News

Be prepared to patch high-severity vulnerability in curl and libcurl

Docker, Don't miss, Endor Labs, Hot stuff, News, open source, patching, Qualys, security update, Sonatype, Synopsys, vulnerability, vulnerability disclosure /

Be prepared to patch high-severity vulnerability in curl and libcurl 10/10/2023 at 12:20 By Zeljka Zorz Details about two vulnerabilities (CVE-2023-38545, CVE-2023-38546) in curl, a foundational and widely used open-source software for data transfer via URLs, are to be released on Wednesday, October 11. Daniel Stenberg, the original author and lead developer, has said that […]

React to this headline:

Loading spinner

Be prepared to patch high-severity vulnerability in curl and libcurl Read More »

Why zero trust delivers even more resilience than you think

access management, attack, cyber resilience, cybersecurity, Don't miss, Expert analysis, Expert corner, Hot stuff, NetScaler, News, opinion, policy, remediation, zero trust /

Why zero trust delivers even more resilience than you think 10/10/2023 at 08:04 By Help Net Security Ten years ago, zero trust was an exciting, innovative perspective shift that security experts were excited to explore; today, it’s more likely to be framed as an inevitable trend than as a mere option on the security menu.

React to this headline:

Loading spinner

Why zero trust delivers even more resilience than you think Read More »

Turning military veterans into cybersecurity experts

cybersecurity, Don't miss, Features, Hot stuff, News, opinion, skill development, TechVets, Threat Intelligence, threats, training /

Turning military veterans into cybersecurity experts 10/10/2023 at 07:34 By Mirko Zorz In this Help Net Security interview, James Murphy, the Director of the TechVets Programme at the Forces Employment Charity, discusses the challenges that military veterans face when transitioning from military to civilian life. One significant hurdle is the difficulty they often encounter in

React to this headline:

Loading spinner

Turning military veterans into cybersecurity experts Read More »

Cybersecurity pros predict rise of malicious AI

Artificial Intelligence, awareness, cybersecurity, Enea, Malware, News, phishing, report, social engineering, strategy, survey /

Cybersecurity pros predict rise of malicious AI 10/10/2023 at 06:35 By Help Net Security 76% of cybersecurity professionals believe the world is very close to encountering malicious AI that can bypass most known cybersecurity measures, according to Enea. 26% see this happening within the next year, and 50% in the next 5 years. Worries about

React to this headline:

Loading spinner

Cybersecurity pros predict rise of malicious AI Read More »

Cybercriminals can go from click to compromise in less than a day

attacks, cybercrime, cybercriminals, cybersecurity, Malware, News, Ransomware, report, SecureWorks, survey /

Cybercriminals can go from click to compromise in less than a day 10/10/2023 at 06:02 By Help Net Security The median dwell time in ransomware engagements dropped to just under 24 hours from 4.5 days in the previous year and 5.5 days in the year before that, according to SecureWorks. In 10% of cases, ransomware

React to this headline:

Loading spinner

Cybercriminals can go from click to compromise in less than a day Read More »

eBook: Cybersecurity career hacks for newcomers

Don't miss, ISC2, News, Whitepapers and webinars /

eBook: Cybersecurity career hacks for newcomers 10/10/2023 at 05:46 By Help Net Security Are you excited to pursue a cybersecurity career but unsure where to begin? Whether you’re a student, an incoming professional, or ready to work in a different field, the tried-and-tested career hacks in this eBook will help you get your start in

React to this headline:

Loading spinner

eBook: Cybersecurity career hacks for newcomers Read More »

$2.7 billion lost to social media scams since 2021

Cryptocurrency, cybercrime, cybersecurity, Don't miss, fraud, FTC, News, report, romance scams, scams, social media, survey /

$2.7 billion lost to social media scams since 2021 09/10/2023 at 13:47 By Help Net Security Scams originating on social media have accounted for $2.7 billion in reported losses since 2021, more than any other contact method, according to the Federal Trade Commission. Social media gives scammers an edge in several ways. They can easily

React to this headline:

Loading spinner

$2.7 billion lost to social media scams since 2021 Read More »

Microsoft 365 email senders urged to implement SPF, DKIM and DMARC

DMARC, Don't miss, Email, enterprise, Hot stuff, Microsoft, Microsoft 365, News, spam /

Microsoft 365 email senders urged to implement SPF, DKIM and DMARC 09/10/2023 at 13:32 By Helga Labus In the wake of Google’s announcement of new rules for bulk senders, Microsoft is urging Microsoft 365 email senders to implement SPF, DKIM and DMARC email authentication methods. “These Domain Name Service (DNS) email authentication records verify that

React to this headline:

Loading spinner

Microsoft 365 email senders urged to implement SPF, DKIM and DMARC Read More »

Exploit writers invited to probe Chrome’s V8 engine, Google Cloud’s KVM

bug bounty, Chrome, Don't miss, Expert corner, exploit, Google, Google Cloud, News, virtualization /

Exploit writers invited to probe Chrome’s V8 engine, Google Cloud’s KVM 09/10/2023 at 13:01 By Zeljka Zorz Google is asking bug hunters and exploit writers to develop 0-day and n-day exploits in Chrome’s V8 JavaScript engine and Google Cloud’s Kernel-based Virtual Machine (KVM). “We want to learn from the security community to understand how they

React to this headline:

Loading spinner

Exploit writers invited to probe Chrome’s V8 engine, Google Cloud’s KVM Read More »

Selective disclosure in the identity wallet: How users share the data that is really needed

authentication, cyberattack, cybersecurity, data, Data leak, Don't miss, Expert analysis, Expert corner, Hot stuff, identity, IDnow, News, opinion, Privacy /

Selective disclosure in the identity wallet: How users share the data that is really needed 09/10/2023 at 07:46 By Help Net Security Name, date of birth, address, email address, passwords, tax records, or payroll – all this sensitive user data is stored by companies in huge databases to identify individuals for digital services. Although companies

React to this headline:

Loading spinner

Selective disclosure in the identity wallet: How users share the data that is really needed Read More »

Incentivizing secure online behavior across generations

cybercrime, cybersecurity, CybSafe, National Cybersecurity Alliance, News, password manager, passwords, phishing, report, survey, training /

Incentivizing secure online behavior across generations 09/10/2023 at 07:01 By Help Net Security As the landscape of online security continues to evolve, there is a noticeable shift in people’s perceptions of cybersecurity, with an increasing awareness of its vital role in staying safe online, according to a survey conducted by the National Cybersecurity Alliance (NCA)

React to this headline:

Loading spinner

Incentivizing secure online behavior across generations Read More »

Companies rethinking degree requirements for entry-level cybersecurity jobs

attacks, cyber risk, cybersecurity, ISACA, News, report, survey, threat, training /

Companies rethinking degree requirements for entry-level cybersecurity jobs 09/10/2023 at 06:31 By Help Net Security While the threat landscape is evolving for most on the front lines, little has changed in recent years, according to ISACA. The research finds that of the cybersecurity professionals who said they were experiencing an increase or decrease in cybersecurity

React to this headline:

Loading spinner

Companies rethinking degree requirements for entry-level cybersecurity jobs Read More »

Week in review: Patch Tuesday forecast, 9 free ransomware guides, Cybertech Europe 2023

News, Week in review /

Week in review: Patch Tuesday forecast, 9 free ransomware guides, Cybertech Europe 2023 08/10/2023 at 11:32 By Help Net Security Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Photos: Cybertech Europe 2023 The Cybertech Europe conference and exhibition takes place at La Nuvola Convention Center in Rome, and

React to this headline:

Loading spinner

Week in review: Patch Tuesday forecast, 9 free ransomware guides, Cybertech Europe 2023 Read More »

Exclusive: FBI Hunts School ‘Swatter’ Who Sent A Bomb Hoax To Sandy Hook

Breaking, breaking-news, cybersecurity, Editors' Pick, Innovation, News, premium, Technology /

Exclusive: FBI Hunts School ‘Swatter’ Who Sent A Bomb Hoax To Sandy Hook 07/10/2023 at 15:34 By Thomas Brewster, Forbes Staff FBI identifies suspect in Riverside, California, who targeted elementary schools, suicide help lines and Nashville Airport. It comes after a barrage of “swatting” calls has caused chaos across America. This article is an excerpt

React to this headline:

Loading spinner

Exclusive: FBI Hunts School ‘Swatter’ Who Sent A Bomb Hoax To Sandy Hook Read More »

NASA, GSA, and Department of Defense Propose Rule to Standardize Cybersecurity Requirements for Federal Contracts

News /

NASA, GSA, and Department of Defense Propose Rule to Standardize Cybersecurity Requirements for Federal Contracts 06/10/2023 at 16:03 By Several U.S. federal agencies have proposed a rule, FAR Case 2021–019, and issued a call for public comment to standardize cybersecurity contractual requirements for unclassified federal information systems and a statute on improving the nation’s cybersecurity. This

React to this headline:

Loading spinner

NASA, GSA, and Department of Defense Propose Rule to Standardize Cybersecurity Requirements for Federal Contracts Read More »

New infosec products of the week: October 6, 2023

Cloaked, ComplyCube, LogicMonitor, ManageEngine, News, Nutanix, Veriff /

New infosec products of the week: October 6, 2023 06/10/2023 at 08:03 By Help Net Security Here’s a look at the most interesting products from the past week, featuring releases from Cloaked, ComplyCube, LogicMonitor, ManageEngine, Nutanix, and Veriff. Veriff unveils fraud mitigation solutions Veriff launched its new Fraud Protect & Fraud Intelligence packages. Both packages

React to this headline:

Loading spinner

New infosec products of the week: October 6, 2023 Read More »

Poor cybersecurity habits are common among younger employees

cybersecurity, Ivanti, News, passwords, phishing, report, survey, training /

Poor cybersecurity habits are common among younger employees 06/10/2023 at 06:31 By Help Net Security One in three employees believe their actions do not impact their organization’s security, according to Ivanti. Unsafe cybersecurity habits among office workers The research also shows that Millennial and Gen Z office workers are more likely to have unsafe cybersecurity

React to this headline:

Loading spinner

Poor cybersecurity habits are common among younger employees Read More »

Enterprises see AI as a worthwhile investment

Artificial Intelligence, investment, machine learning, News, report, survey, Wallaroo.AI /

Enterprises see AI as a worthwhile investment 06/10/2023 at 06:02 By Help Net Security 92% of AI team leaders at leading-edge organizations felt that their AI initiatives are generating value, according to Wallaroo.AI. Having found a successful formula, most of those surveyed plan to dramatically increase their spend on ML and use of ML models

React to this headline:

Loading spinner

Enterprises see AI as a worthwhile investment Read More »

“Looney Tunables” bug allows root access on Linux distros (CVE-2023-4911)

Debian, Don't miss, Fedora, Hot stuff, Linux, News, PoC, Qualys, Red Hat, security update, Ubuntu, vulnerability /

“Looney Tunables” bug allows root access on Linux distros (CVE-2023-4911) 05/10/2023 at 16:17 By Zeljka Zorz A vulnerability (CVE-2023-4911) in the GNU C Library (aka “glibc”) can be exploited by attackers to gain root privileges on many popular Linux distributions, according to Qualys researchers. About CVE-2023-4911 Dubbed “Looney Tunables”, CVE-2023-4911 is a buffer overflow vulnerability

React to this headline:

Loading spinner

“Looney Tunables” bug allows root access on Linux distros (CVE-2023-4911) Read More »

Apple patches another iOS zero-day under attack (CVE-2023-42824)

0-day, apple, Don't miss, Hot stuff, iOS, iPad, News, security update, vulnerability /

Apple patches another iOS zero-day under attack (CVE-2023-42824) 05/10/2023 at 13:47 By Helga Labus Apple has released a security update for iOS and iPadOS to fix another zero-day vulnerability (CVE-2023-42824) exploited in the wild. About the vulnerability (CVE-2023-42824) CVE-2023-42824 is a kernel vulnerability that could allow a local threat actor to elevate its privileges on

React to this headline:

Loading spinner

Apple patches another iOS zero-day under attack (CVE-2023-42824) Read More »

Scroll to Top