5 rules to make security user-friendly
My mother is 67 years old. She is a brilliant woman, educated and not at all afraid of technology. Yet, when I tried to get her to install Google Authenticator and use multi-factor authentication (MFA) for logging into applications, she found herself.....»»
Security analysts believe more than half of tasks could be automated
Security industry leaders believe that AI and automation technologies are critical to addressing the complexities of modern security operations, according to Anomali. AI expected to boost threat detection In fact, security analysts maintain that up t.....»»
Why the automotive sector is a target for email-based cyber attacks
While every organization across every vertical is at risk of advanced email attacks, certain industries periodically become the go-to target for threat actors. In this Help Net Security video, Mick Leach, Field CISO at Abnormal Security, discusses wh.....»»
Tracecat: Open-source SOAR
Tracecat is an open-source automation platform for security teams. The developers believe security automation should be accessible to everyone, especially understaffed small- to mid-sized teams. Core features, user interfaces, and day-to-day workflow.....»»
Triangulation fraud: The costly scam hitting online retailers
In this Help Net Security interview, Mike Lemberger, Visa’s SVP, Chief Risk Officer, North America, discusses the severe financial losses resulting from triangulation fraud, estimating monthly losses to range from $660 million to $1 billion among m.....»»
CyberQP unveils solutions to help MSPs proactively prevent security incidents
CyberQP announced QGuard Pro, a solution with enhanced capabilities designed to exponentially increase technician efficiency, and a new API for Deployment are now generally available. QGuard Pro comes with Passwordless MFA for Technicians, which augm.....»»
ThreatX provides always-active API security from development to runtime
ThreatX has extended its Runtime API and Application Protection (RAAP) offering to provide always-active API security from development to runtime, spanning vulnerability detection at Dev phase to protection at SecOps phase of the software lifecycle......»»
Critics question tech-heavy lineup of new Homeland Security AI safety board
CEO-heavy board to tackle elusive AI safety concept and apply it to US infrastructure. Enlarge (credit: Benj Edwards | Getty Images) On Friday, the US Department of Homeland Security announced the formation of an Artific.....»»
New report explores worker experiences with climate-friendly New York state solar jobs
New York state solar construction workers—whose numbers are expected to grow rapidly to meet climate goals—are transient, may not receive benefits and are subject to racial disparities in pay, finds a new report from the Climate Jobs Institute (C.....»»
Better reservoir management could aid food security and fisheries conservation in US
After nearly a century of people building dams on most of the world's major rivers, artificial reservoirs now represent an immense freshwater footprint across the landscape. Yet, these reservoirs are understudied and overlooked for their fisheries pr.....»»
Epic plans to revive Fortnite on iPad following EU iPadOS ‘gatekeeper’ ruling
The impact of the EU’s Digital Markets Act (DMA) is continuing to unfold with the latest from the regulators stipulating that Apple’s iPadOS needs to follow the same new rules as iOS. With that, Epic has shared its plan to bring back Fortnite via.....»»
Mosyle launches Mosyle Fuse MSP to bring a single pane of glass approach to Apple managed service providers
Today, Mosyle has announced the launch of Mosyle Fuse MSP. This first solution integrates five critical management and security applications into a product specifically designed for Managed Service Providers (MSPs). Combining mobile device management.....»»
UK enacts IoT cybersecurity law
The Product Security and Telecommunications Infrastructure (PSTI) Act has come into effect today, requiring manufacturers of consumer-grade IoT products sold in the UK to stop using guessable default passwords and have a vulnerability disclosure poli.....»»
Apple"s iPad doesn"t meet DMA criteria, but is getting regulated by the EU anyway
The European Union has spoken, and will enforce the rules of the Digital Markets Act on Apple again not because it holds a dominant position in the iPad today, but because it may soon.European Union flagsIn a press release issued early on Monday morn.....»»
Dealership not at fault for injuries caused by 80-year-old customer who crashed demo, court rules
A Louisiana dealership has been cleared of liability for a crash caused by an 80-year-old customer test driving a demo car......»»
Roku (yes, Roku) make a home security camera, and it’s discounted today
The Roku Smart Home Indoor Security Camera is an inexpensive solution to your indoor security needs. It's on sale right now......»»
Apple"s iPad doesn"t yet meet the DMA criteria, but is getting regulated by the EU anyway
The European Union has spoken, and will enforce the rules of the Digital Markets Act on Apple again not because it holds a dominant position in the iPad today, but because it may soon.European Union flagsIn a press release issued early on Monday morn.....»»
DHS establishes AI Safety and Security Board to protect critical infrastructure
The Department of Homeland Security announced the establishment of the Artificial Intelligence Safety and Security Board (the Board). The Board will advise the Secretary, the critical infrastructure community, other private sector stakeholders, and t.....»»
AI is creating a new generation of cyberattacks
Most businesses see offensive AI fast becoming a standard tool for cybercriminals, with 93% of security leaders expecting to face daily AI-driven attacks, according to Netacea. Offensive AI in cyberattacks The research, “Cyber security in the age o.....»»
How insider threats can cause serious security breaches
Insider threats are a prominent issue and can lead to serious security breaches. Just because someone is a colleague or employee does not grant inherent trust. In this Help Net Security video, Tara Lemieux, CMMC Consultant for Redspin, discusses insi.....»»
Prompt Fuzzer: Open-source tool for strengthening GenAI apps
Prompt Fuzzer is an open-source tool that evaluates the security of your GenAI application’s system prompt against dynamic LLM-based threats. Prompt Fuzzer features Simulation of over a dozen types of GenAI attacks The tool contextualizes itsel.....»»