Incident Response

Security Firms Hit by Salesforce–Salesloft Drift Breach

Data Breaches, Incident Response, Salesforce, Salesloft /

Security Firms Hit by Salesforce–Salesloft Drift Breach 2025-09-03 at 13:06 By Ionut Arghire Hackers accessed customer contact information and case data from Salesforce instances at Cloudflare, Palo Alto Networks, and Zscaler. The post Security Firms Hit by Salesforce–Salesloft Drift Breach appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Security Firms Hit by Salesforce–Salesloft Drift Breach Read More »

Using lightweight LLMs to cut incident response times and reduce hallucinations

Artificial Intelligence, CISO, cybersecurity, Don't miss, Features, Hot stuff, Incident Response, LLMs, News, research, security operations, strategy, Threat Intelligence, tips /

Using lightweight LLMs to cut incident response times and reduce hallucinations 2025-08-21 at 09:03 By Mirko Zorz Researchers from the University of Melbourne and Imperial College London have developed a method for using LLMs to improve incident response planning with a focus on reducing the risk of hallucinations. Their approach uses a smaller, fine-tuned LLM

Using lightweight LLMs to cut incident response times and reduce hallucinations Read More »

How military leadership prepares veterans for cybersecurity success

cybersecurity, Don't miss, Features, Hot stuff, Incident Response, News, NTT, skill development, threats, training /

How military leadership prepares veterans for cybersecurity success 2025-08-15 at 09:47 By Mirko Zorz In this Help Net Security interview, Warren O’Driscoll, Head of Security Practice at NTT DATA UK and Ireland, discusses how military leadership training equips veterans with the mindset, resilience, and strategic thinking needed to excel in cybersecurity. Drawing on habits such

How military leadership prepares veterans for cybersecurity success Read More »

PLoB: A Behavioral Fingerprinting Framework to Hunt for Malicious Logins

Identity & Access, Incident Response, PLoB, Splunk /

PLoB: A Behavioral Fingerprinting Framework to Hunt for Malicious Logins 2025-08-06 at 19:48 By Kevin Townsend Splunk researchers developed a system to fingerprint post-logon behavior, using AI to find subtle signals of intrusion. The post PLoB: A Behavioral Fingerprinting Framework to Hunt for Malicious Logins appeared first on SecurityWeek. This article is an excerpt from

PLoB: A Behavioral Fingerprinting Framework to Hunt for Malicious Logins Read More »

Smart steps to keep your AI future-ready

Artificial Intelligence, cybersecurity, Don't miss, Features, Hot stuff, Incident Response, News, PwC, regulation, strategy /

Smart steps to keep your AI future-ready 2025-08-01 at 09:36 By Mirko Zorz In this Help Net Security interview, Rohan Sen, Principal, Cyber, Data, and Tech Risk, PwC US, discusses how organizations can design autonomous AI agents with strong governance from day one. As AI becomes more embedded in business ecosystems, overlooking agent-level security can

Smart steps to keep your AI future-ready Read More »

Open Source CISA Tool Helps Defenders With Hacker Containment, Eviction

Incident Response /

Open Source CISA Tool Helps Defenders With Hacker Containment, Eviction 2025-07-31 at 17:02 By Ionut Arghire The tool includes resources to help organizations during the containment and eviction stages of incident response. The post Open Source CISA Tool Helps Defenders With Hacker Containment, Eviction appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

Open Source CISA Tool Helps Defenders With Hacker Containment, Eviction Read More »

Clorox Sues Cognizant for $380 Million Over 2023 Hack

Clorox, Cognizant, Incident Response, lawsuit /

Clorox Sues Cognizant for $380 Million Over 2023 Hack 2025-07-24 at 15:11 By Eduard Kovacs Clorox is blaming Congnizat for the 2023 cyberattack, claiming that the IT provided handed over passwords to the hackers. The post Clorox Sues Cognizant for $380 Million Over 2023 Hack appeared first on SecurityWeek. This article is an excerpt from

Clorox Sues Cognizant for $380 Million Over 2023 Hack Read More »

World Health Organization CISO on securing global health emergencies

cybersecurity, Don't miss, Features, healthcare, Hot stuff, Incident Response, News, strategy, threats, World Health Organization /

World Health Organization CISO on securing global health emergencies 2025-07-21 at 08:49 By Mirko Zorz In this Help Net Security interview, Flavio Aggio, CISO at the World Health Organization (WHO), explains how the organization prepares for and responds to cyber threats during global health emergencies. These crises often lead to an increase in phishing scams,

World Health Organization CISO on securing global health emergencies Read More »

United Natural Foods Projects Up to $400M Sales Hit from June Cyberattack

cyber insurance, Incident Response, UNFI, United Natural Foods /

United Natural Foods Projects Up to $400M Sales Hit from June Cyberattack 2025-07-16 at 18:45 By Mike Lennon Cyberattack disrupted UNFI’s operations in June; company estimates $50–$60 million net income hit but anticipates insurance will cover most losses. The post United Natural Foods Projects Up to $400M Sales Hit from June Cyberattack appeared first on

United Natural Foods Projects Up to $400M Sales Hit from June Cyberattack Read More »

DDoS Attacks Blocked by Cloudflare in 2025 Already Surpass 2024 Total 

Cloudflare, DDoS, Incident Response, report /

DDoS Attacks Blocked by Cloudflare in 2025 Already Surpass 2024 Total  2025-07-15 at 16:04 By Eduard Kovacs Cloudflare has published its quarterly DDoS threat report for Q2 2025 and the company says it has blocked millions of attacks. The post DDoS Attacks Blocked by Cloudflare in 2025 Already Surpass 2024 Total  appeared first on SecurityWeek.

DDoS Attacks Blocked by Cloudflare in 2025 Already Surpass 2024 Total  Read More »

Kanvas: Open-source incident response case management tool

cybersecurity, Don't miss, GitHub, Hot stuff, Incident Response, MITRE, News, open source, software, WithSecure /

Kanvas: Open-source incident response case management tool 2025-07-09 at 07:31 By Mirko Zorz Kanvas is an open-source incident response case management tool with a simple desktop interface, built in Python. It gives investigators a place to work with SOD (Spreadsheet of Doom) or similar files, so they can handle key tasks without jumping between different

Kanvas: Open-source incident response case management tool Read More »

Exposure management is the answer to: “Am I working on the right things?”

cybersecurity, Don't miss, Features, Hot stuff, Incident Response, News, penetration testing, PlexTrac, strategy, vulnerability management /

Exposure management is the answer to: “Am I working on the right things?” 2025-07-08 at 09:07 By Mirko Zorz In this Help Net Security interview, Dan DeCloss, Founder and CTO at PlexTrac, discusses the role of exposure management in cybersecurity and how it helps organizations gain visibility into their attack surface to improve risk assessment

Exposure management is the answer to: “Am I working on the right things?” Read More »

Like Ransoming a Bike: Organizational Muscle Memory Drives the Most Effective Response

Incident Response, Ransomware /

Like Ransoming a Bike: Organizational Muscle Memory Drives the Most Effective Response 2025-07-02 at 16:48 By Trevin Edgeworth Ransomware is a major threat to the enterprise. Tools and training help, but survival depends on one thing: your organization’s muscle memory to respond fast and recover stronger. The post Like Ransoming a Bike: Organizational Muscle Memory

Like Ransoming a Bike: Organizational Muscle Memory Drives the Most Effective Response Read More »

Cyberattack Targets International Criminal Court

cyberattack, ICC, Incident Response, International Criminal Court /

Cyberattack Targets International Criminal Court 2025-07-02 at 11:30 By Ionut Arghire The International Criminal Court (ICC) has detected and contained a sophisticated and targeted cyberattack. The post Cyberattack Targets International Criminal Court appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Cyberattack Targets International Criminal Court Read More »

Third-party breaches double, creating ripple effects across industries

cybersecurity, Incident Response, News, report, risk, SecurityScorecard, supply chain, third party compromise /

Third-party breaches double, creating ripple effects across industries 2025-06-30 at 07:04 By Help Net Security Supply chain risks remain top-of-mind for the vast majority of CISOs and cybersecurity leaders, according to SecurityScorecard. Their findings reveal that the way most organizations manage supply chain cyber risk isn’t keeping pace with expanding threats. The expanding web of

Third-party breaches double, creating ripple effects across industries Read More »

Microsoft Patch Tuesday Covers WebDAV Flaw Marked as ‘Already Exploited’

CVE-2025-33053, Incident Response, Malware & Threats, Microsoft, Microsoft Office, Patch Tuesday, Vulnerabilities, WebDAV, Zero-Day /

Microsoft Patch Tuesday Covers WebDAV Flaw Marked as ‘Already Exploited’ 2025-06-10 at 21:20 By Ryan Naraine Redmond warns that external control of a file name or path in WebDAV “allows an unauthorized attacker to execute code over a network.” The post Microsoft Patch Tuesday Covers WebDAV Flaw Marked as ‘Already Exploited’ appeared first on SecurityWeek.

Microsoft Patch Tuesday Covers WebDAV Flaw Marked as ‘Already Exploited’ Read More »

The legal questions to ask when your systems go dark

CISO, conferences, cybersecurity, Don't miss, Features, Hot stuff, Incident Response, law, law firms, News, regulation, Span, strategy /

The legal questions to ask when your systems go dark 2025-06-10 at 09:16 By Mirko Zorz At Span Cyber Security Arena, I sat down with Iva Mišković, Partner at the ISO-certified Mišković & Mišković law firm, to discuss the role of legal teams during cyber incidents. She shared why lawyers should assume the worst, coordinate

The legal questions to ask when your systems go dark Read More »

Chinese Espionage Crews Circle SentinelOne in Year-Long Reconnaissance Campaign

APT41, China, Incident Response, Malware & Threats, Nation-State, PurpleHaze, SentinelLabs, SentinelOne, Shadowpad /

Chinese Espionage Crews Circle SentinelOne in Year-Long Reconnaissance Campaign 2025-06-09 at 20:58 By Ryan Naraine Anti-malware vendor said it spent the past twelve months deflecting a stream of network reconnaissance probes from China-nexus threat actors The post Chinese Espionage Crews Circle SentinelOne in Year-Long Reconnaissance Campaign appeared first on SecurityWeek. This article is an excerpt

Chinese Espionage Crews Circle SentinelOne in Year-Long Reconnaissance Campaign Read More »

Guardz Banks $56M Series B for All-in-One SMB Security

Endpoint Security, Funding/M&A, Guardz, Incident Response, Managed Services, MSPs, Series B, SMB /

Guardz Banks $56M Series B for All-in-One SMB Security 2025-06-09 at 17:38 By SecurityWeek News The Israeli company said the Series B raise was led by ClearSky and included equity stakes for new backer Phoenix Financial. The post Guardz Banks $56M Series B for All-in-One SMB Security appeared first on SecurityWeek. This article is an

Guardz Banks $56M Series B for All-in-One SMB Security Read More »

Victoria’s Secret Says It Will Postpone Earnings Report After Recent Security Breach

data breach, Incident Response, Victoria's Secret /

Victoria’s Secret Says It Will Postpone Earnings Report After Recent Security Breach 2025-06-04 at 13:32 By Associated Press Victoria’s Secret is postponing the release of its quarterly earnings following a security breach that disrupted the popular lingerie brand’s corporate operations. The post Victoria’s Secret Says It Will Postpone Earnings Report After Recent Security Breach appeared

Victoria’s Secret Says It Will Postpone Earnings Report After Recent Security Breach Read More »

Scroll to Top