cybersecurity

CISOs flag gaps in third-party risk management

CISOs flag gaps in third-party risk management 2026-01-15 at 07:37 By Anamarija Pogorelec Third-party cyber risk continues to concern security leaders as vendor ecosystems grow, supply chains stretch, and AI plays a larger role in business operations. A recent Panorays survey of U.S. CISOs shows rising third-party incidents and growing regulatory attention, while visibility beyond […]

CISOs flag gaps in third-party risk management Read More »

Cybersecurity spending keeps rising, so why is business impact still hard to explain?

Cybersecurity spending keeps rising, so why is business impact still hard to explain? 2026-01-15 at 07:28 By Anamarija Pogorelec Cybersecurity budgets keep climbing, but many security leaders still struggle to explain what that spending delivers to the business. A new study by Expel examines that disconnect through a survey of security and finance executives at

Cybersecurity spending keeps rising, so why is business impact still hard to explain? Read More »

CISO Assistant: Open-source cybersecurity management and GRC

CISO Assistant: Open-source cybersecurity management and GRC 2026-01-14 at 13:25 By Mirko Zorz CISO Assistant is an open-source governance, risk, and compliance (GRC) platform designed to help security teams document risks, controls, and framework alignment in a structured system. The community edition is maintained as a self-hosted tool for organizations that want direct access to

CISO Assistant: Open-source cybersecurity management and GRC Read More »

Firmware scanning time, cost, and where teams run EMBA

Firmware scanning time, cost, and where teams run EMBA 2026-01-14 at 13:25 By Mirko Zorz Security teams that deal with connected devices often end up running long firmware scans overnight, checking progress in the morning, and trying to explain to colleagues why a single image consumed a workday of compute time. That routine sets the

Firmware scanning time, cost, and where teams run EMBA Read More »

Enterprise security faces a three-front war: cybercrime, AI misuse, and supply chains

Enterprise security faces a three-front war: cybercrime, AI misuse, and supply chains 2026-01-13 at 11:04 By Anamarija Pogorelec Security teams are dealing with pressures tied to AI use, geopolitical instability, and expanding cybercrime that reach beyond technical controls, according to findings from the World Economic Forum’s Global Cybersecurity Outlook 2026. AI drives risk growth and

Enterprise security faces a three-front war: cybercrime, AI misuse, and supply chains Read More »

Rakuten Viber CISO/CTO on balancing encryption, abuse prevention, and platform resilience

Rakuten Viber CISO/CTO on balancing encryption, abuse prevention, and platform resilience 2026-01-13 at 09:01 By Mirko Zorz In this Help Net Security interview, Liad Shnell, CISO and CTO at Rakuten Viber, discusses how messaging platforms have become critical infrastructure during crises and conflicts. He explains how it influences cybersecurity priorities, from encryption and abuse prevention

Rakuten Viber CISO/CTO on balancing encryption, abuse prevention, and platform resilience Read More »

Turning cyber metrics into decisions leaders can act on

Turning cyber metrics into decisions leaders can act on 2026-01-13 at 09:01 By Help Net Security In this Help Net Security video, Bryan Sacks, Field CISO at Myriad360, explains how security leaders can measure cybersecurity in ways that matter to executives and boards. He argues that metrics should support decisions, not exist for reporting alone.

Turning cyber metrics into decisions leaders can act on Read More »

Teaching cybersecurity by letting students break things

Teaching cybersecurity by letting students break things 2026-01-13 at 09:01 By Sinisa Markovic Cybersecurity students show higher engagement when the work feels tangible. A new study from Airbus Cybersecurity and Dauphine University describes what happens when courses move beyond lectures and place students inside structured hacking scenarios, social engineering exercises, and competitive games. From theory

Teaching cybersecurity by letting students break things Read More »

What insurers expect from cyber risk in 2026

What insurers expect from cyber risk in 2026 2026-01-13 at 07:33 By Anamarija Pogorelec Technology shifts, policy decisions, and attacker behavior are changing at the same time, and their effects increasingly overlap. Insurers, brokers, and security teams are feeling that pressure across underwriting, claims, and risk management. A new global study by CyberCube examines how

What insurers expect from cyber risk in 2026 Read More »

Rethinking OT security for project heavy shipyards

Rethinking OT security for project heavy shipyards 2026-01-12 at 09:09 By Mirko Zorz In this Help Net Security interview, Hans Quivooij, CISO at Damen Shipyards Group, discusses securing OT and ICS in the shipyard. He outlines how project-based operations, rotating contractors, and temporary systems expand the threat surface and complicate access control. Quivooij also covers

Rethinking OT security for project heavy shipyards Read More »

pfSense: Open-source firewall and routing platform

pfSense: Open-source firewall and routing platform 2026-01-12 at 08:33 By Sinisa Markovic Firewalls, VPN access, and traffic rules need steady attention, often with limited budgets and staff. In that context, the open source pfSense Community Edition (CE) continues to show up in production environments, supported by a long-standing user community. pfSense CE is the free,

pfSense: Open-source firewall and routing platform Read More »

What security teams can learn from torrent metadata

What security teams can learn from torrent metadata 2026-01-12 at 08:10 By Mirko Zorz Security teams often spend time sorting through logs and alerts that point to activity happening outside corporate networks. Torrent traffic shows up in investigations tied to policy violations, insider risk, and criminal activity. A new research paper looks at that same

What security teams can learn from torrent metadata Read More »

Downtime pushes resilience planning into security operations

Downtime pushes resilience planning into security operations 2026-01-12 at 07:18 By Anamarija Pogorelec CISOs describe a shift in how they define success. New research from Absolute Security shows broad agreement that resilience outweighs security goals centered on prevention alone. Security leaders increasingly define their role around keeping the business operating through disruption. The cost of

Downtime pushes resilience planning into security operations Read More »

January 2026 Patch Tuesday forecast: And so it continues

January 2026 Patch Tuesday forecast: And so it continues 2026-01-09 at 11:26 By Help Net Security Welcome to a new year of my Patch Tuesday forecast blog where I provide a summary of Microsoft and other vendor’s security patch activity (and reported issues) for the month, talk about some of the latest trends, processes, and

January 2026 Patch Tuesday forecast: And so it continues Read More »

How AI agents are turning security inside-out

How AI agents are turning security inside-out 2026-01-09 at 09:30 By Help Net Security AppSec teams have spent the last decade hardening externally facing applications, API security, software supply chain risk, CI/CD controls, and cloud-native attack paths. But a growing class of security threats is emerging from a largely underestimated and undefended source: internally built

How AI agents are turning security inside-out Read More »

Security teams are paying more attention to the energy cost of detection

Security teams are paying more attention to the energy cost of detection 2026-01-09 at 08:02 By Anamarija Pogorelec Security teams spend a lot of time explaining why detection systems need more compute. Cloud bills rise, models retrain more often, and new analytics pipelines get added to existing stacks. Those conversations usually stay focused on coverage

Security teams are paying more attention to the energy cost of detection Read More »

Wi-Fi evolution tightens focus on access control

Wi-Fi evolution tightens focus on access control 2026-01-09 at 07:33 By Anamarija Pogorelec Wi-Fi networks are taking on heavier workloads, more devices, and higher expectations from users who assume constant access everywhere. A new Wireless Broadband Alliance industry study shows that this expansion is reshaping priorities around security, identity, and trust, alongside adoption of new

Wi-Fi evolution tightens focus on access control Read More »

Initial Access Sales Accelerated Across Australia and New Zealand in 2025

Initial Access Sales Accelerated Across Australia and New Zealand in 2025 2026-01-08 at 15:07 By Ashish Khaitan The cyber threat environment in Australia and New Zealand experienced a new escalation throughout 2025, driven by a surge in initial access sales, ransomware operations, and high-impact data breaches. According to our Threat Landscape Report Australia and New Zealand 2025, threat activity observed between January and November 2025 reveals a

Initial Access Sales Accelerated Across Australia and New Zealand in 2025 Read More »

IPFire update brings new network and security features to firewall deployments

IPFire update brings new network and security features to firewall deployments 2026-01-08 at 10:57 By Anamarija Pogorelec Security and operations teams often work with firewall platforms that require frequent tuning or upgrades to meet evolving network demands. IPFire has released its 2.29 Core Update 199, aimed at network and protection teams that manage this open

IPFire update brings new network and security features to firewall deployments Read More »

StackRox: Open-source Kubernetes security platform

StackRox: Open-source Kubernetes security platform 2026-01-08 at 08:31 By Anamarija Pogorelec Security teams spend a lot of time stitching together checks across container images, running workloads, and deployment pipelines. The work often happens under time pressure, with engineers trying to keep clusters stable while meeting internal policy requirements. The StackRox open source project sits in

StackRox: Open-source Kubernetes security platform Read More »

Scroll to Top