SC Media, Tuesday, August 5th, 2025
5 Scenarios For How We Might Be Attacked In The Ongoing Cyber War
In October 2023, a coordinated cyberattack shut down parts of Denmark's railway network, delaying trains nationwide.
more →
Back Issues This Week → Popular →
All issues › Archive
Security — Archive
2,322 articles · page 11 of 47
HelpNet Security, Monday, August 4th, 2025
The Surprising Truth About Identity Security Confidence
Organizations most confident in their identity security are often the least prepared, according to a new report from BeyondID. The study reveals a troubling gap between what organizations believe about their identity security programs and how they actually behave. Surprisingly, those expressing the highest confidence are adopting fewer best practices than their more cautious peers.
more →
CSO Online, Monday, August 4th, 2025
Summer: Why Cybersecurity Must Be Strengthened As Vacations Abound
Cyberattackers are well aware of what's happening at this time of year, which is why they take advantage of seasonal circumstances to launch more aggressive campaigns.
more →
Cyber Defense Magazine, Monday, August 4th, 2025
Cybersecurity's Blind Spot: Why Human Behavior Is Every CISO's Business
When a major breach makes headlines, the impact ripples far beyond the individuals whose data has been compromised.
more →
SC Media, Friday, August 1st, 2025
Cybersecurity Threats Surge In First Half, Report Finds
Threat actors have launched a deluge of cyberattacks during the first six months of 2025, resulting in record-high credential theft, ransomware, and data breach incidence, Cybernews reports.
more → Informationweek, Friday, August 1st, 2025
Translating Cyber-Risk For The Boardroom
When security leaders embrace this truth and learn to speak in the language of leadership, they don't just protect the enterprise, they help lead it forward.
more →
DARKReading, Friday, August 1st, 2025
Building The Perfect Post-Security Incident Review Playbook
By creating a safe environment for open discussion, prioritizing human context alongside technical data, and involving diverse stakeholders, organizations can turn security incidents into accelerators of resilience.
more →
HelpNet Security, Thursday, July 31st, 2025
Why Stolen Credentials Remain Cybercriminals' Tool Of Choice
It's often the case that the simplest tools have the longest staying power, because they ultimately get the job done.
more → DARKReading, Thursday, July 31st, 2025
Getting A Cybersecurity Vibe Check On Vibe Coding
Following a number of high-profile security and development issues surrounding the use of LLMs and GenAI to code and create applications, it's worth taking a temperature check to ask: Is this technology ready for prime time?
more → The Register, Wednesday, July 30th, 2025
Enterprises Neglect AI Security - And Attackers Have Noticed
IBM report shows a rush to embrace technology without safeguarding it, and as for governance...
more →
ITPro, Wednesday, July 30th, 2025
Global Cybersecurity Spending Is Going To Hit $213 Billion In 2025 - Here's What's Driving Investment
Spending across major fronts comes in the wake of rising cloud security threats and growing skills gaps
more →
HelpNet Security, Wednesday, July 30th, 2025
Artemis: Open-Source Modular Vulnerability Scanner
Artemis is an open-source modular vulnerability scanner that checks different aspects of a website's security and translates the results into easy-to-understand messages that can be shared with the organizations being scanned.
more → Virtualization, Wednesday, July 30th, 2025
AI Security Spend Surges, But Most Cloud Data Unencrypted, Thales Warns
In a stark warning for cloud security teams, a new Thales report reveals that while enterprises are pouring resources into AI-specific protections, only 8% are encrypting the majority of their sensitive cloud data -- leaving critical assets exposed even as AI-driven threats escalate and traditional security budgets shrink.
more →
TechRepublic, Tuesday, July 29th, 2025
Google Cloud/Forrester Report: Top Challenges To Effective Threat Intelligence
Too many threat intelligence data feeds and not enough skilled analysts top the list of challenges for cybersecurity teams, says a new Google Cloud/Forrester report.
more →
ITProToday, Tuesday, July 29th, 2025
Taming Cyber Reporting Pressures
Organizations are increasingly inundated with cybersecurity reporting demands from a growing community of stakeholders. Follow these tips to eliminate reporting chaos, regain control, and enjoy peace of mind.
more →
The Hacker News, Tuesday, July 29th, 2025
How The Browser Became The Main Cyber Battleground
Until recently, the cyber attacker methodology behind the biggest breaches of the last decade or so has been pretty consistent
more →
The Register, Friday, July 25th, 2025
DNS Security Is Important But DNSSEC May Be A Failed Experiment
Nobody thinks of running a website without HTTPs. Safer DNS still seems optional
more → HelpNet Security, Friday, July 25th, 2025
What 50 Companies Got Wrong About Cloud Identity Security
Most organizations still miss basic identity security controls in the cloud, leaving them exposed to breaches, audit failures, and compliance violations. A new midyear benchmark from Unosecur found that nearly every company scanned had at least one high-risk issue, with an average of 40 control failures per organization.
more → theCUBE research, Friday, July 25th, 2025
Security's Great Disconnect: Why Vendors Are Losing The Trust Of The Practitioners They Serve
I spend my days talking to CISOs, analysts, and engineers. I sit in on vendor briefings, read the latest industry reports, and, like many of you, I scroll through the forums where real practitioners share their uncensored frustrations. And a clear, frankly alarming, theme is emerging: a deep and widening disconnect between the cybersecurity solutions being sold and the realities of the teams on the ground.
more →
techradar, Thursday, July 24th, 2025
I Am A Cybersecurity Pro And Here's The Most Powerful Strategy Criminals Are Using Against Retailers Right Now
Retail ransomware surges via trusted tools, insiders
more →
HelpNet Security, Thursday, July 24th, 2025
Most Data Breaches Have Unknown Causes As Transparency Continues To Fall
The Identity Theft Resource Center (ITRC) reports 1,732 publicly disclosed data breaches in H1 2025, marking a 5% increase over the same period in 2024. The ITRC could track a record number of compromises in 2025 if the current data breach trend continues through Q3 and Q4.
more → Professional Security Magazine, Thursday, July 24th, 2025
Navigating Enterprise Password Management
The UK's National Cyber Security Centre (NCSC) has issued updated guidance on password best practices - recommending the use of password managers and passkeys to enhance organisational cybersecurity, writes Darren Guccione, CEO and co-founder of the vendor Keeper Security.
more →
DARKReading, Wednesday, July 23rd, 2025
What Makes Great Threat Intelligence?
Anyone can buy or collect data, but the goal must be to realize actionable insight relevant to the organization in question.
more → techradar, Tuesday, July 22nd, 2025
Marks & Spencer's Cyberattack Isn't An Exception - It's A Warning
Cyber attacks on retail are on the rise, and businesses are struggling to keep up
more → ITPro, Monday, July 21st, 2025
IT Leaders Are Facing Major Work Device Blind Spots - And It's Putting Security At Risk
The use of unauthorized devices is putting enterprises at huge risk
more → DataCenter Knowledge, Monday, July 21st, 2025
Decoding Cloud Terminology: What 'Cloud-Native' Really Means
Here's how cloud-native compares in meaning to cloud-based, cloud-ready, cloud-hosted, and cloud-first.
more →
DARKReading, Monday, July 21st, 2025
Containment As A Core Security Strategy
We cannot keep reacting to vulnerabilities as they emerge. We must assume the presence of unknown threats and reduce the blast radius that they can affect.
more → CIODIVE, Monday, July 21st, 2025
AI-Powered Attacks Rise As Cisos Gauge Security Risks
Security chiefs are concerned about flaws in agents but also eager to see them replace humans in some roles, according to a report.
more →
The Hacker News, Monday, July 21st, 2025
Assessing The Role Of AI In Zero Trust
By 2025, Zero Trust has evolved from a conceptual framework into an essential pillar of modern security. No longer merely theoretical, it's now a requirement that organizations must adopt.
more → SC Media, Thursday, July 10th, 2025
What Is Exposure Management? A New Blueprint For Modern Cyber Defense
Most of us are familiar with the concept of vulnerability management. But in recent years we've heard newer terms like cyber exposure, continuous threat exposure management (CTEM) and the more-encompassing exposure management.
more → HelpNet Security, Thursday, July 10th, 2025
Making Security And Development Co-Owners Of DevSecOps
In this Help Net Security interview, Galal Ibrahim Maghola, former Head of Cybersecurity at G42 Company, discusses strategic approaches to implementing DevSecOps at scale.
more → Technative, Thursday, July 10th, 2025
What Makes A Good Ethical Hacker?
HackerOne is a leading platform that connects organizations with ethical hackers to identify and fix security vulnerabilities through bug bounty programs.
more →
Security Boulevard, Thursday, July 10th, 2025
The Challenges Of Operationalizing Threat Intelligence
Most security teams subscribe to more threat‑intel feeds than they can digest, yet attackers keep winning. Cyware's Jawahar Sivasankaran explains why: Outside the Fortune 500 and federal agencies, many organizations still treat cyberthreat intelligence (CTI) as another inbox rather than an engine for action.
more →
Search Security, Thursday, July 10th, 2025
An Explanation Of Identity And Access Management
In this video, Informa TechTarget customer success specialist Ben Clossey explains what identity and access management is and best practices that organizations should be following.
more →
techradar.pro, Thursday, July 10th, 2025
It Seems Even DNS Records Can Be Infected With Malware Now - Here's Why That's A Major Worry
Crooks found a way to break up malware and hide it on DNS servers
more → ITPro, Thursday, July 10th, 2025
A New, Silent Social Engineering Attack Is Being Used By Hackers - And Your Security Systems Might Not Notice Until It's Too Late
Malicious actors are already using FileFix technique in malware-delivery dummy runs, Check Point claims
more → techradar.pro, Thursday, July 10th, 2025
Inside The Deepfake Threat That's Reshaping Corporate Risk
Tackling deepfakes with smart, human-led security
more → HelpNet Security, Thursday, July 10th, 2025
Experts Unpack The Biggest Cybersecurity Surprises Of 2025
2025 has been a busy year for cybersecurity. From unexpected attacks to new tactics by threat groups, a lot has caught experts off guard. We asked cybersecurity leaders to share the biggest surprises they've seen so far this year and what those surprises might mean for the rest of us.
more → Analytics Insight, Thursday, July 10th, 2025
Cybersecurity 2.0: Why AI Is The New Frontline For Securing Mobile Apps
How AI Enables Real-Time Detection, Self-Healing, and Intelligent Threat Response for Protecting Mobile Apps in Real Time
more →
ITPro, Thursday, July 10th, 2025
SaaS Security Is Now A Major Blind Spot For Enterprises
Rising SaaS security threats are being overlooked, new research shows
more → HelpNet Security, Thursday, July 10th, 2025
Stop Settling For Check-The-Box Cybersecurity Policies
After every breach, people ask: How did this happen if there were cybersecurity policies in place?
more → SC Media, Thursday, July 10th, 2025
OWASP's Playbook For Preventing AI Data Leaks
AI doesn't need to be hacked to leak confidential content. It just needs to be asked the right way.
more → ZDNET, Thursday, July 10th, 2025
How Passkeys Work: Let's Start The Passkey Registration Process
Your passkey journey can be a strange and inconsistent ordeal. But it doesn't have to be this way.
more →
SC Media, Thursday, July 10th, 2025
Don't Let Security Debt Play You: Four Moves To Take Back Control
Security debt doesn't scream for attention-but it silently compounds. Every skipped update, misconfigured control, or unused tool adds to a hidden tab.
more → HelpNet Security, Thursday, July 10th, 2025
C-Suites Step Up On OT Cybersecurity, And It's Paying Off
There has been a significant increase in the global trend of corporations planning to integrate cybersecurity under the CISO or other executives, according to Fortinet.
more → ITPro, Wednesday, July 9th, 2025
Workers Are Covering Up Cyber Attacks For Fear Of Reprisal
Research shows that fear of the consequences is driving employees to cover up security failures
more → HelpNet Security, Wednesday, July 9th, 2025
Why Your Security Team Feels Stuck
Cybersecurity friction usually gets framed as a user problem: password policies that frustrate employees, MFA that slows down logins, or blocked apps that send workers into the arms of shadow IT. But there's a different kind of friction happening behind the scenes, and it's hitting security teams themselves.
more → Security Week, Wednesday, July 9th, 2025
Unpatched Ruckus Vulnerabilities Allow Wireless Environment Hacking
Multiple vulnerabilities in Ruckus Wireless management products could be exploited to fully compromise the managed environments.
more →
siliconANGLE, Wednesday, July 9th, 2025
Security Practices Must Evolve To Battle Growing Deepfake Sophistication
A few years ago, deepfakes were a novelty - something relegated to Reddit threads and face-swap memes. Now, they're tools in the arsenal of cybercriminals, paired seamlessly with large language models to deliver personalized attacks that are as scalable as they are convincing.
more →
DARKReading, Wednesday, July 9th, 2025
Know Your Enemy: Understanding Dark Market Dynamics
To help counter crime, today's organizations require a cyber-defense strategy that incorporates the mindset of the cybercriminal.
more →