Application Security News and Articles
SAN FRANCISCO — Sometimes, the best insights come not from the keynote stage, but from the hotel lobby.
Related: RSAC 2025 top takeaways
In between sessions at RSAC 2025, I slipped over to the Marriott lobby and held quick, … (more…)
The ...
In today’s digital world, cybersecurity is as much about smart tools as it is about the people who use them. Modern Security Operations Centers (SOCs) are at the heart of an organization’s defense. But behind the shiny dashboards and ...
Nova Scotia Power and Emera are responding to a cybersecurity incident that impacted IT systems and networks.
The post Canadian Electric Utility Hit by Cyberattack appeared first on SecurityWeek.
Some vulnerabilities make headlines. Others quietly become someone’s worst day at work. The critical CVEs 2025 that surfaced in April weren’t just technical flaws, they were real entry points. Into...
The post Critical Vulnerabilities and Top ...
RSAC 2025 Conference is taking place at the Moscone Center in San Francisco. Help Net Security is on-site, and this gallery takes you inside the event. The first gallery is here. The featured vendors are: Tines, Thales, Sumo Logic, N-able, ...
The advantages AI tools deliver in speed and efficiency are impossible for developers to resist. But the complexity and risk created by AI-generated code can’t be ignored.
The post Year of the Twin Dragons: Developers Must Slay the Complexity ...
Commvault has shared indicators of compromise associated with the exploitation of a vulnerability by state-sponsored hackers.
The post More Details Come to Light on Commvault Vulnerability Exploitation appeared first on SecurityWeek.
ESET has analyzed Spellbinder, the IPv6 SLAAC spoofing tool Chinese APT TheWizards uses to deploy its WizardNet backdoor.
The post Chinese APT’s Adversary-in-the-Middle Tool Dissected appeared first on SecurityWeek.
In a world full of noise and promises, it’s those who consistently deliver behind the scenes who build the most respected and rewarding careers.
The post Actions Over Words: Career Lessons for the Security Professional appeared first on ...
SaaS misconfigurations can silently lead to compliance failures and security risks. Learn how operationalizing compliance with AppOmni helps security teams enforce policies, monitor continuously, and stay audit-ready.
The post From Policy to ...
SonicWall has updated the advisories for two vulnerabilities to warn that they are being exploited in the wild.
The post SonicWall Flags Two More Vulnerabilities as Exploited appeared first on SecurityWeek.
Ascension is notifying over 100,000 people that their personal information was stolen in a data breach potentially linked to the Cleo hack.
The post Ascension Discloses Data Breach Potentially Linked to Cleo Hack appeared first on SecurityWeek.
In recent reports, significant security vulnerabilities have been uncovered in some of the world’s leading generative AI systems, such as OpenAI’s GPT-4, Anthropic’s Claude, and Google’s Gemini. While these AI models have revolutionized ...
WhatsApp is setting new standards for privacy with its recent feature, Private Processing. This innovative approach allows WhatsApp to enhance its AI capabilities, such as smart replies, message suggestions, and content filtering, while ensuring ...
Account Takeovers (ATOs) are becoming one of the most dangerous and costly threats to businesses and their customers. These attacks are not only financially devastating, but they also have the potential to severely damage an organization’s ...
SentinelOne has shared some information on the types of threat actors that have targeted the security firm recently.
The post SentinelOne Targeted by North Korean IT Workers, Ransomware Groups, Chinese Hackers appeared first on SecurityWeek.
Zero-day exploits continue to pose one of the most significant and evolving cybersecurity threats to businesses worldwide. According to a recent report, 75 zero-day vulnerabilities were exploited this year, with 44% of these attacks targeting ...
In this Help Net Security interview, Steven Furnell, Professor of Cyber Security at the University of Nottingham, illustrates how small and medium-sized businesses (SMEs) must reassess their risk exposure and prioritize resilience to safeguard ...
Machine identities are multiplying fast, and many organizations are struggling to keep up. In this Help Net Security interview, Wendy Wu, CMO at SailPoint, explains why machine identity security matters, where most companies go wrong, how ...
This month’s roundup features exceptional open-source cybersecurity tools that are gaining attention for strengthening security across various environments. GoSearch: Open-source OSINT tool for uncovering digital footprints GoSearch is an ...
