals Read More »

Hackers love LOTL, this approach shuts them down

Bitdefender, cyberattacks, cybersecurity, Don't miss, Hot stuff, News, Risk Management /

Hackers love LOTL, this approach shuts them down 2025-10-01 at 09:04 By Zeljka Zorz Every time cyber defenders and companies discover new ways to block intrusions, attackers change their tactics and find a way around the defenses. “Living off the Land” (LOTL) is a prime example: since many detection tools became good at flagging malware,

React to this headline:

Loading spinner

Hackers love LOTL, this approach shuts them down Read More »

A2AS framework targets prompt injection and agentic AI security risks

agentic AI, Artificial Intelligence, CISO, cybersecurity, Don't miss, framework, LLMs, News /

A2AS framework targets prompt injection and agentic AI security risks 2025-10-01 at 08:31 By Mirko Zorz AI systems are now deeply embedded in business operations, and this introduces new security risks that traditional controls are not built to handle. The newly released A2AS framework is designed to protect AI agents at runtime and prevent real-world

React to this headline:

Loading spinner

A2AS framework targets prompt injection and agentic AI security risks Read More »

Biometric spoofing isn’t as complex as it sounds

biometrics, cybersecurity, Group-IB, iProov, News, Ping Identity, Solaris, spoofing /

Biometric spoofing isn’t as complex as it sounds 2025-10-01 at 08:04 By Sinisa Markovic Biometric technologies were originally designed to improve security and streamline authentication, but they’re often misused in ways most people don’t notice. Like any system, biometrics has weaknesses that attackers can exploit. Biometric spoofing isn’t as complex as it sounds. It’s basically

React to this headline:

Loading spinner

Biometric spoofing isn’t as complex as it sounds Read More »

How to stop a single vendor breach from taking down your business

CISO, cyber risk, cybersecurity, Don't miss, Hot stuff, Intel 471, News, Risk Management, strategy, third party compromise, tips, Video /

How to stop a single vendor breach from taking down your business 2025-10-01 at 07:38 By Help Net Security In this Help Net Security video, William Dixon, Senior Executive at Intel 471, examines the future of third-party cyber risk and why it is a growing concern for organizations worldwide. As businesses become more interconnected, the

React to this headline:

Loading spinner

How to stop a single vendor breach from taking down your business Read More »

CISA says it will fill the gap as some federal funding for MS-ISAC dries up

Center for Internet Security, CISA, cybersecurity, DHS, Don't miss, Government, Hot stuff, News, USA /

CISA says it will fill the gap as some federal funding for MS-ISAC dries up 2025-09-30 at 18:45 By Zeljka Zorz The cooperative agreement between the U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the not-for-profit Center for Internet Security is ending today, the agency has announced on Monday, and CISA will take it upon

React to this headline:

Loading spinner

CISA says it will fill the gap as some federal funding for MS-ISAC dries up Read More »

The hidden risks inside open-source code

cybersecurity, Don't miss, Features, Hot stuff, News, open source, research, Risk Management, software, supply chain /

The hidden risks inside open-source code 2025-09-30 at 09:12 By Mirko Zorz Open-source software is everywhere. It runs the browsers we use, the apps we rely on, and the infrastructure that keeps businesses connected. For many security leaders, it is simply part of the environment, not something they think about every day. That is where

React to this headline:

Loading spinner

The hidden risks inside open-source code Read More »

Cyber risk quantification helps CISOs secure executive support

Artificial Intelligence, CISO, cyber resilience, cybersecurity, Don't miss, Features, Hot stuff, News, strategy, supply chain, Zurich Resilience Solutions /

Cyber risk quantification helps CISOs secure executive support 2025-09-30 at 08:44 By Mirko Zorz In this Help Net Security interview, Vivien Bilquez, Global Head of Cyber Resilience at Zurich Resilience Solutions, discusses how organizations are rethinking cyber resilience. He talks about the priorities CISOs should focus on and the risks that are often overlooked. Bilquez

React to this headline:

Loading spinner

Cyber risk quantification helps CISOs secure executive support Read More »

Keeping the internet afloat: How to protect the global cable network

critical infrastructure, cyber resilience, cybersecurity, Don't miss, Features, hardware, networking, News, resilience, Risk Management, supply chain /

Keeping the internet afloat: How to protect the global cable network 2025-09-30 at 08:08 By Mirko Zorz The resilience of the world’s submarine cable network is under new pressure from geopolitical tensions, supply chain risks, and slow repair processes. A new report from the Center for Cybersecurity Policy and Law outlines how governments and industry

React to this headline:

Loading spinner

Keeping the internet afloat: How to protect the global cable network Read More »

Your budget Android phone might be spying on you

Android, cybersecurity, Don't miss, mobile apps, mobile devices, News, smartphones, threat /

Your budget Android phone might be spying on you 2025-09-30 at 08:08 By Sinisa Markovic Researchers have found that many low-cost Android devices come with pre-installed apps that have high-level access to the system. Unlike apps from the Google Play Store, many of these are not subject to thorough checks and can serve as vectors

React to this headline:

Loading spinner

Your budget Android phone might be spying on you Read More »

How attackers poison AI tools and defenses

Artificial Intelligence, Barracuda Networks, cyberattacks, cybersecurity, Don't miss, email security, Expert analysis, Expert corner, Hot stuff, News, opinion, resilience /

How attackers poison AI tools and defenses 2025-09-29 at 09:06 By Help Net Security Cyberattackers are using generative AI to draft polished spam, create malicious code and write persuasive phishing lures. They are also learning how to turn AI systems themselves into points of compromise. Recent findings highlight this shift. Researchers from Columbia University and

React to this headline:

Loading spinner

How attackers poison AI tools and defenses Read More »

Firezone: Open-source platform to securely manage remote access

cybersecurity, GitHub, News, open source, remote access, secure connectivity, software, VPN /

Firezone: Open-source platform to securely manage remote access 2025-09-29 at 08:36 By Sinisa Markovic Firezone is an open-source platform that helps organizations of any size manage secure remote access. Unlike most VPNs, it uses a least-privileged model, giving users only the access they need. Firezone was built to scale from the start, so you can

React to this headline:

Loading spinner

Firezone: Open-source platform to securely manage remote access Read More »

Cybersecurity leaders underreport cyber incidents to executives

Artificial Intelligence, attacks, CISO, cybersecurity, News, report, threats, VikingCloud /

Cybersecurity leaders underreport cyber incidents to executives 2025-09-29 at 08:04 By Anamarija Pogorelec Cyberattacks are becoming more frequent and severe, with 71% of surveyed security leaders saying attacks have grown more common in the past year and 61% reporting greater impact when incidents occur, according to a new report from VikingCloud. Nation-state attacks move to

React to this headline:

Loading spinner

Cybersecurity leaders underreport cyber incidents to executives Read More »

The CISO’s guide to stronger board communication

boardroom, CISO, cybersecurity, Darwinium, Don't miss, Hot stuff, News, strategy, tips, Video /

The CISO’s guide to stronger board communication 2025-09-29 at 08:04 By Help Net Security In this Help Net Security video, Alisdair Faulkner, CEO of Darwinium, explores how the role of the CISO has changed over the past decade. Faulkner shares insights on how CISOs can communicate with the board, overcome common pitfalls such as overly

React to this headline:

Loading spinner

The CISO’s guide to stronger board communication Read More »

Inside the economy built on stolen credentials

BeyondID, cybercrime, cybersecurity, Don't miss, identity protection, News, survey, threats /

Inside the economy built on stolen credentials 2025-09-26 at 09:08 By Sinisa Markovic Instead of going after software flaws or network weaknesses, attackers are targeting something much easier to steal: identity credentials. A new report from BeyondID calls this growing black market the identity economy, where usernames, passwords, tokens, and access rights are bought and

React to this headline:

Loading spinner

Inside the economy built on stolen credentials Read More »

Scroll to Top