News

Most teams accept higher risk for faster AI database work

Most teams accept higher risk for faster AI database work 2026-06-29 at 07:00 By Anamarija Pogorelec Database professionals are using AI for everyday work like writing queries, building schemas, and reviewing code, and a growing share rely on autonomous tools that act on the database itself. The use of AI in database management has almost […]

Most teams accept higher risk for faster AI database work Read More »

Week in review: Fortibleed campaign’s impact on orgs, Cisco Unified CM flaw exploited

Week in review: Fortibleed campaign’s impact on orgs, Cisco Unified CM flaw exploited 2026-06-28 at 11:00 By Help Net Security Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Encrypted DNS still tells an eavesdropper where to look Encrypted DNS runs across much of the Internet. DNS over TLS,

Week in review: Fortibleed campaign’s impact on orgs, Cisco Unified CM flaw exploited Read More »

Critical open-source projects get a new security framework

Critical open-source projects get a new security framework 2026-06-26 at 14:41 By Anamarija Pogorelec Open source software projects are getting a new framework for handling security vulnerabilities as AI shortens the time between flaw discovery and exploitation. The Linux Foundation has launched Akrites, an industry initiative that brings together technology companies, financial institutions, security vendors,

Critical open-source projects get a new security framework Read More »

Synology issues critical fix for MailPlus Server vulnerabilities

Synology issues critical fix for MailPlus Server vulnerabilities 2026-06-26 at 13:57 By Zeljka Zorz Synology has has fixed critical vulnerabilities in MailPlus Server, a software package used to run private email infrastructure on Synology NAS devices. The security update fixes three flaws: CVE-2026-13136, stemming from faulty authorization checks, may allow remote attackers to read or

Synology issues critical fix for MailPlus Server vulnerabilities Read More »

Ransomware gangs find Europe’s weakest link in third-party suppliers

Ransomware gangs find Europe’s weakest link in third-party suppliers 2026-06-26 at 12:49 By Anamarija Pogorelec Ransomware attacks against European organizations increased during the first months of 2026, with third-party suppliers becoming a major entry point for attackers. Black Kite examined 2,066 ransomware incidents across 31 countries between January 2025 and April 2026 in its 2026

Ransomware gangs find Europe’s weakest link in third-party suppliers Read More »

Mirage2FA phishing kit uses HTML smuggling to steal Microsoft 365 credentials

Mirage2FA phishing kit uses HTML smuggling to steal Microsoft 365 credentials 2026-06-26 at 12:26 By Sinisa Markovic Mirage2FA, a phishing kit that combines short-lived HTML smuggling with obfuscated JavaScript loaders to deliver fake Microsoft 365 login pages and steal credentials during MFA prompts, has been identified by researchers at Fortra. Fortra based its analysis on

Mirage2FA phishing kit uses HTML smuggling to steal Microsoft 365 credentials Read More »

Mystery hackers use novel SharkLoader dropper against governments, software devs

Mystery hackers use novel SharkLoader dropper against governments, software devs 2026-06-26 at 12:13 By Zeljka Zorz Kaspersky researchers have uncovered a previously unknown cyberattack campaign that has compromised government organizations and software development companies in multiple countries. They first stumbled onto the campaign while investigating an attack on a diplomatic organization in Indonesia. What initially

Mystery hackers use novel SharkLoader dropper against governments, software devs Read More »

SIM-swapping gang busted in international police operation

SIM-swapping gang busted in international police operation 2026-06-26 at 10:59 By Sinisa Markovic Officers from Poland’s Central Bureau for Combating Cybercrime (CBZC) arrested four suspected members of an organized cybercrime group accused of SIM swap attacks, cryptocurrency theft, and money laundering. The operation involved agents from the U.S. Federal Bureau of Investigation (FBI) and Homeland

SIM-swapping gang busted in international police operation Read More »

Microsoft gives Windows 10 users an unexpected extra year of free security updates

Microsoft gives Windows 10 users an unexpected extra year of free security updates 2026-06-26 at 09:32 By Sinisa Markovic Microsoft has given Windows 10 users another year of free security updates, extending its consumer Extended Security Updates (ESU) program until October 12, 2027. “Windows 10 support has ended. You can enroll in ESU any time

Microsoft gives Windows 10 users an unexpected extra year of free security updates Read More »

A privacy-first take on local malware analysis

A privacy-first take on local malware analysis 2026-06-26 at 09:00 By Sinisa Markovic Submitting a suspicious file to VirusTotal or MalwareBazaar places a copy of that file on a platform other people can search. Analysts across the industry rely on these services to get a quick verdict on whether a binary is dangerous. The convenience

A privacy-first take on local malware analysis Read More »

Two CEOs on why security and AI readiness belong together

Two CEOs on why security and AI readiness belong together 2026-06-26 at 08:30 By Mirko Zorz SuperOps and Guardz are bundling PSA, RMM, MDM, and agentic SecOps into one offering for MSPs. In this Help Net Security Q&A, SuperOps CEO Arvind Parthiban and Guardz CEO Dor Eisner explain how a connected stack cuts the time

Two CEOs on why security and AI readiness belong together Read More »

Healthcare leaders see a fatal cyber incident as inevitable

Healthcare leaders see a fatal cyber incident as inevitable 2026-06-26 at 08:00 By Mirko Zorz Healthcare practices run on a chain of outside vendors. An EMR system holds clinical records, a billing platform processes claims, a telehealth tool supports remote visits, and a cloud provider stores data. Every one of those connections gives an outside

Healthcare leaders see a fatal cyber incident as inevitable Read More »

Modelplane: Open-source control plane for AI inference

Modelplane: Open-source control plane for AI inference 2026-06-26 at 07:30 By Anamarija Pogorelec Organizations that run open-weight models on hardware they own operate GPU fleets spread across clouds, neoclouds, and on-premise data centers. Each fleet handles model placement, replica scaling, infrastructure provisioning, weight distribution, and traffic routing. Teams have built this coordination layer by hand,

Modelplane: Open-source control plane for AI inference Read More »

New infosec products of the month: June 2026

New infosec products of the month: June 2026 2026-06-26 at 07:00 By Anamarija Pogorelec Here’s a look at the most interesting products from the past month, featuring releases from AISLE, Asimily, Blue Planet, depthfirst, Diligent, Drata, Elastic, Filigran, Flip, Hyland, IDnow, Legit Security, MazeBolt, Noma, Qodo, Ridge Security, Tigera, and WitnessAI. Asimily turns device risk

New infosec products of the month: June 2026 Read More »

Stealthy new backdoor surfaces in attacks on multiple sectors

Stealthy new backdoor surfaces in attacks on multiple sectors 2026-06-25 at 17:07 By Sinisa Markovic A relatively new backdoor called Mistic has been deployed in multiple attacks since April 2026 targeting organizations in the insurance, education, IT, and professional services sectors, according to Symantec. The malware appears to be associated with Woodgnat, also known as

Stealthy new backdoor surfaces in attacks on multiple sectors Read More »

Hacker gets 18 months for attack that compromised 60,000 betting accounts

Hacker gets 18 months for attack that compromised 60,000 betting accounts 2026-06-25 at 13:18 By Sinisa Markovic A 21-year-old man known online as “Snoopy” was sentenced to 18 months in prison for his role in a scheme that hacked user accounts on a fantasy sports and betting website and sold access to them, causing hundreds

Hacker gets 18 months for attack that compromised 60,000 betting accounts Read More »

The uptime questions every engineering leader should ask this week

The uptime questions every engineering leader should ask this week 2026-06-25 at 09:30 By Mirko Zorz In this interview with Help Net Security, Mattias Geniar, CTO at Oh Dear, explains why most outages start quietly, as creeping latency or a slow rise in errors. He argues teams alert on the wrong things: absolute numbers instead

The uptime questions every engineering leader should ask this week Read More »

LLM security advice looks solid until you check the hard cases

LLM security advice looks solid until you check the hard cases 2026-06-25 at 09:00 By Anamarija Pogorelec Plenty of people now type their security worries straight into a chatbot. A hacked account, a suspicious email, a stalker who might be tracking a phone, all of it lands in the same window someone would use to

LLM security advice looks solid until you check the hard cases Read More »

Best practices for AI in open-source work

Best practices for AI in open-source work 2026-06-25 at 08:00 By Anamarija Pogorelec Free and open source software developers us AI coding assistants such as Claude Code, Copilot CLI, Antigravity, and OpenCode in their daily work. The Software Freedom Conservancy responded to that trend with a set of recommendations for contributors who use these tools,

Best practices for AI in open-source work Read More »

Scroll to Top