News

Coaching AI agents: Why your next security hire might be an algorithm

Artificial Intelligence, cybersecurity, Don't miss, Dropzone AI, Expert analysis, Expert corner, Hot stuff, News, opinion, SOC /

Coaching AI agents: Why your next security hire might be an algorithm 2025-04-24 at 08:31 By Help Net Security Security teams are drowning in alerts. The sheer volume of threats, suspicious activity, and false positives makes it nearly impossible for analysts to investigate everything effectively. Enter agentic AI, capable of completing hundreds of tasks simultaneously […]

Coaching AI agents: Why your next security hire might be an algorithm Read More »

A new era of cyber threats is approaching for the energy sector

cybersecurity, Darktrace, energy sector, News, report, survey /

A new era of cyber threats is approaching for the energy sector 2025-04-24 at 08:17 By Sinisa Markovic Cyber threats targeting the energy sector come in many forms, including state-sponsored actors seeking to disrupt national infrastructure, cybercriminals motivated by profit, and insiders intentionally causing damage. The consequences of a successful attack can be severe, potentially

A new era of cyber threats is approaching for the energy sector Read More »

Review: Artificial Intelligence for Cybersecurity

Artificial Intelligence, book, cybersecurity, Don't miss, News, Review, Reviews /

Review: Artificial Intelligence for Cybersecurity 2025-04-24 at 07:39 By Mirko Zorz Artificial Intelligence for Cybersecurity is a practical guide to how AI and machine learning are changing the way we defend digital systems. The book aims to explain how AI can help solve real cybersecurity problems. It does that well, but it’s not for everyone.

Review: Artificial Intelligence for Cybersecurity Read More »

One in three security teams trust AI to act autonomously

Artificial Intelligence, CISO, cybersecurity, Exabeam, News, report, survey /

One in three security teams trust AI to act autonomously 2025-04-24 at 07:39 By Help Net Security While AI adoption is widespread, its impact on productivity, trust, and team structure varies sharply by role and region, according to Exabeam. The findings confirm a critical divide: 71% of executives believe AI has significantly improved productivity across

One in three security teams trust AI to act autonomously Read More »

Trustwave MDR Named SC Media Awards Finalist for Best Managed Security Service

Managed Detection and Response, News, Spotlights /

Trustwave MDR Named SC Media Awards Finalist for Best Managed Security Service 2025-04-23 at 16:13 By Trustwave MDR Recognized: Named a finalist for SC Media’s Best Managed Security Service award. Leading MDR Solution: Delivers rapid threat detection, response, and fast onboarding. Enhanced Cybersecurity: Leverages threat intelligence for proactive threat hunting and eradication. SC Media and SC Media Europe

Trustwave MDR Named SC Media Awards Finalist for Best Managed Security Service Read More »

Released: MITRE ATT&CK v17.0, now with ESXi attack TTPs

attack lifecycle, attack tools, Don't miss, ESXi, Hot stuff, Incident Response, MITRE, MITRE ATT&CK, News, threat modeling /

Released: MITRE ATT&CK v17.0, now with ESXi attack TTPs 2025-04-23 at 16:13 By Zeljka Zorz MITRE has released the latest version of its ATT&CK framework, which now also includes a new section (“matrix”) to cover the tactics, techniques and procedures (TTPs) used to target VMware ESXi hypervisors. About MITRE ATT&CK MITRE ATT&CK is a regularly

Released: MITRE ATT&CK v17.0, now with ESXi attack TTPs Read More »

2025 Data Breach Investigations Report: Third-party breaches double

CISO, cybersecurity, data breach, IDC, News, Ransomware, report, survey, Tenable, Verizon /

2025 Data Breach Investigations Report: Third-party breaches double 2025-04-23 at 14:55 By Sinisa Markovic The exploitation of vulnerabilities has seen another year of growth as an initial access vector for breaches, reaching 20%, according to Verizon’s 2025 Data Breach Investigations Report. Researchers analyzed 22,052 real-world security incidents, of which 12,195 were confirmed data breaches. This

2025 Data Breach Investigations Report: Third-party breaches double Read More »

When confusion becomes a weapon: How cybercriminals exploit economic turmoil

cyber resilience, cybercriminals, cybersecurity, Don't miss, Expert analysis, Expert corner, Fortra, Hot stuff, News, opinion, social engineering /

When confusion becomes a weapon: How cybercriminals exploit economic turmoil 2025-04-23 at 09:02 By Help Net Security It begins with a simple notification: “Markets in Free Fall.” Within moments, the headlines multiply: new tariffs, emergency actions, plummeting consumer confidence. Across boardrooms and break rooms, anxiety ripples at every level. People begin refreshing inboxes and apps

When confusion becomes a weapon: How cybercriminals exploit economic turmoil Read More »

SWE-agent: Open-source tool uses LLMs to fix issues in GitHub repositories

Artificial Intelligence, Don't miss, GitHub, LLMs, News, open source, software /

SWE-agent: Open-source tool uses LLMs to fix issues in GitHub repositories 2025-04-23 at 08:36 By Mirko Zorz By connecting powerful language models like GPT-4o and Claude Sonnet 3.5 to real-world tools, the open-source tool SWE-agent allows them to autonomously perform complex tasks: from fixing bugs in live GitHub repositories and solving cybersecurity challenges, to browsing

SWE-agent: Open-source tool uses LLMs to fix issues in GitHub repositories Read More »

The dark side of YouTube: Malicious links, phishing, and deepfakes

cybercrime, cybersecurity, News, scams, social media /

The dark side of YouTube: Malicious links, phishing, and deepfakes 2025-04-23 at 08:01 By Sinisa Markovic With billions of users, YouTube has become a tempting target for cybercriminals. They post malicious links in video descriptions and comments. Some send phishing emails to creators, posing as sponsors but attaching malware. Others hijack popular channels to promote

The dark side of YouTube: Malicious links, phishing, and deepfakes Read More »

Phishing emails delivering infostealers surge 84%

cybercrime, cybersecurity, IBM, News, report, survey /

Phishing emails delivering infostealers surge 84% 2025-04-23 at 07:31 By Help Net Security Cybercriminals continued to shift to stealthier tactics, with lower-profile credential theft spiking, while ransomware attacks on enterprises declined, according to IBM. Researchers observed an 84% increase in emails delivering infostealers in 2024 compared to the prior year, a method threat actors relied

Phishing emails delivering infostealers surge 84% Read More »

Cybersecurity jobs available right now: April 23, 2025

cybersecurity jobs, News /

Cybersecurity jobs available right now: April 23, 2025 2025-04-23 at 07:01 By Anamarija Pogorelec Application Security Analyst Greenway Health | India | Remote – View job details As an Application Security Analyst, you will conduct regular security assessments of applications, including static and dynamic analysis, to identify vulnerabilities in code, configurations, and third-party dependencies. Ensure

Cybersecurity jobs available right now: April 23, 2025 Read More »

PoC exploit for critical Erlang/OTP SSH bug is public (CVE-2025-32433)

Arctic Wolf Networks, Don't miss, exploit, Horizon3.ai, Hot stuff, News, Platform Security, PoC, ProDefense, Ruhr University Bochum, SSH, vulnerability /

PoC exploit for critical Erlang/OTP SSH bug is public (CVE-2025-32433) 2025-04-22 at 15:48 By Zeljka Zorz There are now several public proof-of-concept (PoC) exploits for a maximum-severity vulnerability in the Erlang/OTP SSH server (CVE-2025-32433) unveiled last week. “All users running an SSH server based on the Erlang/OTP SSH library are likely to be affected by

PoC exploit for critical Erlang/OTP SSH bug is public (CVE-2025-32433) Read More »

The legal blind spot of shadow IT

Auvik Networks, CISO, cybersecurity, Data Protection, data security, Don't miss, Features, Hot stuff, how-to, JumpCloud, News, shadow IT, strategy, tips /

The legal blind spot of shadow IT 2025-04-22 at 09:36 By Mirko Zorz Shadow IT isn’t just a security risk, it’s a legal one. When teams use unsanctioned tools, they can trigger compliance violations, expose sensitive data, or break contracts. Let’s look at where the legal landmines are and what CISOs can do to stay

The legal blind spot of shadow IT Read More »

Email security, simplified: How PowerDMARC makes DMARC easy

DMARC, Don't miss, Hot stuff, News, PowerDMARC, RSAC 2025 /

Email security, simplified: How PowerDMARC makes DMARC easy 2025-04-22 at 08:40 By Mirko Zorz Email is still the top way attackers get into organizations. Now, big players like Google, Yahoo, and Microsoft are cracking down. They’re starting to require email authentication, specifically DMARC. For many companies, this means it’s no longer optional. PowerDMARC helps organizations

Email security, simplified: How PowerDMARC makes DMARC easy Read More »

The C-suite gap that’s putting your company at risk

CISO, cybersecurity, News, report, survey /

The C-suite gap that’s putting your company at risk 2025-04-22 at 08:03 By Help Net Security New research from EY US shows that cyber attacks are creating serious financial risks. C-suite leaders don’t always agree on how exposed their companies are or where the biggest threats come from. CISOs more concerned about cybersecurity (Source: EY

The C-suite gap that’s putting your company at risk Read More »

What school IT admins are up against, and how to help them win

cybersecurity, education, legacy technology, News, shadow IT /

What school IT admins are up against, and how to help them win 2025-04-22 at 07:33 By Anamarija Pogorelec School IT admins are doing tough, important work under difficult conditions. From keeping Wi-Fi stable during exams to locking down systems from phishing emails, their job is part technician, part strategist, part firefighter. But they’re stretched

What school IT admins are up against, and how to help them win Read More »

Compliance weighs heavily on security and GRC teams

auditing, Compliance, cybersecurity, GRC, News, regulation, report, survey, Swimlane /

Compliance weighs heavily on security and GRC teams 2025-04-22 at 07:24 By Help Net Security Only 29% of all organizations say their compliance programs consistently meet internal and external standards, according to Swimlane. Their report reveals that fragmented workflows, manual evidence gathering and poor collaboration between security and governance, risk and compliance (GRC) teams are

Compliance weighs heavily on security and GRC teams Read More »

Scroll to Top