News

Major tech companies invest $12.5 million in open source security

Major tech companies invest $12.5 million in open source security 2026-03-18 at 11:31 By Sinisa Markovic The Linux Foundation announced $12.5 million in grant funding backed by Anthropic, AWS, GitHub, Google, Google DeepMind, Microsoft, and OpenAI to strengthen open source security. The funding will be directed through the foundation’s Alpha-Omega Project and the Open Source […]

Major tech companies invest $12.5 million in open source security Read More »

ManageEngine expands Endpoint Central with EDR and secure access

ManageEngine expands Endpoint Central with EDR and secure access 2026-03-18 at 10:17 By Industry News ManageEngine has announced the expansion of its unified endpoint management and security (UEMS) platform, Endpoint Central, to include endpoint detection and response (EDR) and secure private access capabilities. The additions bolster Endpoint Central’s endpoint security capabilities by enabling AI-powered threat

ManageEngine expands Endpoint Central with EDR and secure access Read More »

Stop building security goals around controls

Stop building security goals around controls 2026-03-18 at 09:27 By Mirko Zorz In this Help Net Security interview, Devin Rudnicki, CISO at Fitch Group, argues that security strategy fails when it loses its connection to business outcomes. Rudnicki walks through how to align security goals with corporate priorities, why CISOs must present risk in terms

Stop building security goals around controls Read More »

Cybercriminals scale up, government sector hit hardest

Cybercriminals scale up, government sector hit hardest 2026-03-18 at 09:27 By Sinisa Markovic Government agencies faced the highest volume of cyberattack campaigns in 2025, according to new findings from HPE Threat Labs, which tracked 1,186 active campaigns over the course of the year. The data covers activity observed between January 1 and December 31, 2025,

Cybercriminals scale up, government sector hit hardest Read More »

Global fraud losses climb to $442 billion

Global fraud losses climb to $442 billion 2026-03-18 at 08:01 By Sinisa Markovic Online fraud is reaching more victims and generating larger losses, driven by digital tools and organized networks operating across borders. Global trends in financial fraud (Source: Interpol) In INTERPOL’s March 2026 Global Financial Fraud Threat Assessment, financial fraud sits among the top

Global fraud losses climb to $442 billion Read More »

EU sanctions Chinese company behind 65,000-device hack

EU sanctions Chinese company behind 65,000-device hack 2026-03-17 at 14:26 By Sinisa Markovic The EU Council has sanctioned companies from China and Iran, along with two individuals, over cyberattacks targeting its member states and partners. “Those listed are subject to an asset freeze, while EU citizens and companies are prohibited from providing them with funds

EU sanctions Chinese company behind 65,000-device hack Read More »

Millions of UK firms on alert after Companies House data exposure

Millions of UK firms on alert after Companies House data exposure 2026-03-17 at 12:21 By Sinisa Markovic Companies House, the UK’s official company registry, said its WebFiling service is back online after being shut down on Friday to fix a security issue that may have exposed the personal data of millions of firms. An investigation

Millions of UK firms on alert after Companies House data exposure Read More »

Microsoft zeroes in on AI-driven data risks in Fabric

Microsoft zeroes in on AI-driven data risks in Fabric 2026-03-17 at 12:21 By Anamarija Pogorelec New Microsoft Purview innovations for Microsoft Fabric help organizations secure data and accelerate AI adoption. The updates focus on identifying risks, preventing data oversharing, and strengthening governance and data quality across the data estate. Integration between Microsoft Purview and Microsoft

Microsoft zeroes in on AI-driven data risks in Fabric Read More »

Hidden instructions in README files can make AI agents leak data

Hidden instructions in README files can make AI agents leak data 2026-03-17 at 08:02 By Sinisa Markovic Developers rely on AI coding agents to set up projects, install dependencies, and run commands by following instructions in repository README files, which provide setup guidance for software projects. New research identifies a security risk when attackers hide

Hidden instructions in README files can make AI agents leak data Read More »

What to do in the first 24 hours of a breach

What to do in the first 24 hours of a breach 2026-03-17 at 07:59 By Help Net Security In this Help Net Security video, Arvind Parthasarathi, CEO of CYGNVS, walks through a 10-step process for handling a cybersecurity breach. The first five steps cover preparation: setting up an out-of-band communication platform, identifying internal stakeholders, selecting

What to do in the first 24 hours of a breach Read More »

Cybersecurity jobs available right now: March 17, 2026

Cybersecurity jobs available right now: March 17, 2026 2026-03-17 at 07:59 By Anamarija Pogorelec Application Security DevSecOps Specialist NTT DATA | Italy | On-site – View job details As an Application Security DevSecOps Specialist, you will integrate security into CI/CD pipelines using tools such as SAST, DAST, SCA, secret scanning, and container scanning to ensure

Cybersecurity jobs available right now: March 17, 2026 Read More »

Microsoft Edge 146 adds IP privacy and local network access controls

Microsoft Edge 146 adds IP privacy and local network access controls 2026-03-16 at 15:10 By Anamarija Pogorelec Microsoft Edge version 146 (Stable) became available on March 13, 2026, bringing updates to tracking protection, IP privacy, and enterprise network security policies. One change affects tracking prevention in InPrivate browsing. InPrivate windows use the same tracking prevention

Microsoft Edge 146 adds IP privacy and local network access controls Read More »

Hackers tried to breach Poland’s nuclear research centre

Hackers tried to breach Poland’s nuclear research centre 2026-03-16 at 15:10 By Sinisa Markovic Poland’s National Centre for Nuclear Research (NCBJ) thwarted a cyberattack targeting its IT infrastructure. The attempted intrusion was detected and blocked before attackers could compromise systems or disrupt operations. “No production, operational, or research processes were disrupted, and the MARIA reactor

Hackers tried to breach Poland’s nuclear research centre Read More »

Meta ditches end-to-end encrypted messaging on Instagram

Meta ditches end-to-end encrypted messaging on Instagram 2026-03-16 at 13:49 By Sinisa Markovic End-to-end encrypted messaging on Instagram will no longer be supported after May 8, 2026. Meta justified the move by saying the feature was rarely used, with only a small fraction of Instagram users enabling encryption. The company advised users seeking end-to-end encryption

Meta ditches end-to-end encrypted messaging on Instagram Read More »

45,000 malicious IP addresses taken down, 94 suspects arrested

45,000 malicious IP addresses taken down, 94 suspects arrested 2026-03-16 at 10:33 By Sinisa Markovic An international law enforcement operation has taken down more than 45,000 malicious IP addresses and servers linked to phishing, malware, and ransomware activity. The action was carried out as part of Operation Synergia III, an investigation that ran from July

45,000 malicious IP addresses taken down, 94 suspects arrested Read More »

Certificate lifespans are shrinking and most organizations aren’t ready

Certificate lifespans are shrinking and most organizations aren’t ready 2026-03-16 at 08:32 By Mirko Zorz The push for shorter TLS certificate lifespans has been building for years. It started with Google’s internal push toward 90-day certificates, which gained traction inside the industry before resistance from enterprise customers slowed things down. Then Apple proposed 47-day certificates,

Certificate lifespans are shrinking and most organizations aren’t ready Read More »

What smart factories keep getting wrong about cybersecurity

What smart factories keep getting wrong about cybersecurity 2026-03-16 at 08:24 By Mirko Zorz In this Help Net Security interview, Packsize CSO Troy Rydman breaks down the biggest vulnerabilities in smart factory environments today, from IoT devices and legacy systems to human error. He explains how unmanaged devices, from sensors to robotic components, often go

What smart factories keep getting wrong about cybersecurity Read More »

VulHunt: Open-source vulnerability detection framework

VulHunt: Open-source vulnerability detection framework 2026-03-16 at 07:40 By Anamarija Pogorelec Binarly has published VulHunt Community Edition, making the core scanning engine from Binarly’s commercial Transparency Platform available to independent researchers and practitioners. What VulHunt does VulHunt Community Edition is a framework for detecting vulnerabilities in compiled software. It operates against multiple binary representations simultaneously,

VulHunt: Open-source vulnerability detection framework Read More »

Fake scandal clips on Facebook bait victims into investment scams

Fake scandal clips on Facebook bait victims into investment scams 2026-03-16 at 07:40 By Sinisa Markovic Bitdefender researchers uncovered hundreds of scam campaigns promoted through Facebook ads that use fake news stories, celebrity impersonation, and redirect chains to funnel victims into investment fraud schemes. The activity ran through 310 malvertising campaigns distributed on Meta platforms

Fake scandal clips on Facebook bait victims into investment scams Read More »

Week in review: AiTM phishing kit used to hijack AWS accounts, year-long malware campaign targets HR

Week in review: AiTM phishing kit used to hijack AWS accounts, year-long malware campaign targets HR 2026-03-15 at 15:12 By Help Net Security Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Turning expertise into opportunity for women in cybersecurity Speaker diversity in cybersecurity has been a talking point

Week in review: AiTM phishing kit used to hijack AWS accounts, year-long malware campaign targets HR Read More »

Scroll to Top