News

Attackers breached ConnectWise, compromised customer ScreenConnect instances

ConnectWise, cyber espionage, Don't miss, government-backed attacks, Hot stuff, MSP, News, remote access, tech support /

Attackers breached ConnectWise, compromised customer ScreenConnect instances 2025-06-02 at 20:19 By Zeljka Zorz A suspected “sophisticated nation state actor” has compromised ScreenConnect cloud instances of a “very small number” of ConnectWise customers, the company has revealed on Wednesday. “We have not observed any additional suspicious activity in ScreenConnect cloud instances since the patch was released […]

Attackers breached ConnectWise, compromised customer ScreenConnect instances Read More »

Product showcase: Smarter pentest reporting and exposure management with PlexTrac

Don't miss, Hot stuff, News, penetration testing, PlexTrac, Product showcase /

Product showcase: Smarter pentest reporting and exposure management with PlexTrac 2025-06-02 at 09:03 By Help Net Security The threat landscape is evolving faster than ever. Staying ahead means going beyond automated scans and check-the-box assessments. It demands continuous, hands-on testing through a security approach that proactively identifies, prioritizes, and mitigates threats in real time. To

Product showcase: Smarter pentest reporting and exposure management with PlexTrac Read More »

CISO 3.0: Leading AI governance and security in the boardroom

Artificial Intelligence, boardroom, CDW, CISO, cybersecurity, Don't miss, Features, Hot stuff, News, opinion, Risk Management, strategy, tips, training /

CISO 3.0: Leading AI governance and security in the boardroom 2025-06-02 at 08:50 By Mirko Zorz In this Help Net Security interview, Aaron McCray, Field CISO at CDW, discusses how AI is transforming the CISO role from a tactical cybersecurity guardian into a strategic enterprise risk advisor. With AI now embedded across business functions, CISOs

CISO 3.0: Leading AI governance and security in the boardroom Read More »

Review: Metasploit, 2nd Edition

Binary Defense, book, Don't miss, Metasploit, News, OffSec, Rapid7, Review, Reviews, TrustedSec /

Review: Metasploit, 2nd Edition 2025-06-02 at 08:18 By Mirko Zorz If you’ve spent any time in penetration testing, chances are you’ve crossed paths with Metasploit. The second edition of Metasploit tries to bring the book in line with how pentesters are using the tool. It mostly succeeds, with some caveats depending on your experience level

Review: Metasploit, 2nd Edition Read More »

Security awareness training isn’t stopping breaches. Can AI help?

Abnormal AI, Don't miss, how-to, human error, News, security awareness, skill development, strategy, tips, training, Video /

Security awareness training isn’t stopping breaches. Can AI help? 2025-06-02 at 07:31 By Help Net Security In this Help Net Security video, Mick Leach, Field CISO at Abnormal AI, explores why security awareness training (SAT) is failing to reduce human error, the top cause of cybersecurity incidents. He discusses how AI can transform SAT into

Security awareness training isn’t stopping breaches. Can AI help? Read More »

48% of security pros are falling behind compliance requirements

Artificial Intelligence, Lineaje, News, open source, report, software, supply chain, survey, vulnerability management /

48% of security pros are falling behind compliance requirements 2025-06-02 at 07:07 By Help Net Security 32% of security professionals think they can deliver zero-vulnerability software despite rising threats and compliance regulations, according to Lineaje. Meanwhile, 68% are more realistic, noting they feel uncertain about achieving this near impossible outcome. Software compliance adoption varies across

48% of security pros are falling behind compliance requirements Read More »

Week in review: NIST proposes new vulnerabilities metric, flaws in NASA’s open source software

News, Week in review /

Week in review: NIST proposes new vulnerabilities metric, flaws in NASA’s open source software 2025-06-01 at 11:02 By Help Net Security Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Vulnerabilities found in NASA’s open source software Vulnerabilities in open source software developed and used in-house by NASA could

Week in review: NIST proposes new vulnerabilities metric, flaws in NASA’s open source software Read More »

Why privacy in blockchain must start with open source

blockchain, code, cybersecurity, Don't miss, Expert analysis, Expert corner, Hot stuff, News, open source, Privacy, Zama /

Why privacy in blockchain must start with open source 2025-05-30 at 09:02 By Help Net Security Traditionally, trust came from centralized institutions. Banks, payment networks, and clearinghouses are closed systems. Users cannot see the inner workings, but they rely on external audits, government regulation, and long histories of compliance to feel secure. It’s a model

Why privacy in blockchain must start with open source Read More »

Using AI to outsmart AI-driven phishing scams

Artificial Intelligence, CISO, cybercrime, News, phishing, strategy /

Using AI to outsmart AI-driven phishing scams 2025-05-30 at 08:32 By Sinisa Markovic Phishing scams used to be filled with awkward wording and obvious grammar mistakes. Not anymore. AI is now making it harder to distinguish what is real. According to Cofense, email-based scams surged 70% year over year, driven by AI’s ability to automate

Using AI to outsmart AI-driven phishing scams Read More »

AI agents have access to key data across the enterprise

Artificial Intelligence, cyber risk, cybersecurity, News, report, SailPoint, survey /

AI agents have access to key data across the enterprise 2025-05-30 at 08:14 By Help Net Security 82% of organizations already use AI agents, but only 44% of organizations report having policies in place to secure them, according to SailPoint. While 53% are in the process of developing such policies, the reality is that most

AI agents have access to key data across the enterprise Read More »

Exchange 2016, 2019 support ends soon: What IT should do to stay secure

Compliance, Exchange, Microsoft, News, software, strategy, tips /

Exchange 2016, 2019 support ends soon: What IT should do to stay secure 2025-05-30 at 07:33 By Help Net Security Microsoft is ending support for Exchange Server 2016, Exchange Server 2019, and Outlook 2016 on October 14, 2025. That date might seem far off, but if you’re managing email systems or Office deployments, it’s worth

Exchange 2016, 2019 support ends soon: What IT should do to stay secure Read More »

Infosec products of the month: May 2025

Anchore, BalkanID, Cyble, groundcover, Hunted Labs, LogicGate, McAfee, News, Obsidian Security, Outpost24, PentestPad, ProcessUnity, Resecurity, Searchlight Cyber, SecuX, ServiceNow, ThreatMark, Verosint /

Infosec products of the month: May 2025 2025-05-30 at 07:02 By Sinisa Markovic Here’s a look at the most interesting products from the past month, featuring releases from: Anchore, BalkanID, Cyble, groundcover, Hunted Labs, LogicGate, McAfee, Obsidian Security, Outpost24, PentestPad, ProcessUnity, Resecurity, Searchlight Cyber, SecuX, ServiceNow, ThreatMark, and Verosint. New MCP server from groundcover redefines

Infosec products of the month: May 2025 Read More »

Preventing Supply Chain Cyberattacks: Lessons from the Marks & Spencer Breach

data breach, News, Tips & Tricks /

Preventing Supply Chain Cyberattacks: Lessons from the Marks & Spencer Breach 2025-05-29 at 20:41 By Marks & Spencer’s £300M Ransomware Fallout: A sophisticated supply chain attack—likely involving phishing and social engineering—crippled operations, wiped £750M off market value, and disrupted food store logistics. Innocent Insiders Amplify Risk: Social engineering tricked a supplier’s IT staff into granting access, spotlighting

Preventing Supply Chain Cyberattacks: Lessons from the Marks & Spencer Breach Read More »

Microsoft unveils “centralized” software update tool for Windows

backup, Don't miss, enterprise, Hot stuff, Microsoft, News, orchestration, SMBs, Windows /

Microsoft unveils “centralized” software update tool for Windows 2025-05-29 at 14:49 By Zeljka Zorz Microsoft is looking to streamline the software updating process for IT admins and users by providing a Windows-native update orchestration platform, and to help organizations upgrade their computer fleet to Windows 11 with the help of Windows Backup for Organizations. The

Microsoft unveils “centralized” software update tool for Windows Read More »

What CISOs can learn from the frontlines of fintech cybersecurity

CISO, conferences, cybersecurity, Don't miss, Features, Hot stuff, Mastercard, News, opinion, Span, strategy, tips /

What CISOs can learn from the frontlines of fintech cybersecurity 2025-05-29 at 09:03 By Mirko Zorz At Span Cyber Security Arena, I sat down with Ria Shetty, Director, Cyber Security & Resilience for Europe at Mastercard. Our conversation cut through the hype and focused on what CISOs deal with every day: how to embed security

What CISOs can learn from the frontlines of fintech cybersecurity Read More »

How CISOs can regain ground in the AI fraud war

CISO, cybersecurity, DataVisor, fraud, News, report, survey /

How CISOs can regain ground in the AI fraud war 2025-05-29 at 08:31 By Help Net Security Fraudsters are winning the AI arms race, first-party fraud is rising, and siloed systems are holding back defenses, according to DataVisor. Their 2025 Fraud & AML Executive Report, based on surveys of banks, fintechs, credit unions, and digital

How CISOs can regain ground in the AI fraud war Read More »

CISOs prioritize AI-driven automation to optimize cybersecurity spending

Artificial Intelligence, automation, CISO, cybersecurity, News, report, Risk Management, Wipro /

CISOs prioritize AI-driven automation to optimize cybersecurity spending 2025-05-29 at 08:04 By Help Net Security Cybersecurity leaders and consultants identified AI-driven automation and cost optimization as top organizational priorities, according to Wipro. 30% of respondents are investing in AI automation to enhance their cybersecurity operations. AI-driven automation can help in detecting and responding to threats

CISOs prioritize AI-driven automation to optimize cybersecurity spending Read More »

How to threat hunt Living Off The Land binaries

cybersecurity, Don't miss, News, strategy, threat hunting, tips, Video /

How to threat hunt Living Off The Land binaries 2025-05-29 at 07:32 By Help Net Security In this Help Net Security video, Lee Archinal, Senior Threat Hunter at Intel 471, walks through practical strategies for detecting malicious activity involving Living Off The Land binaries (LOLBins). These are legitimate tools built into operating systems, such as

How to threat hunt Living Off The Land binaries Read More »

Review: Cybersecurity For Dummies, 3rd Edition

books, cybersecurity, Don't miss, Hot stuff, News, Review, Reviews, skill development /

Review: Cybersecurity For Dummies, 3rd Edition 2025-05-29 at 07:01 By Mirko Zorz If you’re new to cybersecurity and looking for a book that doesn’t overwhelm you with jargon or dive too deep into technical territory, Cybersecurity For Dummies might be a solid starting point. It’s written with beginners in mind and assumes you know how

Review: Cybersecurity For Dummies, 3rd Edition Read More »

Trustwave Named a Representative Vendor in 2025 Gartner® Market Guide for Third-Party Risk Management Technology Solutions

News, Reports, Spotlights /

Trustwave Named a Representative Vendor in 2025 Gartner® Market Guide for Third-Party Risk Management Technology Solutions 2025-05-28 at 16:30 By The industry analyst firm Gartner® has named Trustwave a Representative Vendor in its latest publication, 2025 Gartner® Market Guide for Third-Party Risk Management Technology Solutions. This article is an excerpt from Trustwave Blog View Original

Trustwave Named a Representative Vendor in 2025 Gartner® Market Guide for Third-Party Risk Management Technology Solutions Read More »

Scroll to Top