LLM vulnerability patching skills remain limited 2025-12-11 at 08:47 By Sinisa Markovic Security teams are wondering whether LLMs can help speed up patching. A new study tests that idea and shows where the tools hold up and where they fall short. The researchers tested LLMs from OpenAI, Meta, DeepSeek, and Mistral to see how well […]
LLM vulnerability patching skills remain limited Read More »
Password habits are changing, and the data shows how far we’ve come 2025-12-11 at 08:13 By Help Net Security In this Help Net Security video, Andréanne Bergeron, Security Researcher at Flare, explains how changes in user habits, policy shifts, and new tools have shaped password security over nearly twenty years. She walks through research based
Password habits are changing, and the data shows how far we’ve come Read More »
Product showcase: Tuta – secure, encrypted, private email 2025-12-11 at 08:13 By Help Net Security Tuta, formerly known as Tutanota, is built for anyone who wants email that stays private. Instead of treating encryption like a bonus feature, the service encrypts almost everything by default. That means your messages are locked down from the moment
Product showcase: Tuta – secure, encrypted, private email Read More »
Teamwork is failing in slow motion and security feels it 2025-12-11 at 07:07 By Anamarija Pogorelec Security leaders often track threats in code, networks, and policies. But a quieter risk is taking shape in the everyday work of teams. Collaboration is getting harder even as AI use spreads across the enterprise. That tension creates openings
Teamwork is failing in slow motion and security feels it Read More »
Henkel CISO on the messy truth of monitoring factories built across decades 2025-12-10 at 09:08 By Mirko Zorz In this Help Net Security interview, Stefan Braun, CISO at Henkel, discusses how smart manufacturing environments introduce new cybersecurity risks. He explains where single points of failure hide, how attackers exploit legacy systems, and why monitoring must
Henkel CISO on the messy truth of monitoring factories built across decades Read More »
The hidden dynamics shaping who produces influential cybersecurity research 2025-12-10 at 08:52 By Mirko Zorz Cybersecurity leaders spend much of their time watching how threats and tools change. A new study asks a different question, how has the research community itself changed over the past two decades. Researchers from the University of Southampton examined two
The hidden dynamics shaping who produces influential cybersecurity research Read More »
UTMStack: Open-source unified threat management platform 2025-12-10 at 08:52 By Sinisa Markovic UTMStack is an open-source unified threat management platform that brings SIEM and XDR features into one system. The project focuses on real time correlation of log data, threat intelligence, and malware activity patterns gathered from different sources. The goal is to help organizations
UTMStack: Open-source unified threat management platform Read More »
LLMs are everywhere in your stack and every layer brings new risk 2025-12-10 at 07:52 By Mirko Zorz LLMs are moving deeper into enterprise products and workflows, and that shift is creating new pressure on security leaders. A new guide from DryRun Security outlines how these systems change long standing assumptions about data handling, application
LLMs are everywhere in your stack and every layer brings new risk Read More »
Building SOX compliance through smarter training and stronger password practices 2025-12-10 at 07:00 By Sinisa Markovic A SOX audit can reveal uncomfortable truths about how a company handles access to financial systems. Even organizations that invest in strong infrastructure often discover that everyday password habits weaken the controls they thought were solid. CISOs know that
Building SOX compliance through smarter training and stronger password practices Read More »
AI-driven threats are heading straight for the factory floor 2025-12-09 at 09:07 By Mirko Zorz In this Help Net Security interview, Natalia Oropeza, Chief Cybersecurity Officer at Siemens, discusses how industrial organizations are adapting to a shift in cyber risk driven by AI. She notes that in-house capability, especially for OT response and recovery, is
AI-driven threats are heading straight for the factory floor Read More »
AI agents break rules in unexpected ways 2025-12-09 at 08:31 By Mirko Zorz AI agents are starting to take on tasks that used to be handled by people. These systems plan steps, call tools, and carry out actions without a person approving every move. This shift is raising questions for security leaders. A new research
AI agents break rules in unexpected ways Read More »
New image signature can survive cropping, stop deepfakes from hijacking trust 2025-12-09 at 08:02 By Sinisa Markovic Deepfake images can distort public debate, fuel harassment, or shift a news cycle before anyone checks the source. A new study from researchers at the University of Pisa examines one specific part of this problem. They introduced a
New image signature can survive cropping, stop deepfakes from hijacking trust Read More »
The simple shift that turns threat intel from noise into real insight 2025-12-09 at 08:02 By Help Net Security In this Help Net Security video, Alankrit Chona, CTO at Simbian, explains how security teams can put threat intelligence to work in a way that supports detection, response, and hunting. Chona walks through why many teams
The simple shift that turns threat intel from noise into real insight Read More »
Cybersecurity jobs available right now: December 9, 2025 2025-12-09 at 07:06 By Anamarija Pogorelec Associate Analyst, Cyber Threat Intelligence Sony | USA | Remote – View job details As an Associate Analyst, Cyber Threat Intelligence, you will collect and analyze open-source threat data to identify signs of cyber threats. You will prepare analysis reports, threat
Cybersecurity jobs available right now: December 9, 2025 Read More »
Download: Evaluating Password Monitoring Vendors 2025-12-08 at 16:10 By Help Net Security Organizations using Active Directory must update their password policies to block and detect compromised passwords. However, comparing vendors in this area can be challenging. By asking the right questions, you can identify the right partner and avoid introducing new technical, security, and compliance
Download: Evaluating Password Monitoring Vendors Read More »
December 2025 Patch Tuesday forecast: And it’s a wrap 2025-12-08 at 09:56 By Help Net Security It’s hard to believe that we’re in December of 2025 already and the end of the year is fast approaching. Looking back on the year, there are two major items that really stand out in my mind. First, there
December 2025 Patch Tuesday forecast: And it’s a wrap Read More »
NVIDIA research shows how agentic AI fails under attack 2025-12-08 at 09:56 By Sinisa Markovic Enterprises are rushing to deploy agentic systems that plan, use tools, and make decisions with less human guidance than earlier AI models. This new class of systems also brings new kinds of risk that appear in the interactions between models,
NVIDIA research shows how agentic AI fails under attack Read More »
The Bastion: Open-source access control for complex infrastructure 2025-12-08 at 09:56 By Anamarija Pogorelec Operational teams know that access sprawl grows fast. Servers, virtual machines and network gear all need hands-on work and each new system adds more identities to manage. A bastion host tries to bring order to this problem. It acts as a
The Bastion: Open-source access control for complex infrastructure Read More »
How to tell if your password manager meets HIPAA expectations 2025-12-08 at 08:03 By Sinisa Markovic Most healthcare organizations focus on encryption, network monitoring, and phishing prevention, although one simple source of risk still slips through the cracks. Password management continues to open doors for attackers more often than leaders expect. Weak, reused, or shared
How to tell if your password manager meets HIPAA expectations Read More »
CISOs are spending big and still losing ground 2025-12-08 at 07:31 By Anamarija Pogorelec Security leaders are entering another budget cycle with more money to work with, but many still feel no safer. A new benchmark study from Wiz shows a widening gap between investment and impact. Budgets keep rising, cloud programs keep expanding, and
CISOs are spending big and still losing ground Read More »