News

5 free vulnerability scanners you should check out

Don't miss, Hot stuff, News, open source, scanning, software, vulnerability assessment /

5 free vulnerability scanners you should check out 26/09/2023 at 08:02 By Help Net Security Vulnerability scanners delve into systems to uncover security gaps. The primary mission? To fortify organizations against breaches and shield sensitive data from exposure. Beyond merely pinpointing weaknesses, vulnerability scanning is a proactive measure to anticipate potential attacker entry points. The […]

5 free vulnerability scanners you should check out Read More »

MITRE ATT&CK project leader on why the framework remains vital for cybersecurity pros

attacks, Cloud, cybersecurity, Don't miss, education, Features, framework, Government, honeypots, Hot stuff, Incident Response, MITRE, MITRE ATT&CK, network, News, opinion, professional, red team, social media, threats /

MITRE ATT&CK project leader on why the framework remains vital for cybersecurity pros 26/09/2023 at 07:32 By Mirko Zorz MITRE ATT&CK, a common language for cybersecurity professionals to communicate with each other and better understand real-world adversary behaviors, celebrates its 10th anniversary this fall. In this Help Net Security interview, project leader Adam Pennington discusses

MITRE ATT&CK project leader on why the framework remains vital for cybersecurity pros Read More »

IT workers see generative AI as a serious threat to their profession

Artificial Intelligence, automation, generative AI, Ivanti, News, professional, remote working, report, survey /

IT workers see generative AI as a serious threat to their profession 26/09/2023 at 06:01 By Help Net Security While many IT workers see the productivity benefits of AI, 56% believe it benefits employers more than employees, according to Ivanti. Additionally, 63% are concerned generative AI tools might take their job in the next five

IT workers see generative AI as a serious threat to their profession Read More »

National Student Clearinghouse MOVEit breach impacts nearly 900 schools

data breach, data theft, Don't miss, education, extortion, Hot stuff, News, Progress /

National Student Clearinghouse MOVEit breach impacts nearly 900 schools 25/09/2023 at 14:31 By Helga Labus US educational nonprofit organization National Student Clearinghouse (NSC) has revealed that the breach of its MOVEit server ended up affecting almost 900 colleges and universities, and resulted in the theft of personal information of their students. The National Student Clearinghouse

National Student Clearinghouse MOVEit breach impacts nearly 900 schools Read More »

BinDiff: Open-source comparison tool for binary files

Don't miss, GitHub, Google, News, software /

BinDiff: Open-source comparison tool for binary files 25/09/2023 at 13:01 By Help Net Security BinDiff is a binary file comparison tool to find differences and similarities in disassembled code quickly. It was made open source today. With BinDiff, you can identify and isolate fixes for vulnerabilities in vendor-supplied patches. You can also port symbols and

BinDiff: Open-source comparison tool for binary files Read More »

Hands-on threat simulations: empower cybersecurity teams to confidently combat threats

Artificial Intelligence, attacks, automation, cybersecurity, Don't miss, Expert analysis, Expert corner, Hot stuff, machine learning, Malware, News, opinion, Pluralsight, red team, skill development, software, threat detection, vulnerability /

Hands-on threat simulations: empower cybersecurity teams to confidently combat threats 25/09/2023 at 08:05 By Help Net Security Security processes are increasingly automated which has led some businesses to deprioritize developing their security teams’ defense skills. While antivirus and non-human generated threat detections efficiently identify vulnerabilities, they cannot detect every single threat. With the rising number

Hands-on threat simulations: empower cybersecurity teams to confidently combat threats Read More »

How global enterprises navigate the complex world of data privacy

Artificial Intelligence, blockchain, Compliance, cybersecurity, data, data analytics, data collection, Data Protection, Don't miss, Encryption, Features, framework, GDPR, Government, Hot stuff, law, machine learning, News, opinion, Oracle, Privacy, Privacy Policy, regulation, standards /

How global enterprises navigate the complex world of data privacy 25/09/2023 at 07:38 By Mirko Zorz In this Help Net Security interview, Evelyn de Souza, Head of Privacy Compliance, Oracle SaaS Cloud, talks about the constant efforts required to keep up with privacy laws in each country, and ensuring compliance across the entire organization. She

How global enterprises navigate the complex world of data privacy Read More »

Balancing cybersecurity with convenience and progress

certification, CompTIA, cybercriminals, cybersecurity, digital transformation, Don't miss, education, framework, generative AI, hacking, Malware, News, phishing, policy, Privacy, Ransomware, report, Risk Management, skill development, threats, training, zero trust /

Balancing cybersecurity with convenience and progress 25/09/2023 at 07:02 By Help Net Security Changing approaches to cybersecurity have led to slow but steady progress in defense and protection. Still, competing interests create a growing challenge for cybersecurity decision makers and practitioners, according to CompTIA. The state of cybersecurity Most business and technology professionals feel that

Balancing cybersecurity with convenience and progress Read More »

Current ransomware defenses efforts are not working

cookies, cybercrime, cybersecurity, data, Malware, MFA, News, passwords, phishing, Ransomware, report, social engineering, SpyCloud, survey /

Current ransomware defenses efforts are not working 25/09/2023 at 06:31 By Help Net Security Despite some positive developments, the impact of ransomware attacks remains high, according to SpyCloud. Infostealer infections preceded 22% of ransomware events for North American and European ransomware victim companies in 2023 – with common infostealers such as Raccoon, Vidar, and Redline

Current ransomware defenses efforts are not working Read More »

Despite rising insider risk costs, budgets are being wasted in the wrong places

attacks, cybersecurity, data breach, Dtex Systems, Gartner, News, Ponemon Institute, remediation, report, risk, Risk Management, social engineering, survey /

Despite rising insider risk costs, budgets are being wasted in the wrong places 25/09/2023 at 06:02 By Help Net Security The cost of an insider risk is the highest it’s ever been, as organizations spend more time than ever trying to contain insider incidents, according to DTEX Systems. The average annual cost of an insider

Despite rising insider risk costs, budgets are being wasted in the wrong places Read More »

Week in review: 18 free Microsoft Azure cybersecurity resources, K8 vulnerability allows RCE

News, Week in review /

Week in review: 18 free Microsoft Azure cybersecurity resources, K8 vulnerability allows RCE 24/09/2023 at 11:02 By Help Net Security Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: LLM Guard: Open-source toolkit for securing Large Language Models LLM Guard is a toolkit designed to fortify the security of

Week in review: 18 free Microsoft Azure cybersecurity resources, K8 vulnerability allows RCE Read More »

GitLab fixes critical vulnerability, patch now! (CVE-2023-5009)

DevOps, Don't miss, GitLab, Hot stuff, News, open source, security update, vulnerability /

GitLab fixes critical vulnerability, patch now! (CVE-2023-5009) 22/09/2023 at 13:31 By Helga Labus GitLab has fixed a critical vulnerability (CVE-2023-5009) in the Enterprise Edition (EE) and Community Edition (CE) of its widely used DevOps platform. They flaw may allow a threat actor to abuse scan execution policies to run pipelines as another user. About the

GitLab fixes critical vulnerability, patch now! (CVE-2023-5009) Read More »

Apple fixes 3 zero-day vulnerabilities exploited to compromise iPhones

0-day, apple, Don't miss, Hot stuff, iOS, iPad, Isosceles, macOS, News, security update, spyware /

Apple fixes 3 zero-day vulnerabilities exploited to compromise iPhones 22/09/2023 at 13:19 By Zeljka Zorz Apple has released updates for iOS and iPadOS, macOS, watchOS, and Safari to fix three zero-day vulnerabilities (CVE-2023-41992, CVE-2023-41991, CVE-2023-41993) exploited “against versions of iOS before iOS 16.7.” Bill Marczak of The Citizen Lab at The University of Toronto’s Munk

Apple fixes 3 zero-day vulnerabilities exploited to compromise iPhones Read More »

Why more security doesn’t mean more effective compliance

automation, Compliance, Don't miss, Email, Expert analysis, Expert corner, Hot stuff, MFA, monitoring, News, opinion, Panaseer, regulation, strategy, tips /

Why more security doesn’t mean more effective compliance 22/09/2023 at 08:31 By Help Net Security Financial institutions have always been a valuable target for cyberattacks. That’s partly why banking and financial institutions are heavily regulated and have more compliance requirements than those in most other industries. A slew of new rules have been put in

Why more security doesn’t mean more effective compliance Read More »

New infosec products of the week: September 22, 2023

1Password, Dig, Laiyer.ai, News, Viavi Solutions, Wing Security /

New infosec products of the week: September 22, 2023 22/09/2023 at 08:01 By Help Net Security Here’s a look at the most interesting products from the past week, featuring releases from 1Password, Dig Security, Laiyer.ai, Viavi Solutions, and Wing Security. 1Password introduces mobile support for passkeys 1Password customers can now create, manage, and sign in

New infosec products of the week: September 22, 2023 Read More »

Ransomware cyber insurance claims up by 27%

Coalition, cybercrime, cybersecurity, Insurance, News, Ransomware, report, survey /

Ransomware cyber insurance claims up by 27% 22/09/2023 at 07:31 By Help Net Security Overall cyber insurance claims frequency increased by 12% in the first half of 2023, according to Coalition. Increase in ransomware claims frequency Coalition found that both claims frequency and severity rose for businesses in early 2023 across all revenue bands. Companies

Ransomware cyber insurance claims up by 27% Read More »

Code alterations more prevalent in Android apps than iOS

Android, app, Application Security, Cryptocurrency, cybercrime, cybersecurity, Digital.ai, Don't miss, iOS, News, online gaming, Ransomware, report, survey /

Code alterations more prevalent in Android apps than iOS 22/09/2023 at 07:01 By Help Net Security 57% of all monitored apps are under attack, with gaming (63%) and FinServ (62%) apps facing the highest risk, according to Digital.ai. The study found no correlation between an app’s popularity and likelihood of being attacked but found Android

Code alterations more prevalent in Android apps than iOS Read More »

IT pros told to accept burnout as normal part of their job

burnout, cybersecurity, data breach, Devo Technology, IT pr, News, report, survey /

IT pros told to accept burnout as normal part of their job 22/09/2023 at 06:31 By Help Net Security The vast majority of IT security professionals admit stress has led them and peers to make errors that have caused data breaches, according to Devo Technology. Recent estimates put the shortage of cybersecurity professionals at 3.5

IT pros told to accept burnout as normal part of their job Read More »

SMEs overestimate their cybersecurity preparedness

attacks, cyber insurance, cybersecurity, data breach, Guardz, MSP, News, report, survey, training /

SMEs overestimate their cybersecurity preparedness 22/09/2023 at 06:02 By Help Net Security 57% of SMEs have fallen victim to at least one cybersecurity breach, among whom 31% reported that their business experienced a breach within the past 12 months alone, according to Guardz. The increasing number of evolving cyber threats poses a significant risk to

SMEs overestimate their cybersecurity preparedness Read More »

Signal takes a quantum leap with E2EE protocol upgrade

Don't miss, Encryption, Hot stuff, News, quantum computing, secure communications, Signal /

Signal takes a quantum leap with E2EE protocol upgrade 21/09/2023 at 16:01 By Helga Labus Signal has announced an upgrade to its end-to-end encryption (E2EE) protocol to protect users of its popular messaging app from encryption-breaking attacks through quantum computers. Getting ready for quantum computing “Quantum computing represents a new type of computational system which

Signal takes a quantum leap with E2EE protocol upgrade Read More »

Scroll to Top