Don’t miss

Dependency-Check: Open-source Software Composition Analysis (SCA) tool

CVE, cybersecurity, Don't miss, GitHub, News, OWASP, software /

Dependency-Check: Open-source Software Composition Analysis (SCA) tool 2025-03-19 at 07:47 By Help Net Security Dependency-Check is an open-source Software Composition Analysis (SCA) tool to identify publicly disclosed vulnerabilities within a project’s dependencies. The tool analyzes dependencies for Common Platform Enumeration (CPE) identifiers. When a match is found, the tool generates a report with links to […]

Dependency-Check: Open-source Software Composition Analysis (SCA) tool Read More »

Protecting your iCloud data after Apple’s Advanced Data Protection removal in the UK

apple, cybersecurity, data security, Don't miss, Encryption, Government, how-to, News, Privacy, tips, UK /

Protecting your iCloud data after Apple’s Advanced Data Protection removal in the UK 2025-03-19 at 07:16 By Help Net Security Advanced Data Protection (ADP) secures iCloud data with end-to-end encryption. This ensures that no one, not even Apple, can access the encrypted data, which remains secure even in the event of a cloud breach. As

Protecting your iCloud data after Apple’s Advanced Data Protection removal in the UK Read More »

The rise of DAST 2.0 in 2025

Application Security, cybersecurity, Don't miss, Expert analysis, Expert corner, Hot stuff, News, opinion, security testing, StackHawk /

The rise of DAST 2.0 in 2025 2025-03-18 at 18:02 By Help Net Security Static Application Security Testing (SAST) found favor among security teams as an easy way to deploy security testing without really engaging developers. With the ability to analyze source code early in the software delivery lifecycle, SAST solutions offered a more proactive

The rise of DAST 2.0 in 2025 Read More »

FBI: Free file converter sites and tools deliver malware

adware, Don't miss, FBI, Hot stuff, Malware, Malwarebytes, News, trojan /

FBI: Free file converter sites and tools deliver malware 2025-03-18 at 13:35 By Zeljka Zorz Malware peddlers are increasingly targeting users who are searching for free file converter services (websites) and tools, the FBI’s Denver Field Office has warned earlier this month. “To conduct this scheme, cyber criminals across the globe are using any type

FBI: Free file converter sites and tools deliver malware Read More »

How financial institutions can minimize their attack surface

CISO, cybersecurity, Discover, Don't miss, Features, financial industry, Hot stuff, News, online banking, opinion, regulation, Risk Management, threats /

How financial institutions can minimize their attack surface 2025-03-18 at 08:01 By Mirko Zorz In this Help Net Security interview, Sunil Mallik, CISO of Discover Financial Services, discusses cybersecurity threats for financial institutions. He also shares insights on balancing compliance with agility, lessons from regulatory audits, and Discover’s approach to risk management and workforce development.

How financial institutions can minimize their attack surface Read More »

Pay, fight, or stall? The dilemma of ransomware negotiations

cybercrime, cybersecurity, Don't miss, GroupSense, Ransomware, strategy, Video /

Pay, fight, or stall? The dilemma of ransomware negotiations 2025-03-17 at 08:02 By Help Net Security Ransomware negotiations are a high-stakes game where every decision matters. In this Help Net Security video, Kurtis Minder, CEO at GroupSense, takes us inside the world of ransomware negotiations. We learn how attackers communicate, the tough decisions victims face,

Pay, fight, or stall? The dilemma of ransomware negotiations Read More »

Review: Cybersecurity Tabletop Exercises

books, cybersecurity, Don't miss, Hot stuff, Incident Response, News, Review, Reviews, skill development, strategy, tips /

Review: Cybersecurity Tabletop Exercises 2025-03-17 at 07:31 By Mirko Zorz Packed with real-world case studies and practical examples, Cybersecurity Tabletop Exercises offers insights into how organizations have successfully leveraged tabletop exercises to identify security gaps and enhance their incident response strategies. The authors explore a range of realistic scenarios, including phishing campaigns, ransomware attacks, and

Review: Cybersecurity Tabletop Exercises Read More »

IntelMQ: Open-source tool for collecting and processing security feeds

Don't miss, GitHub, News, open source, software, Threat Intelligence /

IntelMQ: Open-source tool for collecting and processing security feeds 2025-03-17 at 07:02 By Mirko Zorz IntelMQ is an open-source solution designed to help IT security teams (including CERTs, CSIRTs, SOCs, and abuse departments) streamline the collection and processing of security feeds using a message queuing protocol. “Originally designed for CSIRTs and later adopted by SOCs,

IntelMQ: Open-source tool for collecting and processing security feeds Read More »

Quantifying cyber risk strategies to resonate with CFOs and boards

CISO, cyber risk, cybersecurity, Data Protection, Don't miss, Features, Hot stuff, News, opinion, PwC, resilience, strategy /

Quantifying cyber risk strategies to resonate with CFOs and boards 2025-03-14 at 17:02 By Mirko Zorz In this Help Net Security interview, Mir Kashifuddin, Data Risk & Privacy Leader at PwC, discusses how CISOs can translate cyber risk into business value and secure a more strategic role within their organizations. He explains that aligning cybersecurity

Quantifying cyber risk strategies to resonate with CFOs and boards Read More »

Top 5 threats keeping CISOs up at night in 2025

Artificial Intelligence, CISO, cybersecurity, Don't miss, Hot stuff, News, Ransomware, regulation, strategy, supply chain attacks, threats, tips /

Top 5 threats keeping CISOs up at night in 2025 2025-03-14 at 08:05 By Help Net Security Cyber threats in 2025 require a proactive, adaptive approach. To stay ahead, CISOs must balance technical defenses, regulatory expectations, and human factors. By prioritizing AI-driven security, ransomware resilience, supply chain risk management, insider threat mitigation, and compliance preparedness,

Top 5 threats keeping CISOs up at night in 2025 Read More »

CISOs, are your medical devices secure? Attackers are watching closely

CISO, Claroty, cyber risk, cybersecurity, Don't miss, hardware, healthcare, Hot stuff, legacy technology, News, Risk Management, strategy, tips, Vigilant Ops /

CISOs, are your medical devices secure? Attackers are watching closely 2025-03-13 at 08:02 By Mirko Zorz The adoption of connected medical devices, collectively called the Internet of Medical Things (IoMT), has transformed patient care. However, this technological advancement has also introduced cybersecurity challenges to safeguard patient safety and uphold organizational security. Securing IoMT: Prioritizing risks

CISOs, are your medical devices secure? Attackers are watching closely Read More »

Cybersecurity classics: 10 books that shaped the industry

books, cybersecurity, Don't miss, News /

Cybersecurity classics: 10 books that shaped the industry 2025-03-13 at 07:32 By Help Net Security Cybersecurity constantly evolves, but some books have stood the test of time, shaping how professionals think about security, risk, and digital threats. Whether you’re a CISO, a seasoned expert, or cybersecurity enthusiast, these must-reads belong on your shelf. Masters of

Cybersecurity classics: 10 books that shaped the industry Read More »

NIST selects HQC as backup algorithm for post-quantum encryption

Don't miss, Encryption, News, NIST, quantum computing, security standard /

NIST selects HQC as backup algorithm for post-quantum encryption 2025-03-12 at 13:32 By Help Net Security Last year, NIST standardized a set of encryption algorithms that can keep data secure from a cyberattack by a future quantum computer. Now, NIST has selected a backup algorithm that can provide a second line of defense for the

NIST selects HQC as backup algorithm for post-quantum encryption Read More »

NetBird: Open-source network security

Don't miss, GitHub, News, open source, software /

NetBird: Open-source network security 2025-03-12 at 08:03 By Help Net Security NetBird is an open-source solution that integrates a configuration-free peer-to-peer private network with centralized access control, providing a single platform to build secure private networks for your organization or home. NetBird features NetBird creates a WireGuard-based overlay network that automatically connects your machines over

NetBird: Open-source network security Read More »

Burnout in cybersecurity: How CISOs can protect their teams (and themselves)

BH Consulting, Brian Honan, burnout, CISO, cybersecurity, Don't miss, Hot stuff, how-to, News, security operations, strategy, tips /

Burnout in cybersecurity: How CISOs can protect their teams (and themselves) 2025-03-12 at 07:37 By Mirko Zorz Cybersecurity is a high-stakes, high-pressure field in which CISOs and their teams constantly battle threats, compliance requirements, and business expectations. The demand for 24/7 vigilance, sophisticated attacks, and a shortage of skilled professionals have led to a burnout

Burnout in cybersecurity: How CISOs can protect their teams (and themselves) Read More »

Defending against EDR bypass attacks

attacks, Binary Defense, cybersecurity, Don't miss, threat, tips, Video /

Defending against EDR bypass attacks 2025-03-12 at 07:06 By Help Net Security EDR bypass and killer attacks are surging, yet many organizations continue to overlook this threat while they have become over-reliant on this security tool – particularly when preventing ransomware. In this Help Net Security video, John Dwyer, Director of Security Research at Binary

Defending against EDR bypass attacks Read More »

Smart cybersecurity spending and how CISOs can invest where it matters

CISO, cybersecurity, Don't miss, HackerOne, Hot stuff, how-to, News, Optiv Security, security ROI, security spending, strategy, tips /

Smart cybersecurity spending and how CISOs can invest where it matters 2025-03-11 at 08:30 By Mirko Zorz CISOs face mounting pressure to spend wisely on security. Yet, many organizations remain vulnerable due to misplaced priorities and inefficient budgeting. This article explores common pitfalls and offers strategies to strengthen cybersecurity. Recent data highlights a paradox: while

Smart cybersecurity spending and how CISOs can invest where it matters Read More »

How remote work strengthens cybersecurity teams

Black Kite, CISO, cybersecurity, Don't miss, Hot stuff, hybrid workforce, News, remote work, strategy, tips /

How remote work strengthens cybersecurity teams 2025-03-11 at 07:32 By Anamarija Pogorelec The global transition to remote work has reshaped traditional workplace dynamics, introducing challenges and opportunities for cybersecurity teams. For CISOs and security professionals, embracing a remote workforce can be a strategic advantage, enhancing team capabilities and driving the modernization of security practices. Specialized

How remote work strengthens cybersecurity teams Read More »

Review: The Cybersecurity Trinity

Artificial Intelligence, books, cybersecurity, Don't miss, Hot stuff, News, Review, Reviews, strategy, tips /

Review: The Cybersecurity Trinity 2025-03-10 at 18:02 By Mirko Zorz The Cybersecurity Trinity provides a comprehensive approach to modern cybersecurity by integrating AI, automation, and active cyber defense (ACD) into a unified strategy. Instead of addressing these elements in isolation, the author demonstrates how they work together to enhance security effectiveness, offering a practical and

Review: The Cybersecurity Trinity Read More »

Scroll to Top