News

LevelBlue Resilience Retainer Named 2026 SC Media Awards Europe Finalist for Best Incident Response Solution

LevelBlue Resilience Retainer Named 2026 SC Media Awards Europe Finalist for Best Incident Response Solution 2026-04-07 at 20:32 By LevelBlue is proud to share that we’ve been shortlisted as a finalist for the2026 SC Media Awards Europe for our recently launchedResilience Retainer, recognized in the Best Incident Response Solution category. This article is an excerpt from […]

LevelBlue Resilience Retainer Named 2026 SC Media Awards Europe Finalist for Best Incident Response Solution Read More »

Cloudflare moves up its post-quantum deadline as researchers narrow the path to Q-Day

Cloudflare moves up its post-quantum deadline as researchers narrow the path to Q-Day 2026-04-07 at 20:31 By Mirko Zorz Cloudflare announced it is targeting 2029 to complete post-quantum security across its entire product suite, including post-quantum authentication. The company is following a revised roadmap that Google also adopted after announcing that it had improved the

Cloudflare moves up its post-quantum deadline as researchers narrow the path to Q-Day Read More »

Russian hackers hijack internet traffic using vulnerable routers

Russian hackers hijack internet traffic using vulnerable routers 2026-04-07 at 19:18 By Sinisa Markovic The Russian state cyber group APT28 has been compromising routers to hijack web traffic and spy on victims, the UK’s The National Cyber Security Centre (NCSC) has warned. Attackers are exploiting vulnerable routers to alter DHCP and DNS settings, redirecting traffic

Russian hackers hijack internet traffic using vulnerable routers Read More »

AI-enabled device code phishing campaign exploits OAuth flow for account takeover

AI-enabled device code phishing campaign exploits OAuth flow for account takeover 2026-04-07 at 14:59 By Anamarija Pogorelec A phishing campaign that bypasses the standard 15-minute expiration window through automation and dynamic code generation, leveraging the OAuth Device Code Authentication flow to compromise organizational accounts at scale, has been observed by the Microsoft Defender Security Research

AI-enabled device code phishing campaign exploits OAuth flow for account takeover Read More »

GitHub Copilot CLI gets a second-opinion feature built on cross-model review

GitHub Copilot CLI gets a second-opinion feature built on cross-model review 2026-04-07 at 12:56 By Anamarija Pogorelec Coding agents make decisions in sequence: a plan is drafted, implemented, then tested. Any error introduced early compounds as subsequent steps build on the same flawed assumption. Self-reflection is a recognized mitigation technique, and one GitHub Copilot already

GitHub Copilot CLI gets a second-opinion feature built on cross-model review Read More »

Comp AI: The open-source way to get compliant with SOC 2, ISO 27001, HIPAA and GDPR

Comp AI: The open-source way to get compliant with SOC 2, ISO 27001, HIPAA and GDPR 2026-04-07 at 12:01 By Anamarija Pogorelec Getting a startup through a SOC 2 audit has long meant months of manual evidence collection, policy writing, and repeated back-and-forth with auditors. A growing number of compliance platforms have moved to automate

Comp AI: The open-source way to get compliant with SOC 2, ISO 27001, HIPAA and GDPR Read More »

OpenAI opens applications for an external AI safety research fellowship

OpenAI opens applications for an external AI safety research fellowship 2026-04-07 at 12:01 By Sinisa Markovic OpenAI is accepting applications for a paid fellowship program that will fund external researchers to work on safety and alignment questions related to advanced AI systems. The program, called the OpenAI Safety Fellowship, runs from September 14, 2026 through

OpenAI opens applications for an external AI safety research fellowship Read More »

The case for fixing CWE weakness patterns instead of patching one bug at a time

The case for fixing CWE weakness patterns instead of patching one bug at a time 2026-04-07 at 09:24 By Mirko Zorz In this Help Net Security interview, Alec Summers, MITRE CVE/CWE Project Lead, discusses how CWE is moving from a background reference into active use in vulnerability disclosure. More CVE records now include CWE mappings

The case for fixing CWE weakness patterns instead of patching one bug at a time Read More »

How Mimecast brings enterprise-grade email protection to API deployment

How Mimecast brings enterprise-grade email protection to API deployment 2026-04-07 at 09:24 By Help Net Security In this Help Net Security video, Andrew Williams, Senior Product Manager at Mimecast, walks through the company’s API-based email security protection for Microsoft 365 and Google Workspace environments. The video covers a core problem: AI-generated phishing and business email

How Mimecast brings enterprise-grade email protection to API deployment Read More »

Google study finds LLMs are embedded at every stage of abuse detection

Google study finds LLMs are embedded at every stage of abuse detection 2026-04-07 at 09:24 By Anamarija Pogorelec Online platforms are running large language models at every stage of LLM content moderation, from generating training data to auditing their own systems for bias. Researchers at Google mapped how this is happening across what the authors

Google study finds LLMs are embedded at every stage of abuse detection Read More »

Product showcase: Proton Authenticator is an end-to-end encrypted, open source 2FA app

Product showcase: Proton Authenticator is an end-to-end encrypted, open source 2FA app 2026-04-06 at 09:16 By Anamarija Pogorelec Proton Authenticator is a free and open-source two-factor authentication (2FA) app that generates time-based one-time passwords (TOTP) to help secure online accounts. It is available on Windows, macOS, Linux, iOS, and Android, allowing users to access their

Product showcase: Proton Authenticator is an end-to-end encrypted, open source 2FA app Read More »

Residential proxies make a mockery of IP-based defenses

Residential proxies make a mockery of IP-based defenses 2026-04-06 at 09:16 By Sinisa Markovic Attack traffic moved through ordinary home and mobile connections in ways that limited the usefulness of IP reputation on its own. GreyNoise observed 4 billion malicious sessions during a 90-day period and described activity that appeared indistinguishable from normal user traffic

Residential proxies make a mockery of IP-based defenses Read More »

IT talent looks the other way as wireless security incidents pile up

IT talent looks the other way as wireless security incidents pile up 2026-04-06 at 09:16 By Sinisa Markovic Enterprise wireless networks are supporting a growing mix of devices and applications, increasing operational demand and security exposure. The 2026 Cisco State of Wireless report reflects these conditions through rising incident rates, higher costs, and ongoing staffing

IT talent looks the other way as wireless security incidents pile up Read More »

CISOs grapple with AI demands within flat budgets

CISOs grapple with AI demands within flat budgets 2026-04-06 at 09:16 By Anamarija Pogorelec Security spending continues to edge upward across large organizations, though the changes remain gradual and tightly managed. The 2026 RH-ISAC CISO Benchmark reflects a steady environment where budgets expand in small steps, even as AI becomes a routine part of security

CISOs grapple with AI demands within flat budgets Read More »

Week in review: Axios npm supply chain compromise, critical FortiClient EMS bugs exploited

Week in review: Axios npm supply chain compromise, critical FortiClient EMS bugs exploited 2026-04-05 at 11:17 By Help Net Security Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Financial groups lay out a plan to fight AI identity attacks Generative AI tools have brought the cost of deepfake

Week in review: Axios npm supply chain compromise, critical FortiClient EMS bugs exploited Read More »

FortiClient EMS zero-day exploited, emergency hotfixes available (CVE-2026-35616)

FortiClient EMS zero-day exploited, emergency hotfixes available (CVE-2026-35616) 2026-04-04 at 17:39 By Zeljka Zorz Defused Cyber has spotted a critical Fortinet FortiClient Endpoint Management Server (EMS) zero-day vulnerability (CVE-2026-35616) being exploited in the wild. This time around, the confirmation of active exploitation came almost immediately from Fortinet, as well. “Fortinet has observed [CVE-2026-35616] to be

FortiClient EMS zero-day exploited, emergency hotfixes available (CVE-2026-35616) Read More »

Major Supply Chain Compromise in the Popular axios npm Package

Major Supply Chain Compromise in the Popular axios npm Package 2026-04-03 at 17:52 By Karl Sigler On March 30, 2026, two malicious versions of the widely used axios HTTP client library were published to npm; [email protected] and [email protected]. The malicious versions inject a new dependency, [email protected], which, in turn, downloads a Remote Access Toolkit (RAT).

Major Supply Chain Compromise in the Popular axios npm Package Read More »

Cisco IMC auth bypass vulnerability allows attackers to alter user passwords (CVE-2026-20093)

Cisco IMC auth bypass vulnerability allows attackers to alter user passwords (CVE-2026-20093) 2026-04-03 at 17:52 By Zeljka Zorz Cisco has fixed ten vulnerabilities affecting its Integrated Management Controller (IMC), the most critical of which (CVE-2026-20093) could allow an unauthenticated, remote attacker to bypass authentication and gain access to the system as Admin. Cisco ICM riddled

Cisco IMC auth bypass vulnerability allows attackers to alter user passwords (CVE-2026-20093) Read More »

Windows Security app gets Secure Boot certificate status indicators as 2026 expiration approaches

Windows Security app gets Secure Boot certificate status indicators as 2026 expiration approaches 2026-04-03 at 14:57 By Anamarija Pogorelec Microsoft’s Secure Boot certificates, issued in 2011, are approaching expiration in 2026. To help IT administrators track whether devices have received replacement certificates, Microsoft has added new status indicators to the Windows Security app, under Device

Windows Security app gets Secure Boot certificate status indicators as 2026 expiration approaches Read More »

Claude Code source leak exploited to spread malware

Claude Code source leak exploited to spread malware 2026-04-03 at 14:30 By Sinisa Markovic A source code leak involving Anthropic’s Claude Code tool quickly escalated into a cybersecurity threat, as attackers seized on the exposed files to lure developers into downloading malware disguised as “unlocked” versions of the software. Leaked Claude Code source code used

Claude Code source leak exploited to spread malware Read More »

Scroll to Top