News

Security teams are paying more attention to the energy cost of detection

Artificial Intelligence, CISO, cybersecurity, Don't miss, energy sector, machine learning, News, research, security operations /

Security teams are paying more attention to the energy cost of detection 2026-01-09 at 08:02 By Anamarija Pogorelec Security teams spend a lot of time explaining why detection systems need more compute. Cloud bills rise, models retrain more often, and new analytics pipelines get added to existing stacks. Those conversations usually stay focused on coverage […]

Security teams are paying more attention to the energy cost of detection Read More »

Wi-Fi evolution tightens focus on access control

access control, authentication, cybersecurity, network, News, predictions, standards, wireless, Wireless Broadband Alliance /

Wi-Fi evolution tightens focus on access control 2026-01-09 at 07:33 By Anamarija Pogorelec Wi-Fi networks are taking on heavier workloads, more devices, and higher expectations from users who assume constant access everywhere. A new Wireless Broadband Alliance industry study shows that this expansion is reshaping priorities around security, identity, and trust, alongside adoption of new

Wi-Fi evolution tightens focus on access control Read More »

Recently fixed HPE OneView flaw is being exploited (CVE-2025-37164)

CISA, data center, Don't miss, Hot stuff, HPE, Metasploit, News, Rapid7, security update, vulnerability /

Recently fixed HPE OneView flaw is being exploited (CVE-2025-37164) 2026-01-08 at 16:43 By Zeljka Zorz An unauthenticated remote code execution vulnerability (CVE-2025-37164) affecting certain versions of HPE OneView is being leveraged by attackers, CISA confirmed by adding the flaw to its Known Exploited Vulnerabilities catalog. The vulnerability’s inclusion in the catalog is unsurprising, as technical

Recently fixed HPE OneView flaw is being exploited (CVE-2025-37164) Read More »

PoC released for unauthenticated RCE in Trend Micro Apex Central (CVE-2025-69258)

Don't miss, Hot stuff, News, PoC, security update, Tenable, Trend Micro, vulnerability /

PoC released for unauthenticated RCE in Trend Micro Apex Central (CVE-2025-69258) 2026-01-08 at 14:08 By Zeljka Zorz Trend Micro has released a critical patch fixing several remotely exploitable vulnerabilities in Apex Central (on-premise), including a flaw (CVE-2025-69258) that may allow unauthenticated attackers to achieve code execution on affected installations. The three vulnerabilities were unearthed and

PoC released for unauthenticated RCE in Trend Micro Apex Central (CVE-2025-69258) Read More »

IPFire update brings new network and security features to firewall deployments

cybersecurity, firewall, News, open source, security update, software /

IPFire update brings new network and security features to firewall deployments 2026-01-08 at 10:57 By Anamarija Pogorelec Security and operations teams often work with firewall platforms that require frequent tuning or upgrades to meet evolving network demands. IPFire has released its 2.29 Core Update 199, aimed at network and protection teams that manage this open

IPFire update brings new network and security features to firewall deployments Read More »

Cybercriminals are scaling phishing attacks with ready-made kits

Barracuda Networks, credentials, cybercrime, cybercriminals, Don't miss, MFA, News, phishing /

Cybercriminals are scaling phishing attacks with ready-made kits 2026-01-08 at 09:10 By Anamarija Pogorelec Phishing-as-a-Service (PhaaS) kits lower the barrier to entry, enabling less-skilled attackers to run large-scale, targeted phishing campaigns that impersonate legitimate services and institutions, according to Barracuda Networks. Phishing kits grow more sophisticated and scalable Barracuda threat analysts found that in 2025

Cybercriminals are scaling phishing attacks with ready-made kits Read More »

StackRox: Open-source Kubernetes security platform

containers, cybersecurity, DevOps, DevSecOps, Don't miss, Kubernetes, News, open source, security operations, software, StackRox /

StackRox: Open-source Kubernetes security platform 2026-01-08 at 08:31 By Anamarija Pogorelec Security teams spend a lot of time stitching together checks across container images, running workloads, and deployment pipelines. The work often happens under time pressure, with engineers trying to keep clusters stable while meeting internal policy requirements. The StackRox open source project sits in

StackRox: Open-source Kubernetes security platform Read More »

What happens to insider risk when AI becomes a coworker

Artificial Intelligence, CXO, Don't miss, Insider Threat, Living Security, News, Video /

What happens to insider risk when AI becomes a coworker 2026-01-08 at 08:04 By Help Net Security In this Help Net Security video, Ashley Rose, CEO at Living Security, discusses how AI is changing insider risk. AI is now built into daily work across departments, which shifts how risk shows up and how security teams

What happens to insider risk when AI becomes a coworker Read More »

Passwords are where PCI DSS compliance often breaks down

Compliance, Don't miss, Hot stuff, News, password manager, Passwork, PCI DSS /

Passwords are where PCI DSS compliance often breaks down 2026-01-08 at 07:36 By Sinisa Markovic Most PCI DSS failures do not start with malware or a targeted attack. They start with everyday behavior. Reused passwords. Credentials stored in spreadsheets. Shared logins are passed around during busy periods. For CISOs, password hygiene remains one of the

Passwords are where PCI DSS compliance often breaks down Read More »

Voice cloning defenses are easier to undo than expected

deepfakes, Don't miss, identity verification, News, research, voice recognition /

Voice cloning defenses are easier to undo than expected 2026-01-08 at 07:01 By Sinisa Markovic Many voice protection tools promise to block cloning by adding hidden noise to speech. Researchers at a Texas university found that widely used voice protection methods can be stripped away, restoring speaker identity and allowing fake voices to pass automated

Voice cloning defenses are easier to undo than expected Read More »

UK announces grand plan to secure online public services

Don't miss, Government, Hot stuff, News, Orange Cyberdefense, Proofpoint, public sector, supply chain attacks, UK /

UK announces grand plan to secure online public services 2026-01-07 at 15:32 By Zeljka Zorz The UK has announced a new Government Cyber Action Plan aimed at making online public services more secure and resilient, and has allocated £210 million (approximately $283 million) to implement it. Setting up a Government Cyber Unit “Cyber attacks can

UK announces grand plan to secure online public services Read More »

Debian seeks volunteers to rebuild its data protection team

Data Protection, Debian, Linux, News /

Debian seeks volunteers to rebuild its data protection team 2026-01-07 at 13:46 By Anamarija Pogorelec The Debian Project is asking for volunteers to step in after its Data Protection Team became inactive. All three members of the team stepped down at the same time, leaving no dedicated group to handle privacy and data protection work.

Debian seeks volunteers to rebuild its data protection team Read More »

Fake Booking.com emails and BSODs used to infect hospitality staff

Don't miss, Europe, hospitality industry, Hot stuff, Malware, News, phishing, Remote Access Trojan, Securonix, social engineering /

Fake Booking.com emails and BSODs used to infect hospitality staff 2026-01-07 at 13:06 By Zeljka Zorz Suspected Russian attackers are targeting the hospitality sector with fake Booking.com emails and a fake “Blue Screen of Death” to deliver the DCRat malware. The malware delivery campaign starts with phishing emails that feature room charge details in euros,

Fake Booking.com emails and BSODs used to infect hospitality staff Read More »

Gen AI data violations more than double

Artificial Intelligence, cloud security, cybersecurity, Don't miss, generative AI, Netskope, News, report, risk assessment, security controls, survey /

Gen AI data violations more than double 2026-01-07 at 08:32 By Sinisa Markovic Security teams track activity that moves well beyond traditional SaaS platforms, with employees interacting daily with generative AI tools, personal cloud services, and automated systems that exchange data without direct human input. These patterns shape how sensitive information moves across corporate environments

Gen AI data violations more than double Read More »

What European security teams are struggling to operationalize

Artificial Intelligence, Compliance, cybersecurity, Don't miss, EU, Europe, Kiteworks, News, regulation, report, survey /

What European security teams are struggling to operationalize 2026-01-07 at 08:32 By Anamarija Pogorelec European security and compliance teams spend a lot of time talking about regulation. A new forecast report from Kiteworks suggests the harder problem sits elsewhere. According to the report, many European organizations have strong regulatory frameworks on paper, driven by GDPR

What European security teams are struggling to operationalize Read More »

Identity security planning for 2026 is shifting under pressure

cybersecurity, identity, ManageEngine, News, Non Human Identities, report, survey /

Identity security planning for 2026 is shifting under pressure 2026-01-07 at 08:32 By Anamarija Pogorelec Identity security planning is becoming more focused on scale, governance, and operational strain, according to the Identity Security Outlook 2026 report. The ManageEngine research draws on responses from 515 identity and security leaders in the United States and Canada and

Identity security planning for 2026 is shifting under pressure Read More »

When AI agents interact, risk can emerge without warning

agentic AI, Artificial Intelligence, Don't miss, News, research, strategy /

When AI agents interact, risk can emerge without warning 2026-01-07 at 08:30 By Sinisa Markovic System level risks can arise when AI agents interact over time, according to new research that examines how collective behavior forms inside multi agent systems. The study finds that feedback loops, shared signals, and coordination patterns can produce outcomes that

When AI agents interact, risk can emerge without warning Read More »

Turning plain language into firewall rules

cybersecurity, Don't miss, Features, FireMon, firewall, Hot stuff, how-to, LLMs, News, research, security operations, strategy, tips, Versa Networks /

Turning plain language into firewall rules 2026-01-06 at 09:00 By Sinisa Markovic Firewall rules often begin as a sentence in someone’s head. A team needs access to an application. A service needs to be blocked after hours. Translating those ideas into vendor specific firewall syntax usually involves detailed knowledge of zones, objects, ports, and rule

Turning plain language into firewall rules Read More »

Product showcase: Blokada for Android gives users control over network traffic

Android, Blokada, Don't miss, Google Play, mobile devices, network monitoring, News, Privacy, Product showcase, smartphones, tracking /

Product showcase: Blokada for Android gives users control over network traffic 2026-01-06 at 08:45 By Anamarija Pogorelec Blokada is a network privacy and ad-blocking application available on Android, iOS, Windows, macOS, and Linux. It is designed to reduce ads, block trackers, and limit unwanted network connections at the system level. Getting started Blokada’s interface is

Product showcase: Blokada for Android gives users control over network traffic Read More »

The roles and challenges in moving to quantum-safe cryptography

Don't miss, News, open source, quantum computing, research, strategy /

The roles and challenges in moving to quantum-safe cryptography 2026-01-06 at 08:45 By Anamarija Pogorelec A new research project examines how organizations, regulators, and technical experts coordinate the transition to quantum safe cryptography. The study draws on a structured workshop with public sector, private sector, and academic participants to document how governance, security, and innovation

The roles and challenges in moving to quantum-safe cryptography Read More »

Scroll to Top