News

New hires, new targets: Why attackers love your onboarding process

CXO, cybersecurity, Keepnet Labs, News, strategy, tips, Video /

New hires, new targets: Why attackers love your onboarding process 2025-07-04 at 09:02 By Help Net Security In this Help Net Security video, Ozan Ucar, CEO of Keepnet Labs, highlights a critical cybersecurity blind spot: the vulnerability of new hires during onboarding. He explains how attackers now use AI-powered, multi-channel phishing tactics to target fresh […]

New hires, new targets: Why attackers love your onboarding process Read More »

Africa’s cybersecurity crisis and the push to mobilizing communities to safeguard a digital future

cybersecurity, Don't miss, Expert analysis, Expert corner, Hot stuff, NetFella, News, opinion, professional, skill development, training /

Africa’s cybersecurity crisis and the push to mobilizing communities to safeguard a digital future 2025-07-04 at 08:38 By Help Net Security While Africa hosts some of the fastest-growing digital economies globally, it also faces persistent challenges in cybersecurity preparedness. Many organizations and individuals remain unaware of the risks they face online. Phishing schemes and social

Africa’s cybersecurity crisis and the push to mobilizing communities to safeguard a digital future Read More »

Exposed and unaware? Smart buildings need smarter risk controls

automation, Claroty, digital transformation, News, remediation, report, risk, Risk Management, smart building, vulnerability management /

Exposed and unaware? Smart buildings need smarter risk controls 2025-07-04 at 08:01 By Help Net Security 75% of organizations have building management systems (BMS) affected by known exploited vulnerabilities (KEVs), according to Claroty. The post Exposed and unaware? Smart buildings need smarter risk controls appeared first on Help Net Security. This article is an excerpt

Exposed and unaware? Smart buildings need smarter risk controls Read More »

Internet outages are costing companies millions every month

Artificial Intelligence, Catchpoint, cybersecurity, monitoring, News, report, resilience /

Internet outages are costing companies millions every month 2025-07-04 at 07:32 By Help Net Security To ensure resilience across the internet stack, organizations need to protect and manage four key areas: reachability, availability, reliability, and performance, according to Catchpoint. The negative economic impact of incidents 51% report monthly losses of over $1 million due to

Internet outages are costing companies millions every month Read More »

New infosec products of the week: July 4, 2025

DigitalOcean, News, Scamnetic, StealthCores, Tracer AI /

New infosec products of the week: July 4, 2025 2025-07-04 at 07:03 By Sinisa Markovic Here’s a look at the most interesting products from the past week, featuring releases from DigitalOcean, Scamnetic, StealthCores, and Tracer AI. Scamnetic KnowScam 2.0 helps consumers detect every type of scam KnowScam 2.0 now comes with major upgrades, including an

New infosec products of the week: July 4, 2025 Read More »

Google open-sources privacy tech for age verification

cybersecurity, Don't miss, GitHub, Google, identity verification, News, open source, Privacy /

Google open-sources privacy tech for age verification 2025-07-03 at 18:47 By Sinisa Markovic Age verification is becoming more common across websites and online services. But many current methods require users to share personal data, like a full ID or birthdate, which raises privacy and security concerns. In response, Google has open-sourced a cryptographic solution that

Google open-sources privacy tech for age verification Read More »

You can’t trust AI chatbots not to serve you phishing pages, malicious downloads, or bad code

Artificial Intelligence, cyber risk, Don't miss, Hot stuff, LLMs, Malware, Netcraft, News, phishing /

You can’t trust AI chatbots not to serve you phishing pages, malicious downloads, or bad code 2025-07-03 at 16:03 By Zeljka Zorz Popular AI chatbots powered by large language models (LLMs) often fail to provide accurate information on any topic, but researchers expect threat actors to ramp up their efforts to get them to spew

You can’t trust AI chatbots not to serve you phishing pages, malicious downloads, or bad code Read More »

Cisco fixes maximum-severity flaw in enterprise unified comms platform (CVE-2025-20309)

Cisco, communication, Don't miss, enterprise, Hot stuff, News, SMBs, vulnerability /

Cisco fixes maximum-severity flaw in enterprise unified comms platform (CVE-2025-20309) 2025-07-03 at 14:19 By Zeljka Zorz Cisco has found a backdoor account in yet another of its software solutions: CVE-2025-20309, stemming from default credentials for the root account, could allow unauthenticated remote attackers to log into a vulnerable Cisco Unified Communications Manager (Unified CM) and

Cisco fixes maximum-severity flaw in enterprise unified comms platform (CVE-2025-20309) Read More »

GitPhish: Open-source GitHub device code flow security assessment tool

Don't miss, GitHub, News, open source, Praetorian, red team, software /

GitPhish: Open-source GitHub device code flow security assessment tool 2025-07-03 at 09:30 By Help Net Security GitPhish is an open-source security research tool built to replicate GitHub’s device code authentication flow. It features three core operating modes: an authentication server, automated landing page deployment, and an administrative management interface. GitPhish can be accessed via a

GitPhish: Open-source GitHub device code flow security assessment tool Read More »

Healthcare CISOs must secure more than what’s regulated

automation, CISO, cybersecurity, DevSecOps, Don't miss, Ensora Health, Features, healthcare, Hot stuff, News, regulation, strategy /

Healthcare CISOs must secure more than what’s regulated 2025-07-03 at 09:05 By Mirko Zorz In this Help Net Security interview, Henry Jiang, CISO at Ensora Health, discusses what it really takes to make DevSecOps work in healthcare. He explains how balancing speed and security isn’t easy and why aligning with regulations is key. Jiang also

Healthcare CISOs must secure more than what’s regulated Read More »

Cyberattacks are draining millions from the hospitality industry

Aryaka, cybersecurity, hospitality industry, Keepnet Labs, LastPass, News, threats /

Cyberattacks are draining millions from the hospitality industry 2025-07-03 at 08:37 By Sinisa Markovic Every day, millions of travelers share sensitive information like passports, credit card numbers, and personal details with hotels, restaurants, and travel services. This puts pressure on the hospitality sector to keep that information safe and private. Cybersecurity challenges in the hospitality

Cyberattacks are draining millions from the hospitality industry Read More »

AI tools are everywhere, and most are off your radar

Artificial Intelligence, LLMs, News, report, strategy, tips, Zluri /

AI tools are everywhere, and most are off your radar 2025-07-03 at 08:06 By Anamarija Pogorelec 80% of AI tools used by employees go unmanaged by IT or security teams, according to Zluri’s The State of AI in the Workplace 2025 report. AI is popping up all over the workplace, often without anyone noticing. If

AI tools are everywhere, and most are off your radar Read More »

90% aren’t ready for AI attacks, are you?

Accenture, Artificial Intelligence, cyber resilience, cybersecurity, generative AI, News, policy, report, strategy, threats /

90% aren’t ready for AI attacks, are you? 2025-07-03 at 07:32 By Help Net Security As AI reshapes business, 90% of organizations are not adequately prepared to secure their AI-driven future, according to a new report from Accenture. Globally, 63% of companies are in the “Exposed Zone,” indicating they lack both a cohesive cybersecurity strategy

90% aren’t ready for AI attacks, are you? Read More »

Industrial security is on shaky ground and leaders need to pay attention

cybersecurity, Forescout, IoT, News, report, threat detection /

Industrial security is on shaky ground and leaders need to pay attention 2025-07-03 at 07:07 By Help Net Security 44% of industrial organizations claim to have strong real-time cyber visibility, but nearly 60% have low to no confidence in their OT and IoT threat detection capabilities, according to Forescout. How confident are you in your

Industrial security is on shaky ground and leaders need to pay attention Read More »

Qantas data breach could affect 6 million customers

Australia, Closed Door Security, data breach, Don't miss, Entrust, FBI, Hot stuff, News, Qantas, social engineering /

Qantas data breach could affect 6 million customers 2025-07-02 at 14:04 By Zeljka Zorz Qantas has suffered a cyber incident that has lead to a data breach. “The incident occurred when a cyber criminal targeted a call centre and gained access to a third-party customer servicing platform,” the Australian airline announced today, but said that

Qantas data breach could affect 6 million customers Read More »

Cybersecurity essentials for the future: From hype to what works

access management, CISO, cyber resilience, cyber risk, cybersecurity, DirectDefense, Don't miss, enterprise, Features, Hot stuff, News, Risk Management, Secure Code Warrior, strategy, tips /

Cybersecurity essentials for the future: From hype to what works 2025-07-02 at 09:03 By Mirko Zorz Cybersecurity never stands still. One week it’s AI-powered attacks, the next it’s a new data breach, regulation, or budget cut. With all that noise, it’s easy to get distracted. But at the end of the day, the goal stays

Cybersecurity essentials for the future: From hype to what works Read More »

How FinTechs are turning GRC into a strategic enabler

Artificial Intelligence, Compliance, cybersecurity, Don't miss, EU, Europe, Features, financial industry, Fintech, framework, GRC, Hot stuff, News, regulation, Risk Management, Riverty /

How FinTechs are turning GRC into a strategic enabler 2025-07-02 at 08:36 By Mirko Zorz In this Help Net Security interview, Alexander Clemm, Corp GRC Lead, Group CISO, and BCO at Riverty, shares how the GRC landscape for FinTechs has matured in response to tighter regulations and global growth. He discusses the impact of frameworks

How FinTechs are turning GRC into a strategic enabler Read More »

Secretless Broker: Open-source tool connects apps securely without passwords or keys

CyberArk, Don't miss, GitHub, News, open source, software /

Secretless Broker: Open-source tool connects apps securely without passwords or keys 2025-07-02 at 08:01 By Mirko Zorz Secretless Broker is an open-source connection broker that eliminates the need for client applications to manage secrets when accessing target services like databases, web services, SSH endpoints, or other TCP-based systems. Secretless Broker features “We created Secretless Broker

Secretless Broker: Open-source tool connects apps securely without passwords or keys Read More »

Product showcase: Protect your data with Apricorn Aegis Secure Key 3NXC

Apricorn, data security, Don't miss, Encryption, hardware, Hot stuff, News, Product showcase /

Product showcase: Protect your data with Apricorn Aegis Secure Key 3NXC 2025-07-02 at 07:31 By Anamarija Pogorelec The Apricorn Aegis Secure Key 3NXC is a 256-bit AES XTS hardware-encrypted flash drive with a USB-C connector. It is available in storage capacities ranging from 4GB to 512GB and holds FIPS 140-2 Level 3 validation. The device

Product showcase: Protect your data with Apricorn Aegis Secure Key 3NXC Read More »

Scammers are trick­ing travelers into booking trips that don’t exist

Artificial Intelligence, cybersecurity, FTC, News, scams, travel industry /

Scammers are trick­ing travelers into booking trips that don’t exist 2025-07-02 at 07:06 By Sinisa Markovic Not long ago, travelers worried about bad weather. Now, they’re worried the rental they booked doesn’t even exist. With AI-generated photos and fake reviews, scammers are creating fake listings so convincing, people are losing money before they even pack

Scammers are trick­ing travelers into booking trips that don’t exist Read More »

Scroll to Top