Security
Rethinking AppSec: How DevOps, containers, and serverless are changing the rules – Help Net Security
Application security is changing fast. In this Help Net Security interview, Loris Gutic, Global CISO at Bright, talks about what it takes to keep up. Gutic explains how DevOps, containers, and serverless tools are shaping security, and shares views on the biggest risks, important controls, and why AI must be used carefully. How has your…
Week in review: Critical SAP NetWeaver flaw exploited, RSAC 2025 Conference – Help Net Security
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: RSAC 2025 ConferenceRSAC 2025 Conference took place at the Moscone Center in San Francisco. Check out our microsite for related news, photos, product releases, and more. Critical SAP NetWeaver flaw exploited by suspected initial access broker (CVE-2025-31324)CVE-2025-31324, a critical vulnerability…
HPE strengthens hybrid cloud and connectivity with Aruba Networking and GreenLake security upgrades – Help Net Security
Hewlett Packard Enterprise has announced expansions of HPE Aruba Networking and HPE GreenLake cloud to help enterprises modernize secure connectivity and hybrid cloud operations by blending multi-layered and zero trust approaches to protect against threats. These new expansions include: New cloud-based access control security capabilities of HPE Aruba Networking Central, which accelerate enterprise-grade zero trust…
Trump Revenge Tour Targets Cyber Leaders, Elections – Krebs on Security
President Trump last week revoked security clearances for Chris Krebs, the former director of the Cybersecurity and Infrastructure Security Agency (CISA) who was fired by Trump after declaring the 2020 election the most secure in U.S. history. The White House memo, which also suspended clearances for other security professionals at Krebs’s employer SentinelOne, comes as…
Software supply chain security AI agents take action | TechTarget
Software supply chain security tools from multiple vendors moved from software vulnerability detection to proactive vulnerability fixes with new AI agents released this week. AI agents are autonomous software entities backed by large language models that can act on natural language prompts or event triggers within an environment, such as software pull requests. As…
Is that really your boss calling? Jericho Security raises $15M to stop deepfake fraud that’s cost businesses $200M in 2025 alone
Join our daily and weekly newsletters for the latest updates and exclusive content on industry-leading AI coverage. Learn More New York-based Jericho Security has secured $15 million in Series A funding to scale its AI-powered cybersecurity training platform. The investment, announced today, follows the company’s successful five-month execution of a $1.8 million Department of Defense…
DOGE Worker’s Code Supports NLRB Whistleblower – Krebs on Security
A whistleblower at the National Labor Relations Board (NLRB) alleged last week that denizens of Elon Musk’s Department of Government Efficiency (DOGE) siphoned gigabytes of data from the agency’s sensitive case files in early March. The whistleblower said accounts created for DOGE at the NLRB downloaded three code repositories from GitHub. Further investigation into one…
DOGE Siphoned NLRB Case Data – Krebs on Security
A security architect with the National Labor Relations Board (NLRB) alleges that employees from Elon Musk‘s Department of Government Efficiency (DOGE) transferred gigabytes of sensitive data from agency case files in early March, using short-lived accounts configured to leave few traces of network activity. The NLRB whistleblower said the unusual large data outflows coincided with…
Addressing the gaps in modern cloud protection: Using CNAPP to unify cloud security
As cloud-native architectures continue to evolve, so have the complexities of securing them. Traditional security approaches, often built around static infrastructure and perimeter defenses, struggle to keep pace with the speed and scale of modern cloud deployments. Enter cloud-native application protection platforms (CNAPPs), a term coined by Gartner® to describe an integrated security approach that…
The UK’s phone theft crisis is a wake-up call for digital security – Help Net Security
Phone theft is now commonplace in London. The Met Police recently revealed that it seizes 1,000 stolen phones weekly as it cracks down on organized criminal networks driving the £50 million trade. Nationally, cases have doubled to 83,900 annually. The real issue, though, isn’t the losing of a phone – it’s what happens next. Thieves…