News - Security Ticks

Motorola turns to GrapheneOS for smartphone security upgrade

Android, GrapheneOS, mobile security, Motorola Solutions, News / SecurityTicks

Motorola turns to GrapheneOS for smartphone security upgrade 2026-03-02 at 13:19 By Sinisa Markovic Motorola is strengthening smartphone security through a long-term partnership with the GrapheneOS Foundation, a mobile security nonprofit that develops a hardened operating system based on the Android Open Source Project. GrapheneOS includes protections designed to reduce entire classes of vulnerabilities, strengthen […]

Motorola turns to GrapheneOS for smartphone security upgrade Read More »

AI risk moves into the security budget spotlight

agentic AI, Artificial Intelligence, cybersecurity, News, report, Thales, threats / SecurityTicks

AI risk moves into the security budget spotlight 2026-03-02 at 09:08 By Anamarija Pogorelec Enterprises are pushing AI deeper into workflows that touch sensitive data across cloud platforms and SaaS apps. The 2026 Thales Data Threat Report, based on a survey of 3,120 respondents in 20 countries, places that shift alongside growing pressure on data

AI risk moves into the security budget spotlight Read More »

Your dependencies are 278 days out of date and your pipelines aren’t protected

CISO, cyber risk, cybersecurity, Datadog, DevSecOps, Don't miss, News, report, survey / SecurityTicks

Your dependencies are 278 days out of date and your pipelines aren’t protected 2026-03-02 at 09:00 By Mirko Zorz Applications continue to ship with known weaknesses even as development workflows speed up. A new Datadog State of DevSecOps 2026 report examines how dependency management and pipeline practices are influencing exposure across cloud native environments. Across

Your dependencies are 278 days out of date and your pipelines aren’t protected Read More »

Security debt is becoming a governance issue for CISOs

CISO, cyber risk, cybersecurity, Don't miss, News, report, Risk Management, Veracode / SecurityTicks

Security debt is becoming a governance issue for CISOs 2026-03-02 at 08:30 By Mirko Zorz Application security backlogs keep expanding across large development portfolios. Veracode’s 2026 State of Software Security Report puts numbers behind a familiar operational pattern, fixes lag discovery, and older weaknesses stay open across release cycles. 2026 findings against the 2025 baseline

Security debt is becoming a governance issue for CISOs Read More »

BlacksmithAI: Open-source AI-powered penetration testing framework

Artificial Intelligence, automation, Don't miss, framework, Hot stuff, News, open source, penetration testing, red team, software / SecurityTicks

BlacksmithAI: Open-source AI-powered penetration testing framework 2026-03-02 at 08:00 By Mirko Zorz BlacksmithAI is an open-source penetration testing framework that uses multiple AI agents to execute different stages of a security assessment lifecycle. A multi-agent structure for offensive workflows BlacksmithAI runs as a hierarchical system in which an orchestrator coordinates task execution across specialized agents.

BlacksmithAI: Open-source AI-powered penetration testing framework Read More »

When cyber threats start thinking for themselves

agentic AI, Artificial Intelligence, Don't miss, News, opinion, SimSpace, tips, Video / SecurityTicks

When cyber threats start thinking for themselves 2026-03-02 at 07:30 By Help Net Security In this Help Net Security video, Jason Rivera, Field CISO & Head of Solution Engineering at SimSpace, discusses how autonomous AI agents are changing cyber threats. Drawing on experience in the US Army, NSA, Deloitte, and CrowdStrike, he describes how security

When cyber threats start thinking for themselves Read More »

Week in review: Self-spreading npm malware hits developers, Cisco SD-WAN 0-day exploited since 2023

News, Week in review / SecurityTicks

Week in review: Self-spreading npm malware hits developers, Cisco SD-WAN 0-day exploited since 2023 2026-03-01 at 11:00 By Help Net Security Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Identity verification systems are struggling with synthetic fraud Fake and expired IDs keep showing up in routine customer transactions,

Week in review: Self-spreading npm malware hits developers, Cisco SD-WAN 0-day exploited since 2023 Read More »

IronCurtain: An open-source, safeguard layer for autonomous AI assistants

agentic AI, Artificial Intelligence, Don't miss, GitHub, Hot stuff, News, open source / SecurityTicks

IronCurtain: An open-source, safeguard layer for autonomous AI assistants 2026-02-28 at 07:07 By Zeljka Zorz Veteran security engineer Niels Provos is working on a new technical approach designed to stop autonomous AI agents from taking actions you haven’t specifically authorized. His open-source software solution, called IronCurtain, aims to neutralize the risk of an LLM-powered agent

IronCurtain: An open-source, safeguard layer for autonomous AI assistants Read More »

Meta tightens grip on scam advertisers

deepfakes, fraud, Meta, News, scams / SecurityTicks

Meta tightens grip on scam advertisers 2026-02-27 at 16:31 By Sinisa Markovic Meta is stepping up the fight against scams on its platforms by filing multiple lawsuits targeting companies and individuals in Brazil, China, and Vietnam who used deceptive tactics to run scam ads. The company said it has taken technical enforcement actions in these

Meta tightens grip on scam advertisers Read More »

Android 17 second beta expands privacy controls for contacts, SMS and local networks

Android, Google, News, operating system, update / SecurityTicks

Android 17 second beta expands privacy controls for contacts, SMS and local networks 2026-02-27 at 14:30 By Anamarija Pogorelec Google’s second beta of Android 17 continues updates to platform behavior and introduces new APIs focused on protecting sensitive data. Protecting contact and local network data A new system-level Contacts Picker gives apps temporary access only

Android 17 second beta expands privacy controls for contacts, SMS and local networks Read More »

Europol goes after The Com’s ransomware and extortion networks

arrest, cybercrime, EU, Europe, Europol, FBI, law enforcement, News / SecurityTicks

Europol goes after The Com’s ransomware and extortion networks 2026-02-27 at 14:30 By Anamarija Pogorelec Law enforcement agencies across 28 countries have spent the past year building cases against a loosely organized collective known as The Com, a decentralized network of mostly teenagers and young adults linked to high-profile ransomware attacks, financial extortion, and the

Europol goes after The Com’s ransomware and extortion networks Read More »

Microsoft taps ASUS and Dell for the Windows 365 Cloud PC strategy

Asus, Dell, hardware, Microsoft, News, Windows / SecurityTicks

Microsoft taps ASUS and Dell for the Windows 365 Cloud PC strategy 2026-02-27 at 13:34 By Sinisa Markovic Microsoft is adding two new Windows 365 Cloud PC devices, the ASUS NUC 16 for Windows 365 and the Dell Pro Desktop for Windows 365, expanding hardware options for its cloud-based desktop service. Both devices are scheduled

Microsoft taps ASUS and Dell for the Windows 365 Cloud PC strategy Read More »

NATO greenlights iPhone and iPad for classified information handling

apple, Government, iOS, mobile security, NATO, News, Privacy / SecurityTicks

NATO greenlights iPhone and iPad for classified information handling 2026-02-27 at 12:18 By Sinisa Markovic Apple confirmed that the iPhone and iPad have been approved for use with classified information in NATO restricted environments. The devices will no longer require special software or settings to handle NATO restricted-level information. “This achievement recognizes that Apple has

NATO greenlights iPhone and iPad for classified information handling Read More »

Ransomware activity peaks outside business hours

Artificial Intelligence, cybersecurity, generative AI, identity, News, phishing, report, Sophos / SecurityTicks

Ransomware activity peaks outside business hours 2026-02-27 at 12:18 By Anamarija Pogorelec Intrusions continue to center on credential access and timed execution outside standard business hours. The Sophos Active Adversary Report 2026 analyzes 661 incident response and managed detection and response cases handled between November 1, 2024 and October 31, 2025, spanning organizations in 70

Ransomware activity peaks outside business hours Read More »

Android app uses Bluetooth signals to detect nearby smart glasses

Android, Bluetooth, Bluetooth Low Energy, Google Play, hardware, Internet of Things, Meta, News, Privacy, smartphones, Snapchat, software / SecurityTicks

Android app uses Bluetooth signals to detect nearby smart glasses 2026-02-27 at 10:17 By Anamarija Pogorelec Smart glasses with built-in cameras are showing up in more public spaces, and a growing number of people want a way to know when one is nearby. An Android app called Nearby Glasses, developed by Yves Jeanrenaud, attempts to

Android app uses Bluetooth signals to detect nearby smart glasses Read More »

New infosec products of the month: February 2026

Aikido Security, Armis, Avast, Black Duck, Compliance Scorecard, cybersecurity, Fingerprint, Gremlin, Impart Security, News, Portnox, Redpanda, Socure, SpecterOps, Veza, Virtana / SecurityTicks

New infosec products of the month: February 2026 2026-02-27 at 08:18 By Anamarija Pogorelec Here’s a look at the most interesting products from the past month, featuring releases from Aikido Security, Avast, Armis, Black Duck, Compliance Scorecard, Fingerprint, Gremlin, Impart Security, Portnox, Redpanda, Socure, SpecterOps, Veza, and Virtana. Gremlin launches Disaster Recovery Testing for zone,

New infosec products of the month: February 2026 Read More »

The CISO role keeps getting heavier

Artificial Intelligence, burnout, CISO, cybersecurity, News, report, resilience, Splunk / SecurityTicks

The CISO role keeps getting heavier 2026-02-27 at 08:00 By Anamarija Pogorelec Personal liability is becoming a routine part of the CISO job. In Splunk’s 2026 CISO Report, titled From Risk to Resilience in the AI Era, 78% of CISOs said they are concerned about their own liability for security incidents, up from 56% last

The CISO role keeps getting heavier Read More »

Industrial networks continue to leak onto the internet

automation, CISO, critical infrastructure, cybersecurity, Don't miss, enterprise, Hot stuff, News, Palo Alto Networks, report, Siemens / SecurityTicks

Industrial networks continue to leak onto the internet 2026-02-27 at 07:30 By Mirko Zorz Industrial operators continue to run remote access portals, building automation servers, and other operational technology services on public IP address ranges. Palo Alto Networks, Siemens, and Idaho National Laboratory describe the scope of that exposure in the Intelligence-Driven Active Defense Report

Industrial networks continue to leak onto the internet Read More »

AWS Security Hub Extended brings enterprise security under one roof

Artificial Intelligence, AWS, cloud security, cybersecurity, email security, News / SecurityTicks

AWS Security Hub Extended brings enterprise security under one roof 2026-02-26 at 23:18 By Anamarija Pogorelec AWS Security Hub Extended is a plan within Security Hub that simplifies how customers procure, deploy, and integrate a full-stack enterprise security solution across endpoint, identity, email, network, data, browser, cloud, AI, and security operations. The plan allows customers

AWS Security Hub Extended brings enterprise security under one roof Read More »

Telegram rises to top spot in job scam activity

cybercrime, fraud, News, Revolut, scams / SecurityTicks

Telegram rises to top spot in job scam activity 2026-02-26 at 19:37 By Sinisa Markovic Encrypted messaging platforms are becoming a primary channel for Authorised Push Payment (APP) fraud, with Telegram representing a growing share of reported cases, according to the Revolut report. APP scam origination by % social media platform (Source: Revolut) The platform

Telegram rises to top spot in job scam activity Read More »