cybersecurity

What researchers learned about building an LLM security workflow

What researchers learned about building an LLM security workflow 2026-05-04 at 09:46 By Sinisa Markovic Security operations centers are running into the same wall everywhere. Detection tools generate more alerts than analysts can work through, and the early stages of any investigation involve pulling together logs from several sources to decide whether something is worth […]

What researchers learned about building an LLM security workflow Read More »

Spotting third-party cyber risk before attackers do

Spotting third-party cyber risk before attackers do 2026-05-04 at 09:46 By Help Net Security In this Help Net Security video, Jeffrey Wheatman, SVP and Cyber Strategist at Black Kite, discusses how organizations can identify and manage third-party cyber exposures before attackers exploit them. He argues that businesses should move beyond a data-loss mindset toward one

Spotting third-party cyber risk before attackers do Read More »

Your IAM was built for humans, AI agents don’t care

Your IAM was built for humans, AI agents don’t care 2026-04-27 at 11:18 By Help Net Security Identity and access management was built for a simpler world. One where the hardest problem was a human logging in, and where “Who are you?” was sufficient to decide what someone could do. That model served enterprises well

Your IAM was built for humans, AI agents don’t care Read More »

The AI criminal mastermind is already hiring on gig platforms

The AI criminal mastermind is already hiring on gig platforms 2026-04-27 at 10:30 By Mirko Zorz Labor-hire platforms let anyone with a credit card post a task and pay a stranger to complete it. The RentAHuman platform extends that model to AI agents through a Model Context Protocol server, allowing an agent to post gigs

The AI criminal mastermind is already hiring on gig platforms Read More »

Product showcase: LuLu reveals unauthorized outbound connections from Mac apps

Product showcase: LuLu reveals unauthorized outbound connections from Mac apps 2026-04-27 at 07:03 By Anamarija Pogorelec LuLu is a free, open-source firewall for macOS that lets you control which apps are allowed to send data from your computer. macOS includes a built-in firewall, but it mainly handles incoming connections. LuLu also monitors outgoing traffic. Installing

Product showcase: LuLu reveals unauthorized outbound connections from Mac apps Read More »

Users advised to drop passwords and make room for passkeys

Users advised to drop passwords and make room for passkeys 2026-04-24 at 23:26 By Sinisa Markovic In a decisive move that could reshape how users log in online, the National Cyber Security Centre (NCSC) is urging consumers to abandon passwords in favour of passkeys, positioning them as the future of authentication. “Passkeys should become consumers’

Users advised to drop passwords and make room for passkeys Read More »

Compromised everyday devices power Chinese cyber espionage operations

Compromised everyday devices power Chinese cyber espionage operations 2026-04-24 at 13:17 By Sinisa Markovic China-linked threat actors have shifted from individually procured infrastructure to large-scale covert networks, botnets built from compromised routers and other edge devices, the National Cyber Security Centre (NCSC) warns. To help organizations address this threat, the NCSC, together with the Cyber

Compromised everyday devices power Chinese cyber espionage operations Read More »

AI is speeding up nation-state cyber programs

AI is speeding up nation-state cyber programs 2026-04-24 at 08:40 By Mirko Zorz Im this Help Net Security interview, Kaja Ciglic, Senior Director, Cybersecurity Policy and Diplomacy at Microsoft, discusses how nation-state cyber programs have changed over three years. Cyber has become a core instrument of state power, integrated with military, economic, and diplomatic tools.

AI is speeding up nation-state cyber programs Read More »

If cyber espionage via HDMI worries you, NCSC built a device to stop it

If cyber espionage via HDMI worries you, NCSC built a device to stop it 2026-04-23 at 14:17 By Sinisa Markovic A new cybersecurity device developed by the National Cyber Security Centre (NCSC) should be a helpful solution for protecting governments and businesses from malicious activity carried through display connections. Called SilentGlass, the plug-and-play tool is

If cyber espionage via HDMI worries you, NCSC built a device to stop it Read More »

GopherWhisper APT group hides command and control traffic in Slack and Discord

GopherWhisper APT group hides command and control traffic in Slack and Discord 2026-04-23 at 12:17 By Anamarija Pogorelec Attackers continue to lean on everyday collaboration platforms to hide command and control traffic inside normal enterprise noise. A newly identified China-aligned APT group pushes that trend further, running its operations through Slack workspaces, Discord servers, Outlook

GopherWhisper APT group hides command and control traffic in Slack and Discord Read More »

A year in, Zoom’s CISO reflects on balancing security and business

A year in, Zoom’s CISO reflects on balancing security and business 2026-04-23 at 09:47 By Mirko Zorz In this Help Net Security interview, Sandra McLeod, CISO at Zoom, reflects on her first year in the role. She talks about moving from reactive firefighting to business strategy, and what she heard from engineers, the board, and

A year in, Zoom’s CISO reflects on balancing security and business Read More »

Ransomware, fraud, and lawsuits drive cyber insurance claims to new peaks

Ransomware, fraud, and lawsuits drive cyber insurance claims to new peaks 2026-04-23 at 07:13 By Mirko Zorz The 2026 InsurSec Report from At-Bay, covering more than 100,000 policy years of claims data, documents a 7% year-over-year rise in overall claim frequency and an all-time high average severity of $221,000. Ransomware severity reached $508,000, up 16%

Ransomware, fraud, and lawsuits drive cyber insurance claims to new peaks Read More »

Google’s Workspace Intelligence promises privacy while running on your data

Google’s Workspace Intelligence promises privacy while running on your data 2026-04-22 at 23:27 By Sinisa Markovic Security and data governance are among the key considerations in Google’s latest AI update, which introduces Workspace Intelligence within Google Workspace. Google describes the feature as “a secure, dynamic system that inherently understands complex semantic relationships within your Workspace

Google’s Workspace Intelligence promises privacy while running on your data Read More »

Phishing reclaims the top initial access spot, attackers experiment with AI tools

Phishing reclaims the top initial access spot, attackers experiment with AI tools 2026-04-22 at 13:48 By Anamarija Pogorelec Phishing returned as the leading method attackers used to break into organizations in the first quarter of 2026, accounting for over a third of engagements where initial access could be determined, according to Cisco Talos. It is

Phishing reclaims the top initial access spot, attackers experiment with AI tools Read More »

PentAGI: Open-source autonomous AI penetration testing system

PentAGI: Open-source autonomous AI penetration testing system 2026-04-22 at 10:09 By Anamarija Pogorelec Penetration testers have long relied on collections of specialized tools, manual coordination, and documented runbooks to work through a target assessment. PentAGI, an open-source project from VXControl, attempts to automate that entire workflow using a multi-agent AI system that plans, researches, and

PentAGI: Open-source autonomous AI penetration testing system Read More »

Shadow AI, deepfakes, and supply chain compromise are rewriting the financial sector threat playbook

Shadow AI, deepfakes, and supply chain compromise are rewriting the financial sector threat playbook 2026-04-22 at 10:09 By Anamarija Pogorelec Financially motivated attacks continued to drive the bulk of cyber incidents against banks, insurers, and payment processors in 2025. Approximately 90% of breaches affecting financial institutions carried a financial motive, with data breaches accounting for

Shadow AI, deepfakes, and supply chain compromise are rewriting the financial sector threat playbook Read More »

Researchers build an encrypted routing layer for private AI inference

Researchers build an encrypted routing layer for private AI inference 2026-04-21 at 07:31 By Sinisa Markovic Organizations in healthcare, finance, and other sensitive industries want to use large AI models without exposing private data to the cloud servers running those models. A cryptographic technique called Secure Multi-Party Computation (MPC) makes this possible. It splits data

Researchers build an encrypted routing layer for private AI inference Read More »

Threat Landscape March 2026: Ransomware Dominance, Access Brokers, Data Leaks, and Critical Exploitation Trends

Threat Landscape March 2026: Ransomware Dominance, Access Brokers, Data Leaks, and Critical Exploitation Trends 2026-04-20 at 14:37 By Mihir Bagwe Cyble Research & Intelligence Labs (CRIL) in its monthly threat landscape analysis observed a highly active threat environment throughout March 2026, shaped by large-scale ransomware campaigns, persistent data breach activity, growing initial access brokerage markets,

Threat Landscape March 2026: Ransomware Dominance, Access Brokers, Data Leaks, and Critical Exploitation Trends Read More »

Anthropic releases Claude Opus 4.7 with automated cybersecurity safeguards

Anthropic releases Claude Opus 4.7 with automated cybersecurity safeguards 2026-04-16 at 18:06 By Sinisa Markovic Software teams building agentic AI workflows have been pushing frontier models toward longer, unsupervised task runs. Claude Opus 4.7, now generally available from Anthropic, is aimed squarely at that demand, with particular gains in software engineering, multimodal processing, and the

Anthropic releases Claude Opus 4.7 with automated cybersecurity safeguards Read More »

Cargo theft malware actor spent a month inside a decoy network before researchers pulled the plug

Cargo theft malware actor spent a month inside a decoy network before researchers pulled the plug 2026-04-16 at 13:34 By Mirko Zorz Proofpoint researchers executed a malicious payload from a threat actor known to target trucking and logistics companies in late February 2026, doing so inside a decoy environment. The environment stayed compromised for more

Cargo theft malware actor spent a month inside a decoy network before researchers pulled the plug Read More »

Scroll to Top