Don’t miss

TrueConf zero-day vulnerability exploited to target government networks

Check Point, cyber espionage, Don't miss, Government, Malware, News, video conferencing /

TrueConf zero-day vulnerability exploited to target government networks 2026-04-02 at 12:02 By Sinisa Markovic Suspected China-nexus attackers have leveraged a zero-day vulnerability (CVE-2026-3502) in the TrueConf client application to distribute malware within government networks in Southeast Asia, Check Point researchers discovered. Malicious client update attack chain (Source: Check Point) Trusted update mechanism turned into attack […]

TrueConf zero-day vulnerability exploited to target government networks Read More »

Tracking drones with the 5G tower down the street

China, Don't miss, drones, hardware, News, research /

Tracking drones with the 5G tower down the street 2026-04-02 at 08:42 By Anamarija Pogorelec Drone detection in cities is expensive. Dedicated radar installations are cost-prohibitive at scale, cameras have limited range and stop working well at night, and LiDAR systems have the same cost problem as radar. A group of researchers at the University

Tracking drones with the 5G tower down the street Read More »

Trust, friction, and ROI: A CISO’s take on making security work for the business

CISO, Compliance, cyber risk, cybersecurity, Don't miss, Features, Hot stuff, News, opinion, Risk Management, security ROI, strategy /

Trust, friction, and ROI: A CISO’s take on making security work for the business 2026-04-02 at 08:42 By Mirko Zorz In this Help Net Security interview, John O’Rourke, CISO at PPG, talks about what it means for security to drive business value. He explains how mature security programs reduce friction in sales cycles and M&A

Trust, friction, and ROI: A CISO’s take on making security work for the business Read More »

North Korean hackers linked to Axios npm supply chain compromise

Arctic Wolf Networks, backdoor, cybercrime, Don't miss, Google Cloud, Hot stuff, Mandiant, News, North Korea, supply chain attacks, supply chain compromise /

North Korean hackers linked to Axios npm supply chain compromise 2026-04-01 at 18:56 By Zeljka Zorz The software supply chain attack that resulted in the compromise of npm packages of Axios, an extremely popular HTTP client library, is believed to be the work of financially-motivated North Korean attackers. Links to UNC1069 On March 31, 2026,

North Korean hackers linked to Axios npm supply chain compromise Read More »

Google fixes Chrome zero-day with in-the-wild exploit (CVE-2026-5281)

0-day, Chrome, Don't miss, Hot stuff, Microsoft Edge, News, Vivaldi /

Google fixes Chrome zero-day with in-the-wild exploit (CVE-2026-5281) 2026-04-01 at 14:31 By Zeljka Zorz Google has fixed 21 vulnerabilities affecting its popular Chrome browser, among them a zero-day (CVE-2026-5281) with an in-the-wild exploit. About CVE-2026-5281 As per usual, information about the fixed zero-day is limited, and there’s no details about the exploit (or how/if it’s

Google fixes Chrome zero-day with in-the-wild exploit (CVE-2026-5281) Read More »

Mimecast makes enterprise email security deployable in minutes

CISO, cybersecurity, Don't miss, email security, Features, Hot stuff, Mimecast, News, opinion, RSAC 2026 /

Mimecast makes enterprise email security deployable in minutes 2026-04-01 at 10:34 By Mirko Zorz Most organizations running Microsoft 365 rely on native email controls as their primary line of defense. According to Mimecast research, 38% of organizations depend exclusively on those native controls for collaboration security, and 64% say those controls are insufficient against the

Mimecast makes enterprise email security deployable in minutes Read More »

Financial groups lay out a plan to fight AI identity attacks

Artificial Intelligence, authentication, deepfakes, Don't miss, financial industry, generative AI, Government, LLMs, News, report, USA /

Financial groups lay out a plan to fight AI identity attacks 2026-04-01 at 10:34 By Mirko Zorz Generative AI tools have brought the cost of deepfake production low enough that criminals and state-sponsored actors now use them routinely against financial institutions. A joint paper from the American Bankers Association, the Better Identity Coalition, and the

Financial groups lay out a plan to fight AI identity attacks Read More »

Axios npm packages backdoored in supply chain attack

Don't miss, Hot stuff, JavaScript, News, Step Security, supply chain attacks, supply chain compromise, Wiz /

Axios npm packages backdoored in supply chain attack 2026-03-31 at 15:43 By Zeljka Zorz An unknown attacker has compromised the GitHub and npm accounts of the main developer of Axios, a widely used HTTP client library, and published npm packages backdoored with a malicious dependency that triggered the installation of droppers and remote access trojans.

Axios npm packages backdoored in supply chain attack Read More »

Why I’m done calling humans the weakest link

BH Consulting, Brian Honan, CISO, cybersecurity, Don't miss, Expert analysis, Expert corner, Hot stuff, human error, News, opinion, security awareness, strategy, user behavior /

Why I’m done calling humans the weakest link 2026-03-31 at 11:22 By Help Net Security Cybersecurity has long suffered from a people problem, but not in the way we often hear about. As industry that is based on enabling communication across the globe via the internet and many types of devices, many of us practitioners

Why I’m done calling humans the weakest link Read More »

TeamPCP’s attack spree slows, but threat escalates with ransomware pivot

Don't miss, GitGuardian, Hot stuff, News, SANS, supply chain compromise, Trend Micro /

TeamPCP’s attack spree slows, but threat escalates with ransomware pivot 2026-03-30 at 18:52 By Zeljka Zorz TeamPCP’s destructive run of supply chain breaches has stopped, for now: it has been three days since the group published malicious versions of Telnyx’s SDK on PyPI, and there haven’t been reports of new open-source project compromises. Partnership with

TeamPCP’s attack spree slows, but threat escalates with ransomware pivot Read More »

Critical Fortinet FortiClient EMS bug under active attack (CVE-2026-21643)

Bishop Fox, Defused Cyber, Don't miss, enterprise, Fortinet, Hot stuff, News, vulnerability /

Critical Fortinet FortiClient EMS bug under active attack (CVE-2026-21643) 2026-03-30 at 15:37 By Zeljka Zorz A critical SQL injection vulnerability (CVE-2026-21643) in Fortinet FortiClient Endpoint Management Server (EMS), a management server for FortiClient endpoint agents on various platforms, is under active exploitation. The warning comes from Defused Cyber, which helps organizations deploy honeypots/fake assets, and

Critical Fortinet FortiClient EMS bug under active attack (CVE-2026-21643) Read More »

Why risk alone doesn’t get you to yes

CISO, cyber risk, cybersecurity, Don't miss, Expert analysis, Expert corner, News, opinion, Risk Management, strategy /

Why risk alone doesn’t get you to yes 2026-03-30 at 09:29 By Help Net Security I have been in security rooms for years, from military operations centers to corporate boardrooms. In all those years I can tell you that the hardest mission that most security leaders will face is not identifying a threat, but getting

Why risk alone doesn’t get you to yes Read More »

ShipSec Studio brings open-source workflow orchestration to security operations

Don't miss, GitHub, Hot stuff, News, open source, security operations, software /

ShipSec Studio brings open-source workflow orchestration to security operations 2026-03-30 at 08:04 By Anamarija Pogorelec Security teams have long relied on a mix of shell scripts, cron jobs, and loosely connected tools to chain reconnaissance and vulnerability scanning work together. ShipSec Studio, an open-source security workflow automation platform from ShipSec AI, aims to replace that

ShipSec Studio brings open-source workflow orchestration to security operations Read More »

Attackers are exploiting RCE vulnerability in BIG-IP APM systems (CVE-2025-53521)

access management, CISA, CVE, Don't miss, enterprise, F5 Networks, financial industry, Government, Hot stuff, News, vulnerability /

Attackers are exploiting RCE vulnerability in BIG-IP APM systems (CVE-2025-53521) 2026-03-28 at 11:30 By Zeljka Zorz A critical unauthenticated remote code execution vulnerability (CVE-2025-53521) in F5’s BIG-IP Access Policy Manager (APM) solution is under active exploitation, the US Cybersecurity and Infrastructure Security Agency warned on Friday. CISA added the flaw to its Known Exploited Vulnerabilities

Attackers are exploiting RCE vulnerability in BIG-IP APM systems (CVE-2025-53521) Read More »

TeamPCP strikes again: Backdoored Telnyx PyPI package delivers malware

Aikido Security, Don't miss, Endor Labs, Hot stuff, Linux, macOS, Malware, News, open source, PyPI, SafeDep, supply chain attacks, supply chain compromise, Windows /

TeamPCP strikes again: Backdoored Telnyx PyPI package delivers malware 2026-03-27 at 15:46 By Zeljka Zorz TeamPCP continues is supply chain compromise rampage, with telnyx on PyPI being the latest maliciously modified package. What happened? Telnyx is a widely used software development kit (SDK) for the Telnyx AI Voice Agent service. According to Endor Labs researchers,

TeamPCP strikes again: Backdoored Telnyx PyPI package delivers malware Read More »

CISA sounds alarm on Langflow RCE, Trivy supply chain compromise after rapid exploitation

Aqua Security, CISA, Don't miss, Hot stuff, Langflow, News, supply chain compromise, vulnerability /

CISA sounds alarm on Langflow RCE, Trivy supply chain compromise after rapid exploitation 2026-03-27 at 12:43 By Zeljka Zorz The US Cybersecurity and Infrastructure Security Agency (CISA) has added two new vulnerabilities to its Known Exploited Vulnerabilities catalog: CVE-2026-33017, a recently disclosed code injection vulnerability in Langflow, an open-source framework for building AI agents and

CISA sounds alarm on Langflow RCE, Trivy supply chain compromise after rapid exploitation Read More »

Top product launches at RSAC 2026

Astrix Security, Black Duck, Bonfy.AI, Booz Allen Hamilton, Cisco, conferences, Dashlane, Don't miss, Mimecast, News, Novee, Palo Alto Networks, RSAC 2026, Stellar Cyber, Straiker, Teleport /

Top product launches at RSAC 2026 2026-03-27 at 03:57 By Mirko Zorz RSAC 2026 showcased a wave of innovation, with vendors unveiling technologies poised to redefine cybersecurity. From AI-powered defense to breakthroughs in identity protection, this year’s conference delivered a glimpse into the future. Here are the most interesting products that caught our attention, and

Top product launches at RSAC 2026 Read More »

Researchers release tool to detect stealthy BPFDoor implants in critical infrastructure networks

backdoor, critical infrastructure, Don't miss, Hot stuff, Linux, Malware, News, Rapid7, remote access, telecommunications /

Researchers release tool to detect stealthy BPFDoor implants in critical infrastructure networks 2026-03-26 at 15:52 By Zeljka Zorz Telecommunications providers around the world have been dealing with the burrowing efforts of the China-linked APTs for many years now. To help them identify hard-to-detect implants used by the China-based group dubbed Red Menshen, Rapid7 researchers have

Researchers release tool to detect stealthy BPFDoor implants in critical infrastructure networks Read More »

AI SOC vendors are selling a future that production deployments haven’t reached yet

agentic AI, Artificial Intelligence, Aunoo AI, automation, CISO, Claude Code, code analysis, Cybanetix, Don't miss, Features, Gartner, generative AI, Hot stuff, LLMs, News, opinion, Reddit, report, security operations, SOC, strategy, Threat Intelligence /

AI SOC vendors are selling a future that production deployments haven’t reached yet 2026-03-26 at 12:32 By Mirko Zorz Vendors selling AI-powered security operations platforms have built their pitches around a consistent set of promises: autonomous threat investigation, dramatic reductions in analyst workload, and an accelerating path toward humanless operations. Practitioners buying and deploying those

AI SOC vendors are selling a future that production deployments haven’t reached yet Read More »

Scroll to Top