Security News

Incoming deputy boss of Homeland Security says America's top cyber-agency needs to be reined in
2025-02-26 02:31

Plus: New figurehead of DOGE emerges and they aren't called Elon During confirmation hearings in the US Senate Tuesday for the role of deputy director of the Dept of Homeland Security, the nominee...

Drug-screening biz DISA took a year to disclose security breach affecting millions
2025-02-26 00:05

If there's something nasty on your employment record, extortion scum could come calling DISA Global Solutions, a company that provides drug and alcohol testing, background checks, and other...

MITRE Caldera security suite scores perfect 10 for insecurity
2025-02-25 20:47

Is a trivial remote-code execution hole in every version part of the training, or? The smart cookie who discovered a perfect 10-out-of-10-severity remote code execution (RCE) bug in MITRE's...

Avoiding vendor lock-in when using managed cloud security services
2025-02-25 06:00

In this Help Net Security interview, Marina Segal, CEO at Tamnoon, discusses the most significant obstacles when implementing managed cloud security in hybrid and multi-cloud environments. She...

Two Actively Exploited Security Flaws in Adobe and Oracle Products Flagged by CISA
2025-02-25 04:10

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two security flaws impacting Adobe ColdFusion and Oracle Agile Product Lifecycle Management (PLM) to its Known Exploited...

Australia Bans Kaspersky Software Over National Security and Espionage Concerns
2025-02-24 09:57

Australia has become the latest country to ban the installation of security software from Russian company Kaspersky, citing national security concerns. "After considering threat and risk analysis,...

Misconfig Mapper: Open-source tool to uncover security misconfigurations
2025-02-24 05:30

Misconfig Mapper is an open-source CLI tool built in Golang that discovers and enumerates instances of services used within your organization. It performs large-scale detection and...

Security and privacy concerns challenge public sector’s efforts to modernize
2025-02-21 16:00

For most public sector organizations, digital transformation is a work in progress, with the complexity of integrating new systems and privacy and security concerns remaining key barriers,...

Webinar: Learn How to Identify High-Risk Identity Gaps and Slash Security Debt in 2025
2025-02-21 11:40

In today’s rapidly evolving digital landscape, weak identity security isn’t just a flaw—it’s a major risk that can expose your business to breaches and costly downtime. Many organizations are...

Integrating LLMs into security operations using Wazuh
2025-02-20 15:01

Large Language Models (LLMs) can provide many benefits to security professionals by helping them analyze logs, detect phishing attacks, or offering threat intelligence. Learn from Wazuh how to...