UK announces grand plan to secure online public services 2026-01-07 at 15:32 By Zeljka Zorz The UK has announced a new Government Cyber Action Plan aimed at making online public services more secure and resilient, and has allocated £210 million (approximately $283 million) to implement it. Setting up a Government Cyber Unit “Cyber attacks can […]
UK announces grand plan to secure online public services Read More »
Fake Booking.com emails and BSODs used to infect hospitality staff 2026-01-07 at 13:06 By Zeljka Zorz Suspected Russian attackers are targeting the hospitality sector with fake Booking.com emails and a fake “Blue Screen of Death” to deliver the DCRat malware. The malware delivery campaign starts with phishing emails that feature room charge details in euros,
Fake Booking.com emails and BSODs used to infect hospitality staff Read More »
Gen AI data violations more than double 2026-01-07 at 08:32 By Sinisa Markovic Security teams track activity that moves well beyond traditional SaaS platforms, with employees interacting daily with generative AI tools, personal cloud services, and automated systems that exchange data without direct human input. These patterns shape how sensitive information moves across corporate environments
Gen AI data violations more than double Read More »
What European security teams are struggling to operationalize 2026-01-07 at 08:32 By Anamarija Pogorelec European security and compliance teams spend a lot of time talking about regulation. A new forecast report from Kiteworks suggests the harder problem sits elsewhere. According to the report, many European organizations have strong regulatory frameworks on paper, driven by GDPR
What European security teams are struggling to operationalize Read More »
When AI agents interact, risk can emerge without warning 2026-01-07 at 08:30 By Sinisa Markovic System level risks can arise when AI agents interact over time, according to new research that examines how collective behavior forms inside multi agent systems. The study finds that feedback loops, shared signals, and coordination patterns can produce outcomes that
When AI agents interact, risk can emerge without warning Read More »
Turning plain language into firewall rules 2026-01-06 at 09:00 By Sinisa Markovic Firewall rules often begin as a sentence in someone’s head. A team needs access to an application. A service needs to be blocked after hours. Translating those ideas into vendor specific firewall syntax usually involves detailed knowledge of zones, objects, ports, and rule
Turning plain language into firewall rules Read More »
Product showcase: Blokada for Android gives users control over network traffic 2026-01-06 at 08:45 By Anamarija Pogorelec Blokada is a network privacy and ad-blocking application available on Android, iOS, Windows, macOS, and Linux. It is designed to reduce ads, block trackers, and limit unwanted network connections at the system level. Getting started Blokada’s interface is
Product showcase: Blokada for Android gives users control over network traffic Read More »
The roles and challenges in moving to quantum-safe cryptography 2026-01-06 at 08:45 By Anamarija Pogorelec A new research project examines how organizations, regulators, and technical experts coordinate the transition to quantum safe cryptography. The study draws on a structured workshop with public sector, private sector, and academic participants to document how governance, security, and innovation
The roles and challenges in moving to quantum-safe cryptography Read More »
Passwords are still breaking compliance programs 2026-01-06 at 07:32 By Sinisa Markovic The security stack has grown, but audits still stumble on passwords. CISOs see this every year. An organization may have strong endpoint tools, layered network defenses, and a documented access policy. Then the audit turns to shared credentials, spreadsheet-based password storage, or accounts
Passwords are still breaking compliance programs Read More »
Pharma’s most underestimated cyber risk isn’t a breach 2026-01-05 at 08:47 By Mirko Zorz Chirag Shah, Global Information Security Officer & DPO at Model N examines how cyber risk in pharma and life sciences is shifting beyond traditional breaches toward data misuse, AI-driven exposure and regulatory pressure. He explains why executives still underestimate silent control
Pharma’s most underestimated cyber risk isn’t a breach Read More »
AI security risks are also cultural and developmental 2026-01-05 at 08:32 By Anamarija Pogorelec Security teams spend much of their time tracking vulnerabilities, abuse patterns, and system failures. A new study argues that many AI risks sit deeper than technical flaws. Cultural assumptions, uneven development, and data gaps shape how AI systems behave, where they
AI security risks are also cultural and developmental Read More »
OpenAEV: Open-source adversarial exposure validation platform 2026-01-05 at 08:02 By Sinisa Markovic OpenAEV is an open source platform designed to plan, run, and review cyber adversary simulation campaigns used by security teams. The project focuses on organizing exercises that blend technical actions with operational and human response elements, all managed through a single system. Scenarios
OpenAEV: Open-source adversarial exposure validation platform Read More »
Understanding AI insider risk before it becomes a problem 2026-01-05 at 07:31 By Help Net Security In this Help Net Security video, Greg Pollock, Head of Research and Insights at UpGuard, discusses AI use inside organizations and the risks tied to insiders. He explains two problems. One involves employees who use AI tools to speed
Understanding AI insider risk before it becomes a problem Read More »
What shadow AI means for SaaS security and integrations 2026-01-02 at 08:30 By Help Net Security In this Help Net Security video, Jaime Blasco, CTO at Nudge Security, discusses why shadow AI matters to security teams. He describes how AI adoption happens in two ways, through company led programs and through employees choosing tools on
What shadow AI means for SaaS security and integrations Read More »
Duplicati: Free, open-source backup client 2025-12-31 at 09:29 By Sinisa Markovic Duplicati is an open source backup client that creates encrypted, incremental, compressed backup sets and sends them to cloud storage services or remote file servers. What the project is and where it runs Duplicati operates as a client side application designed to back up
Duplicati: Free, open-source backup client Read More »
Radio signals could give attackers a foothold inside air-gapped devices 2025-12-30 at 09:25 By Sinisa Markovic Air-gapped systems are meant to stay quiet. Remove network ports, lock down inputs, and the device should have nothing to hear. A new study shows that this breaks down when software control is lost. Embedded devices with no radios
Radio signals could give attackers a foothold inside air-gapped devices Read More »
Product showcase: RoboForm password manager for iOS 2025-12-30 at 08:41 By Anamarija Pogorelec RoboForm is a password manager that helps users store and manage login credentials, identities, and other sensitive information in one place. The app is available on macOS, Windows, Android, and iOS. It uses AES-256-bit encryption and a master password to protect stored
Product showcase: RoboForm password manager for iOS Read More »
LLMs are automating the human part of romance scams 2025-12-29 at 09:03 By Sinisa Markovic Romance scams succeed because they feel human. New research shows that feeling no longer requires a person on the other side of the chat. The three stages of a romance-baiting scam Romance scams depend on scripted conversation Romance baiting scams
LLMs are automating the human part of romance scams Read More »
Superagent: Open-source framework for guardrails around agentic AI 2025-12-29 at 09:03 By Sinisa Markovic Superagent is an open-source framework for building, running, and controlling AI agents with safety built into the workflow. The project focuses on giving developers and security teams tools to manage what agents can do, what they can access, and how they
Superagent: Open-source framework for guardrails around agentic AI Read More »
Security chaos engineering matters when nothing is broken 2025-12-29 at 08:00 By Help Net Security In this Help Net Security video, Brian Blakley, CISO at Bellini Capital, explains why security chaos engineering matters beyond theory. He shares lessons from real organizations where systems did not fail outright, but uncertainty slowed the business. Login delays, certificate
Security chaos engineering matters when nothing is broken Read More »