Security News

Rational Astrologies and Security
2025-04-02 11:04

John Kelsey and I wrote a short paper for the Rossfest Festschrift: “Rational Astrologies and Security“: There is another non-security way that designers can spend their security budget: on making...

3 Ways the UK Government Plans to Tighten Cyber Security Rules with New Bill
2025-04-02 08:00

Amid a sharp spike in ransomware attacks disrupting essential services and critical infrastructure, the U.K. government has set out the scope of its upcoming Cyber Security and Resilience Bill for...

Forget Signal. National Security Adviser Waltz now accused of using Gmail for work
2025-04-02 01:36

But his emails! Sharing them with Google! Senior members of the US National Security Council, including the White House national security adviser Michael Waltz, have been accused of using their...

Generative AI Is reshaping financial fraud. Can security keep up?
2025-04-01 04:30

In this Help Net Security interview, Yinglian Xie, CEO at DataVisor, explains how evolving fraud tactics require adaptive, AI-driven prevention strategies. With fraudsters using generative AI to...

Oracle Cloud security SNAFU latest: IT giant accused of pedantry as evidence scrubbed
2025-03-31 21:30

1990s incident response in 2025 Two Oracle data security breaches have been reported in the past week, and the database goliath not only remains reluctant to acknowledge the disasters publicly –...

Cloud security explained: What’s left exposed?
2025-03-31 10:00

Think AWS has security covered? Think again. Discover real-world examples of what it doesn’t secure and how to protect your environment Advertorial AWS customers might assume that security is...

Only 2-5% of application security alerts require immediate action
2025-03-31 04:30

The large volume of security alerts, many created by automated tools, is overwhelming security and development teams, according to the 2025 Application Security Benchmark report by Ox Security....

Week in review: Chrome sandbox escape 0-day fixed, Microsoft adds new AI agents to Security Copilot
2025-03-30 08:00

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Microsoft’s new AI agents take on phishing, patching, alert fatigue Microsoft is rolling out a new...

New Ubuntu Linux security bypasses require manual mitigations
2025-03-28 15:14

Three security bypasses have been discovered in Ubuntu Linux's unprivileged user namespace restrictions, which could be enable a local attacker to exploit vulnerabilities in kernel components. [...]

Android Malware Exploits a Microsoft-Related Security Blind Spot to Avoid Detection
2025-03-27 20:05

Microsoft’s .NET MAUI lets developers build cross-platform apps in C#, but its use of binary blob files poses new risks by bypassing Android’s DEX-based security checks.