Week in review: How QR code attacks work and how to protect yourself, 10 must-reads for CISOs 2025-03-09 at 11:02 By Help Net Security Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: How QR code attacks work and how to protect yourself While QR codes are convenient, they […]
Open Letter to Clients, Partners, and Trustees 2025-03-07 at 18:02 By Eric Harmon As we see a steady stream of headlines daily about new threat actors, attack vectors, and evolving risks, it’s clear that the cybersecurity market is undergoing rapid and constant change. Staying ahead of these challenges is no longer optional—it’s essential to protect
Open Letter to Clients, Partners, and Trustees Read More »
Cloud security gains overshadowed by soaring storage fees 2025-03-07 at 17:01 By Help Net Security Storage fees in general (e.g., API calls, operations, data access) comprise 49% of an average user’s service bill, compared to the actual stored capacity, according to a study conducted by Vanson Bourne. Nearly all organizations globally have experienced data security-related
Cloud security gains overshadowed by soaring storage fees Read More »
Can AI-powered gamified simulations help cybersecurity teams keep up? 2025-03-07 at 08:04 By Mirko Zorz Traditional training often lacks the hands-on experience cybersecurity teams need to counter advanced threats. AI-powered gamified simulations combine artificial intelligence with interactive learning to enhance their skills. Conventional cybersecurity training programs frequently rely on static content, which can become outdated.
Can AI-powered gamified simulations help cybersecurity teams keep up? Read More »
New infosec products of the week: March 7, 2025 2025-03-07 at 06:01 By Help Net Security Here’s a look at the most interesting products from the past week, featuring releases from Outpost24, Palo Alto Networks, Red Canary, and Sonatype. Outpost24 introduces CyberFlex to streamline attack surface management and pen testing Outpost24 has launched Outpost24 CyberFlex,
New infosec products of the week: March 7, 2025 Read More »
Cybersecurity jobs available right now in the USA: March 6, 2025 2025-03-06 at 18:06 By Anamarija Pogorelec CISO Amplitude | USA | Hybrid – View job details As a CISO, you will develop, implement, and maintain a comprehensive security strategy aligned with Amplitude’s business goals and risk tolerance. Oversee the identification, assessment, and mitigation of
Cybersecurity jobs available right now in the USA: March 6, 2025 Read More »
How to prevent data leakage in collaboration tools like Slack and Teams 2025-03-06 at 08:03 By Help Net Security In recent years, collaboration tools have become an absolute necessity for remote and hybrid work. This primarily increased during the COVID-19 pandemic due to the impossibility of communicating in person. So, tools like Slack, Microsoft Teams,
How to prevent data leakage in collaboration tools like Slack and Teams Read More »
The CISO’s bookshelf: 10 must-reads for security leaders 2025-03-06 at 07:56 By Help Net Security Discover essential reads for CISOs in this curated list of books covering cybersecurity leadership, risk management, zero trust, board communication, and more. Why CISOs Fail, 2nd Edition Author: Barak Engel Barak Engel expands on the ideas from his original 2017
The CISO’s bookshelf: 10 must-reads for security leaders Read More »
89% of enterprise AI usage is invisible to the organization 2025-03-06 at 07:04 By Help Net Security Organizations have zero visibility into 89% of AI usage, despite security policies according to a LayerX report. 71% of connections to GenAI tools are done using personal non-corporate accounts. Among logins using corporate accounts, 58% of connections are
89% of enterprise AI usage is invisible to the organization Read More »
The 5 stages of incident response grief 2025-03-05 at 18:03 By Help Net Security Whether we recognize it or not, anytime an incident occurs, it sets off the grieving process. But grief isn’t a bad thing: it’s how we process our emotional reactions and move on. That’s precisely what security teams need to do in
The 5 stages of incident response grief Read More »
Fix Inventory: Open-source cloud asset inventory tool 2025-03-05 at 08:04 By Help Net Security Fix Inventory is an open-source tool for detecting compliance and security risks in cloud infrastructure accounts. It was built from the ground up for cloud-native environments and provides broad support for over 300 cloud services, including AWS, Google Cloud Platform, Azure,
Fix Inventory: Open-source cloud asset inventory tool Read More »
Why multi-cloud security needs a fresh approach to stay resilient 2025-03-05 at 07:41 By Mirko Zorz As enterprises expand their multi-cloud strategies to drive agility and scalability, CISOs must prioritize cyber resilience across diverse cloud platforms. The complexities of securing multi-cloud environments demand innovative solutions to maintain a strong security posture. “Many organizations in regulated
Why multi-cloud security needs a fresh approach to stay resilient Read More »
Prioritizing data and identity security in 2025 2025-03-04 at 17:02 By Help Net Security To say that the cybersecurity landscape has grown more complex over the past several years would be a dramatic understatement. Attackers have more resources at their fingertips than ever, and data breaches have become almost a daily occurrence. For both businesses
Prioritizing data and identity security in 2025 Read More »
eBook: What does it take to be a full-fledged virtual CISO? 2025-03-04 at 16:00 By Help Net Security Virtual Chief Information Security Officer (vCISO) services are in high demand. Even though it is clear to all that this trend is growing, most service providers only offer a portion of overall CISO duties. Many ask themselves
eBook: What does it take to be a full-fledged virtual CISO? Read More »
Building cyber resilience in banking: Expert insights on strategy, risk, and regulation 2025-03-04 at 09:23 By Mirko Zorz In this Help Net Security interview, Matthew Darlage, CISO at Citizens, discusses key strategies for strengthening cyber resilience in banks. He underlines that adherence to frameworks like NIST is essential for continuous improvement and that data protection
Building cyber resilience in banking: Expert insights on strategy, risk, and regulation Read More »
CISO vs. CIO: Where security and IT leadership clash (and how to fix it) 2025-03-04 at 08:01 By Mirko Zorz The dynamic between CISOs and CIOs has always been complex. While both roles are essential to an organization’s success, their priorities often put them at odds. The CIO focuses on IT efficiency, innovation, and business
CISO vs. CIO: Where security and IT leadership clash (and how to fix it) Read More »
Cybersecurity jobs available right now: March 4, 2025 2025-03-04 at 07:36 By Anamarija Pogorelec Application Security Engineer Via | Israel | Hybrid – View job details As a Application Security Engineer, you will perform security assessments, including penetration testing, vulnerability scanning, and code reviews, to identify security weaknesses in applications. Define and implement application security
Cybersecurity jobs available right now: March 4, 2025 Read More »
Online crime-as-a-service skyrockets with 24,000 users selling attack tools 2025-03-03 at 19:01 By Help Net Security The growth of AI-based technology has introduced new challenges, making remote identity verification systems more vulnerable to attacks, according to iProov. Innovative and easily accessible tools have allowed threat actors to become more sophisticated overnight, powering an increasing number
Online crime-as-a-service skyrockets with 24,000 users selling attack tools Read More »
Commix: Open-source OS command injection exploitation tool 2025-03-03 at 08:08 By Help Net Security Commix is an open-source penetration testing tool designed to automate the detection and exploitation of command injection vulnerabilities, streamlining security assessments for researchers and ethical hackers. Commix features Easy to use: Commix simplifies the process of identifying and exploiting command injection
Commix: Open-source OS command injection exploitation tool Read More »
Review: The Chief AI Officer’s Handbook 2025-03-03 at 07:33 By Mirko Zorz The Chief AI Officer’s Handbook is a comprehensive resource for professionals navigating AI implementation and strategy. It is particularly valuable for Chief AI Officers (CAIOs), offering guidance on defining their role and executing AI-driven business strategies. About the author Jarrod Anderson, SYRV’s Chief
Review: The Chief AI Officer’s Handbook Read More »