News

Building a risk-based vulnerability management program that scales

cyber risk, cybersecurity, News, Risk Management, strategy, tips, Video, vulnerability management /

Building a risk-based vulnerability management program that scales 2026-05-29 at 08:01 By Help Net Security In this Help Net Security video, Shankar Somasundaram, CEO at Asimily, explains how to build a risk-based vulnerability program. He notes that vulnerabilities are exploding by an order of magnitude in the age of AI-driven attacks, with one customer finding […]

Building a risk-based vulnerability management program that scales Read More »

New infosec products of the month: May 2026

AppOmni, Apricorn, LastPass, News, Riverbed, Sysdig, Versa Networks, Viavi Solutions, XM Cyber /

New infosec products of the month: May 2026 2026-05-29 at 08:01 By Anamarija Pogorelec Here’s a look at the most interesting products from the past month, featuring releases from Alation, AppOmni, Apricorn, ASAPP, Babel Street, Checksum, Cogent, CTERA, Forward, LastPass, Operant AI, Riverbed, Sysdig, Trust3 AI, TrustCloud, VIAVI, Versa Networks, and XM Cyber. Operant AI

New infosec products of the month: May 2026 Read More »

OpenAI prepares ChatGPT for the election misinformation wave

AI, ChatGPT, deepfakes, disinformation, Fake News, News, OpenAI /

OpenAI prepares ChatGPT for the election misinformation wave 2026-05-28 at 17:54 By Sinisa Markovic AI-generated election misinformation could shape public opinion and influence the lives of millions of people. To address those risks, OpenAI outlined a series of safeguards ahead of the 2026 election cycle. The company said its efforts will focus on helping users

OpenAI prepares ChatGPT for the election misinformation wave Read More »

Cybercriminals sail away with data from 6 million Carnival customers

breach, cybercrime, data breach, News /

Cybercriminals sail away with data from 6 million Carnival customers 2026-05-28 at 17:04 By Sinisa Markovic Carnival Corporation, one of the world’s largest cruise operators, confirmed a data breach weeks after the ShinyHunters hacking group claimed it had stolen millions of customer records. Carnival acknowledged a phishing incident involving a single employee account and stated

Cybercriminals sail away with data from 6 million Carnival customers Read More »

LevelBlue Named Growth and Innovation Leader in Frost Radar™ for Managed Security Services in the Americas

Managed Security Services, News, Reports, Spotlights /

LevelBlue Named Growth and Innovation Leader in Frost Radar™ for Managed Security Services in the Americas 2026-05-28 at 16:59 By LevelBlue has been named the Growth and Innovation Leader in the Frost Radar: Managed Security Services in the Americas, 2026 report, a recognition that reflects our continued focus on helping organizations simplify cybersecurity operations, strengthen

LevelBlue Named Growth and Innovation Leader in Frost Radar™ for Managed Security Services in the Americas Read More »

Microsoft’s Copilot trust test: Zero findings, more models, wider oversight

AI, auditing, certification, Microsoft, Microsoft 365, News /

Microsoft’s Copilot trust test: Zero findings, more models, wider oversight 2026-05-28 at 16:53 By Anamarija Pogorelec Microsoft 365 Copilot and Copilot Chat (Copilot) have been recertified under ISO/IEC 42001:2023 by an independent auditor for the second consecutive year. Copilot first received ISO 42001 certification in March 2025. This year’s recertification recorded zero non-conformities and zero

Microsoft’s Copilot trust test: Zero findings, more models, wider oversight Read More »

Zapier exploit chain shows how known anti-patterns compose into critical risk

AWS, cybersecurity, Don't miss, News, research, Token Security, vulnerability /

Zapier exploit chain shows how known anti-patterns compose into critical risk 2026-05-28 at 16:00 By Mirko Zorz A five-stage exploit chain disclosed by Token Security researchers turned a free Zapier account into write access on Zapier’s public developer SDK packages and on internal packages that load in every authenticated zapier.com session. Each link in the

Zapier exploit chain shows how known anti-patterns compose into critical risk Read More »

A single typo could derail your World Cup plans

cybercrime, FBI, Flashpoint, Group-IB, News, scams /

A single typo could derail your World Cup plans 2026-05-28 at 12:42 By Sinisa Markovic Cybercriminals are spoofing Fédération Internationale de Football Association (FIFA) websites ahead of the 2026 FIFA World Cup, the FBI warns. The attackers are registering lookalike domains with small spelling changes or different domain endings to impersonate FIFA websites and services.

A single typo could derail your World Cup plans Read More »

Oil shipments, drone makers, and a poisoned code library targeted in recent APT campaigns

APT, China, cybercrime, ESET, Iran, News, North Korea, report, Russian Federation, Ukraine /

Oil shipments, drone makers, and a poisoned code library targeted in recent APT campaigns 2026-05-28 at 12:42 By Sinisa Markovic Geopolitical pressure drove much of the state-sponsored cyber activity recorded between October 2025 and March 2026, according to ESET’s latest APT Activity Report. Espionage groups aligned with China, North Korea, Russia, and Iran adjusted their

Oil shipments, drone makers, and a poisoned code library targeted in recent APT campaigns Read More »

The CISO selling confidence in a market full of breach headlines

AI, CISO, cyber risk, cybersecurity, Don't miss, enterprise, Features, Hot stuff, identity management, identity protection, News, Risk Management, security operations, skill development, SOC, Span, strategy, tips /

The CISO selling confidence in a market full of breach headlines 2026-05-28 at 10:16 By Mirko Zorz Engineering teams across enterprise IT are writing their own software with AI coding assistants, spinning up agents that act on their behalf, and assigning those agents the same access privileges their human creators hold. The shift has pulled

The CISO selling confidence in a market full of breach headlines Read More »

Frontier AI models collapse under multi-turn AI attacks, Cisco finds

AI, Amazon, Anthropic, Cisco, cybersecurity, Don't miss, Google, News, OpenAI, report, research /

Frontier AI models collapse under multi-turn AI attacks, Cisco finds 2026-05-28 at 10:16 By Mirko Zorz Attackers who probe large language models rarely give up after one refusal. They reframe, build context across turns, adopt personas, and escalate gradually. New research from Cisco’s AI threat intelligence team finds that the safety benchmarks used across the

Frontier AI models collapse under multi-turn AI attacks, Cisco finds Read More »

Police arrest suspect in Ajax football club hack that exposed 300,000 fan records

breach, cybercrime, data breach, EU, law enforcement, News /

Police arrest suspect in Ajax football club hack that exposed 300,000 fan records 2026-05-28 at 10:10 By Sinisa Markovic The Dutch National Police arrested a man suspected of hacking into the computer systems of AFC Ajax, a football club from Amsterdam. “On the morning of Tuesday, May 26, detectives arrested a 35-year-old man from the

Police arrest suspect in Ajax football club hack that exposed 300,000 fan records Read More »

AI chatbot recommendations lure users to cryptojacking malware sites

AI, cryptojacking, cybercrime, Microsoft, News /

AI chatbot recommendations lure users to cryptojacking malware sites 2026-05-27 at 22:27 By Sinisa Markovic Cybercriminals are using AI chatbot interactions alongside poisoned search results to direct users to malicious download sites in an active cryptojacking campaign, Microsoft has warned. The campaign impersonates legitimate software tools such as CrystalDiskInfo, HWMonitor, Display Driver Uninstaller (DDU), FurMark,

AI chatbot recommendations lure users to cryptojacking malware sites Read More »

Hackers are knocking on office doors pretending to be IT staff

cybercrime, FBI, law enforcement, News, social engineering, USA /

Hackers are knocking on office doors pretending to be IT staff 2026-05-27 at 18:09 By Sinisa Markovic The Silent Ransom Group (SRG) is targeting law firms using social engineering techniques and an unusual tactic for cybercriminals: showing up at victims’ offices in person while posing as IT staff, the FBI warns. The group, also known

Hackers are knocking on office doors pretending to be IT staff Read More »

Google AI Threat Defense targets attackers using AI to find flaws faster

agentic AI, AI, Google, Mandiant, News /

Google AI Threat Defense targets attackers using AI to find flaws faster 2026-05-27 at 17:23 By Anamarija Pogorelec Google Cloud introduced AI Threat Defense, an automated cybersecurity platform that combines several of the company’s security assets to find, prioritize, and patch software vulnerabilities at machine speed. The product is aimed at enterprises contending with attackers

Google AI Threat Defense targets attackers using AI to find flaws faster Read More »

Claude now reviews and fixes vulnerabilities as you write code

Anthropic, Claude Code, cybersecurity, News, software development, vulnerability management /

Claude now reviews and fixes vulnerabilities as you write code 2026-05-27 at 16:37 By Sinisa Markovic Anthropic introduced a security-guidance plugin for Claude Code that reviews code changes for common vulnerabilities and helps Claude identify and fix issues during the same development session. The company says the plugin is designed to catch issues such as

Claude now reviews and fixes vulnerabilities as you write code Read More »

Coinflow CISO on crypto payments security under AI pressure

APT, boardroom, CISO, communication, conferences, Crypto, cyber risk, cybercrime, cybersecurity, Don't miss, enterprise, Features, fraud, Hot stuff, News, opinion, Risk Management, Span, strategy, tips /

Coinflow CISO on crypto payments security under AI pressure 2026-05-27 at 09:24 By Mirko Zorz Crypto payment firms sit near the top of the target list for advanced persistent threat groups, and the workload on their security leaders keeps growing. Malcolm Portelli, CISO at Coinflow, runs the company’s security program from Malta. Coinflow is headquartered

Coinflow CISO on crypto payments security under AI pressure Read More »

Vigolium: Open-source vulnerability scanner

Don't miss, GitHub, News, open source, scanner, software, vulnerability assessment /

Vigolium: Open-source vulnerability scanner 2026-05-27 at 09:24 By Anamarija Pogorelec Vigolium, an open-source vulnerability scanner that combines deterministic scanning with AI-driven auditing, launched its initial open-source release this month. The project ships 235+ scanner modules and an in-process agent runtime called olium that handles autonomous endpoint discovery, attack planning, and finding triage. The tool exposes

Vigolium: Open-source vulnerability scanner Read More »

The alert economy is driving security analyst burnout

burnout, cybersecurity, News, opinion, security operations, strategy, tips, Video /

The alert economy is driving security analyst burnout 2026-05-27 at 09:24 By Help Net Security In this Help Net Security video, Ido Livneh, CEO of Jazz, explains why security analysts burn out and what leaders can do about it. The cause, he argues, is not long hours but meaningless work. Analysts spend their days closing

The alert economy is driving security analyst burnout Read More »

European AI adoption hits 99% with regulated data driving most policy violations

AI, ChatGPT, cybersecurity, enterprise, generative AI, Netskope, News, report /

European AI adoption hits 99% with regulated data driving most policy violations 2026-05-27 at 09:24 By Sinisa Markovic Generative AI tools operate inside nearly every European workplace, embedded in meeting transcription services, writing assistants, coding copilots, and search features. Workers in the region pull these tools into daily routines that involve customer records, financial information,

European AI adoption hits 99% with regulated data driving most policy violations Read More »

Scroll to Top