AI might be the answer for better phishing resilience 2025-12-16 at 08:44 By Sinisa Markovic Phishing is still a go-to tactic for attackers, which is why even small gains in user training are worth noticing. A recent research project from the University of Bari looked at whether LLMs can produce training that helps people spot […]
AI might be the answer for better phishing resilience Read More »
Product showcase: GlassWire mobile firewall for Android 2025-12-16 at 08:10 By Anamarija Pogorelec GlassWire is a free network monitoring and security application for Windows and Android. It lets you see how your system communicates over the internet and local network. The Windows version also offers a Premium tier with advanced features, while the Android app
Product showcase: GlassWire mobile firewall for Android Read More »
Passwordless is finally happening, and users barely notice 2025-12-16 at 07:32 By Anamarija Pogorelec Security teams know the strain that comes from tightening authentication controls while keeping users productive. A new report from Okta suggests this strain is easing. Stronger authentication methods are gaining traction, and many of them let users move through sign in
Passwordless is finally happening, and users barely notice Read More »
Cybersecurity jobs available right now: December 16, 2025 2025-12-16 at 07:03 By Anamarija Pogorelec Cybersecurity Senior Manager Grant Thornton | USA | On-site – View job details As a Cybersecurity Senior Manager, you will lead and perform cybersecurity assessments, including capability, threat and risk, architecture, compliance, and configuration reviews. You will oversee technical security testing
Cybersecurity jobs available right now: December 16, 2025 Read More »
What Cloudflare’s 2025 internet review says about attacks, outages, and traffic shifts 2025-12-15 at 18:02 By Anamarija Pogorelec The internet stayed busy, brittle, and under constant pressure in 2025. Cloudflare’s annual Radar Year in Review offers a wide view of how traffic moved, where attacks clustered, and what failed when systems were stressed. Cloudflare, which
What Cloudflare’s 2025 internet review says about attacks, outages, and traffic shifts Read More »
Threat Intelligence News from LevelBlue SpiderLabs December 2025 2025-12-15 at 13:48 By LevelBlue SpiderLabs is the threat intelligence unit of LevelBlue and includes a global team of threat researchers and data scientists who, combined with proprietary technology in data analytics and machine learning (ML), analyze one of the largest and most diverse collections of threat
Threat Intelligence News from LevelBlue SpiderLabs December 2025 Read More »
Kali Linux 2025.4: New tools and “quality-of-life” improvements 2025-12-15 at 13:48 By Zeljka Zorz OffSec has released Kali Linux 2025.4, a new version of its widely used penetration testing and digital forensics platform. Most of the changes are related to appearance and usability: Kali’s GNOME desktop environment now organizes Kali tools into folders via the
Kali Linux 2025.4: New tools and “quality-of-life” improvements Read More »
Update your Apple devices to fix actively exploited vulnerabilities! (CVE-2025-14174, CVE-2025-43529) 2025-12-15 at 12:58 By Zeljka Zorz Apple has issued security updates with fixes for two WebKit vulnerabilities (CVE-2025-14174, CVE-2025-43529) that have been exploited as zero-days. Several days before the release of these updates, Google fixed CVE-2025-14174 in the desktop version of Chrome, though at
How researchers are teaching AI agents to ask for permission the right way 2025-12-15 at 09:06 By Mirko Zorz People are starting to hand more decisions to AI agents, from booking trips to sorting digital files. The idea sounds simple. Tell the agent what you want, then let it work through the steps. The hard
How researchers are teaching AI agents to ask for permission the right way Read More »
Prometheus: Open-source metrics and monitoring systems and services 2025-12-15 at 08:43 By Anamarija Pogorelec Prometheus is an open-source monitoring and alerting system built for environments where services change often and failures can spread fast. For security teams and DevOps engineers, it has become a common way to track system behavior, spot early warning signs, and
Prometheus: Open-source metrics and monitoring systems and services Read More »
Europe’s DMA raises new security worries for mobile ecosystems 2025-12-15 at 08:43 By Anamarija Pogorelec Mobile security has long depended on tight control over how apps and services interact with a device. A new paper from the Center for Cybersecurity Policy and Law warns that this control may weaken as the European Union’s Digital Markets
Europe’s DMA raises new security worries for mobile ecosystems Read More »
What types of compliance should your password manager support? 2025-12-15 at 07:49 By Sinisa Markovic Lost credentials and weak authentication controls still sit at the center of many security incidents. IT leaders and CISOs know this problem well. They also know that regulators watch how organizations protect passwords, track access, and document security decisions. That
What types of compliance should your password manager support? Read More »
Manufacturing is becoming a test bed for ransomware shifts 2025-12-15 at 07:12 By Anamarija Pogorelec Manufacturing leaders may feel that ransomware risk has settled, but new data shows the threat is shifting in ways that require attention, according to a Sophos report. A global survey of 332 IT and security leaders outlines how attackers are
Manufacturing is becoming a test bed for ransomware shifts Read More »
Week in review: 40 open-source tools securing the stack, invisible IT to be the next workplace priority 2025-12-14 at 11:04 By Help Net Security Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: 40 open-source tools redefining how security teams secure the stack Open source security software has become
What 35 years of privacy law say about the state of data protection 2025-12-12 at 09:52 By Anamarija Pogorelec Privacy laws have expanded around the world, and security leaders now work within a crowded field of requirements. New research shows that these laws provide stronger rights and duties, but the protections do not always translate
What 35 years of privacy law say about the state of data protection Read More »
LLM privacy policies keep getting longer, denser, and nearly impossible to decode 2025-12-12 at 08:30 By Sinisa Markovic People expect privacy policies to explain what happens to their data. What users get instead is a growing wall of text that feels harder to read each year. In a new study, researchers reviewed privacy policies for
LLM privacy policies keep getting longer, denser, and nearly impossible to decode Read More »
Ransomware keeps widening its reach 2025-12-12 at 08:21 By Anamarija Pogorelec Ransomware keeps shifting into new territory, pulling in victims from sectors and regions that once saw fewer attacks. The latest Global Threat Briefing for H2 2025 from CyberCube shows incidents spreading in ways that make it harder for security leaders to predict where threats
Ransomware keeps widening its reach Read More »
Uneven regulatory demands expose gaps in mobile security 2025-12-12 at 07:36 By Anamarija Pogorelec Mobile networks carry a great deal of the world’s digital activity, which makes operators a frequent target for attacks. A study released by the GSMA shows that operators spend between $15 and $19 billion a year on core cybersecurity functions. Spending
Uneven regulatory demands expose gaps in mobile security Read More »
New infosec products of the week: December 12, 2025 2025-12-12 at 07:06 By Anamarija Pogorelec Here’s a look at the most interesting products from the past week, featuring releases from Apptega, Backslash Security, BigID, Black Kite, Bugcrowd, NinjaOne, Nudge Security, and Veza. Apptega Policy Manager streamlines policy creation and compliance oversight Apptega revealed its Policy
New infosec products of the week: December 12, 2025 Read More »
40 open-source tools redefining how security teams secure the stack 2025-12-11 at 09:07 By Anamarija Pogorelec Open source security software has become a key way for teams to get flexibility, transparency, and capability without licensing costs. The free tools in this roundup address problems security teams deal with, from managing large environments to catching misconfigurations
40 open-source tools redefining how security teams secure the stack Read More »