Security News

Update your OpenWrt router! Security issue made supply chain attack possible
2024-12-09 18:34

A security issue that could have allowed attackers to serve malicious firmware images to users has been fixed by OpenWrt Project, the organization that helms the development of the popular Linux...

Who handles what? Common misconceptions about SaaS security responsibilities
2024-12-09 05:30

In this Help Net Security interview, James Dolph, CISO at Guidewire, addresses common misconceptions about security responsibilities in cloud environments, particularly in SaaS, and how these...

Facing sale or ban, TikTok tossed under national security bus by appeals court
2024-12-06 22:00

Video slinger looks to Supremes for salvation, though anything could happen under Trump A US federal appeals court has rejected a challenge to the law that prevents popular apps that collect data...

Building a robust security posture with limited resources
2024-12-06 05:00

In this Help Net Security interview, Gareth Lindahl-Wise, CISO at Ontinue, discusses how business leaders can align innovation with cybersecurity, tackle the risks posed by legacy systems, and...

UK Cyber Risks Are ‘Widely Underestimated,’ Warns Country’s Security Chief
2024-12-05 19:24

Richard Horne, the head of the U.K.’s National Cyber Security Centre, says that hostile activity has “increased in frequency, sophistication and intensity.”

Shape the future of UK cyber security
2024-12-05 09:03

Support the industry by sponsoring the UK Cyber Team Competition Partner Content The opportunity to identify, foster and nurture talented young people towards a cyber security career should always...

Are Long-Lived Credentials the New Achilles’ Heel for Cloud Security?
2024-12-04 17:04

Datadog advises Australian and APAC companies to phase out long-lived cloud credentials.

How to Plan a New (and Improved!) Password Policy for Real-World Security Challenges
2024-12-04 10:30

Many organizations struggle with password policies that look strong on paper but fail in practice because they're too rigid to follow, too vague to enforce, or disconnected from real security...

Phishers send corrupted documents to bypass email security
2024-12-03 12:04

Phishers have come up with a new trick for bypassing email security systems: corrupted MS Office documents. The spam campaign Malware hunting service Any.Run has warned last week about email...

AWS unveils cloud security IR service for a mere $7K a month
2024-12-03 01:30

Tap into the infinite scalability... of pricing Re:Invent Amazon Web Services has a new incident response service that combines automation and people to protect customers' AWS accounts - at a hefty price.…