News

AI-driven DevOps: Revolutionizing software engineering practices

Artificial Intelligence, Codium AI, Compliance, cybersecurity, DevOps, Don't miss, Features, Hot stuff, News, opinion, programming, skill development, software development /

AI-driven DevOps: Revolutionizing software engineering practices 2024-02-28 at 07:04 By Mirko Zorz In this Help Net Security interview, Itamar Friedman, CEO of Codium AI, discusses the integration of AI into DevOps practices and its impact on software development processes, particularly in automating code review, ensuring compliance, and improving efficiency. Despite the benefits, challenges in incorporating […]

AI-driven DevOps: Revolutionizing software engineering practices Read More »

How AI is reshaping the cybersecurity job landscape

Artificial Intelligence, CISO, cybersecurity, generative AI, ISC2, News, report, survey /

How AI is reshaping the cybersecurity job landscape 2024-02-28 at 06:32 By Help Net Security 88% of cybersecurity professionals believe that AI will significantly impact their jobs, now or in the near future, and 35% have already witnessed its effects, according to ISC2’s AI study, AI Cyber 2024. Impact of AI on cybersecurity professionals While

How AI is reshaping the cybersecurity job landscape Read More »

AI in cybersecurity presents a complex duality

Artificial Intelligence, Compliance, cybersecurity, GRC, Hyperproof, News, report, Risk Management, survey /

AI in cybersecurity presents a complex duality 2024-02-28 at 06:03 By Help Net Security Companies more than ever view GRC (Governance, Risk, and Compliance) as a holistic process and are taking steps toward getting a complete view of their risk environment and compliance obligations, according to Hyperproof. Centralized GRC strategy gains momentum Centralizing strategy, unifying

AI in cybersecurity presents a complex duality Read More »

White House: Use memory-safe programming languages to protect the nation

critical infrastructure, Don't miss, Government, Honeywell, Horizon3.ai, Hot stuff, News, programming, software development, Trail of Bits, USA /

White House: Use memory-safe programming languages to protect the nation 2024-02-27 at 16:31 By Zeljka Zorz The White House is asking the technical community to switch to using memory-safe programming languages – such as Rust, Python, Swift, C#, Java, and Go – to prevent memory corruption vulnerabilities from entering the digital ecosystem. According to a

White House: Use memory-safe programming languages to protect the nation Read More »

Meta plans to prevent disinformation and AI-generated content from influencing voters

Artificial Intelligence, disinformation, Don't miss, EU, Facebook, Hot stuff, Instagram, LLMs, Meta, News, social media, social networking, TikTok, Twitter, WhatsApp /

Meta plans to prevent disinformation and AI-generated content from influencing voters 2024-02-27 at 14:50 By Zeljka Zorz Meta, the company that owns some of the biggest social networks in use today, has explained how it means to tackle disinformation related to the upcoming EU Parliament elections, with a special emphasis on how it plans to

Meta plans to prevent disinformation and AI-generated content from influencing voters Read More »

APT29 revamps its techniques to breach cloud environments

APT, CISA, cloud security, cybercrime, Don't miss, FBI, Hot stuff, NCSC, News, NSA, threat /

APT29 revamps its techniques to breach cloud environments 2024-02-27 at 14:16 By Helga Labus Russian threat actors APT29 are changing their techniques and expanding their targets to access cloud environments, members of the Five Eyes intelligence alliance have warned. About APT29 APT29 (aka Midnight Blizzard, aka Cozy Bear) is a cyber espionage group believed to

APT29 revamps its techniques to breach cloud environments Read More »

NIST CSF 2.0 released, to help all organizations, not just those in critical infrastructure

Aspen Cybersecurity Group, CISO, Don't miss, framework, Government, Hot stuff, News, NIST, regulation, ReversingLabs, Risk Management /

NIST CSF 2.0 released, to help all organizations, not just those in critical infrastructure 2024-02-27 at 08:20 By Help Net Security The National Institute of Standards and Technology (NIST) has updated its widely utilized Cybersecurity Framework (CSF), a key document for mitigating cybersecurity risks. The latest version, 2.0, is tailored to cater to a broad

NIST CSF 2.0 released, to help all organizations, not just those in critical infrastructure Read More »

Using AI to reduce false positives in secrets scanners

API security, Artificial Intelligence, authentication, credentials, cybersecurity, Don't miss, Expert analysis, Expert corner, Features, Hot stuff, Legit Security, News, opinion, SSH /

Using AI to reduce false positives in secrets scanners 2024-02-27 at 08:02 By Help Net Security As development environments grow more complex, applications increasingly communicate with many external services. When a software development project communicates with an external service, it utilizes a token or “secret” for authentication. These tokens are the glue that keeps any

Using AI to reduce false positives in secrets scanners Read More »

Overcoming the pressures of cybersecurity startup leadership

CEO, cybersecurity, Don't miss, Dope Security, Features, Hot stuff, Innovation, News, opinion, security startup /

Overcoming the pressures of cybersecurity startup leadership 2024-02-27 at 07:32 By Mirko Zorz In this Help Net Security interview, Kunal Agarwal, CEO at Dope Security, offers a look into the CEO’s leadership philosophy, the process of building a high-caliber team, and the unique challenges of navigating a startup in the tech industry. Dope Security was

Overcoming the pressures of cybersecurity startup leadership Read More »

Enterprises’ progress in digital trust implementation is far from great

cybersecurity, DigiCert, digital transformation, News, report, survey /

Enterprises’ progress in digital trust implementation is far from great 2024-02-27 at 06:31 By Help Net Security A growing divide separates leaders with a firm grasp on digital trust from those at the bottom of the pool, according to DigiCert. While digital trust overwhelmingly remains a critical focus for all enterprises, the latest report from

Enterprises’ progress in digital trust implementation is far from great Read More »

Unmanaged third-party access threatens OT environments

cybersecurity, Cyolo, News, Ponemon Institute, report, survey, threats /

Unmanaged third-party access threatens OT environments 2024-02-27 at 06:01 By Help Net Security Many industrial organizations lack the resources, expertise, and collaborative processes to effectively mitigate threats and ensure secure access to operational technology (OT) systems, according to Cyolo. Ensuring secure access to OT environments is about more than just cybersecurity. These environments contain highly

Unmanaged third-party access threatens OT environments Read More »

Pikabot returns with new tricks up its sleeve

Don't miss, Elastic, Hot stuff, Malware, News, phishing, Zscaler /

Pikabot returns with new tricks up its sleeve 2024-02-26 at 15:32 By Helga Labus After a short hiatus, Pikabot is back, with significant updates to its capabilities and components and a new delivery campaign. About the Pikabot loader Pikabot is a loader – a type of malware whose primary function is to serve as a

Pikabot returns with new tricks up its sleeve Read More »

ScreenConnect flaws exploited to deliver all kinds of malware (CVE-2024-1709, CVE-2024-1708)

ConnectWise, Don't miss, enterprise, exploit, Hot stuff, Huntress, Malware, Mandiant, News, Ransomware, remote access, remote management, Sophos, vulnerability /

ScreenConnect flaws exploited to deliver all kinds of malware (CVE-2024-1709, CVE-2024-1708) 2024-02-26 at 13:36 By Zeljka Zorz The recently patched vulnerabilities (CVE-2024-1709, CVE-2024-1708) in ConnectWise ScreenConnect software are being exploited by numerous attackers to deliver a variety of malicious payloads. About ConnectWise ScreenConnect ConnectWise ScreenConnect is a remote desktop solution consisting of server and client

ScreenConnect flaws exploited to deliver all kinds of malware (CVE-2024-1709, CVE-2024-1708) Read More »

Web Check: Open-source intelligence for any website

cybersecurity, Don't miss, GitHub, Hot stuff, News, open source, OSINT, penetration testing, web analytics, web technologies /

Web Check: Open-source intelligence for any website 2024-02-26 at 08:02 By Mirko Zorz Web Check offers thorough open-source intelligence and enables users to understand a website’s infrastructure and security posture, equipping them with the knowledge to understand, optimize, and secure their online presence. Unlike similar services, Web Check is free. There’s no signup, tracking, logging,

Web Check: Open-source intelligence for any website Read More »

It’s time for security operations to ditch Excel

automation, Compliance, cybersecurity, Don't miss, Expert analysis, Expert corner, Hot stuff, News, opinion, Opus Security, security operations, threats /

It’s time for security operations to ditch Excel 2024-02-26 at 07:33 By Help Net Security Security teams are hiding an embarrassing secret from the outside world: despite their position at the vanguard of technology, security risks and threats, their actual war plans are managed on spreadsheets. This is a far cry from the dark rooms,

It’s time for security operations to ditch Excel Read More »

CVE count set to rise by 25% in 2024

Coalition, CVE, cybersecurity, exploit, News, patching, RDP, report, vulnerability management /

CVE count set to rise by 25% in 2024 2024-02-26 at 07:00 By Help Net Security The report from Coalition indicates an anticipated 25% rise in the total count of published common vulnerabilities and exposures (CVEs) for 2024, reaching 34,888 vulnerabilities, equivalent to approximately 2,900 per month. Sharp CVE increase heightens software vulnerability concerns Vulnerabilities

CVE count set to rise by 25% in 2024 Read More »

Cybersecurity crisis in schools

BYOD, cybersecurity, education, network, News, Privacy, report, threats, Trustwave /

Cybersecurity crisis in schools 2024-02-26 at 06:08 By Help Net Security Primary school systems handle sensitive data concerning minors, while higher education institutions must safeguard intellectual property data, making them prime targets for cyberattacks, according to Trustwave. These attacks not only threaten the safety and security of teachers and administrators but also put the privacy

Cybersecurity crisis in schools Read More »

Week in review: 10 cybersecurity startups to watch, admins urged to remove VMware vSphere plugin

News, Week in review /

Week in review: 10 cybersecurity startups to watch, admins urged to remove VMware vSphere plugin 2024-02-25 at 11:01 By Help Net Security Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Inside the strategy of Salesforce’s new Chief Trust Officer In this Help Net Security interview, Arkin discusses a

Week in review: 10 cybersecurity startups to watch, admins urged to remove VMware vSphere plugin Read More »

Avast ordered to pay $16.5 million for misuse of user data

Avast, consumer, data, FTC, Government, identity, law enforcement, News, online tracking, Privacy /

Avast ordered to pay $16.5 million for misuse of user data 2024-02-23 at 13:18 By Help Net Security The Federal Trade Commission will require software provider Avast to pay $16.5 million and prohibit the company from selling or licensing any web browsing data for advertising purposes to settle charges that the company and its subsidiaries

Avast ordered to pay $16.5 million for misuse of user data Read More »

Scroll to Top