Compliance frameworks and GenAI: The Wild West of security standards
In this Help Net Security interview, Kristian Kamber, CEO at SplxAI, discusses how security challenges for GenAI differ from traditional software. Unlike predictable software, GenAI introduces dynamic, evolving threats, requiring new strategies for d.....»»
Vanir: Open-source security patch validation for Android
Google’s open-source tool Vanir enables Android developers to quickly scan custom platform code for missing or applicable security patches. By automating patch validation, Vanir helps OEMs deliver critical security updates faster, enhancing the.....»»
Key steps to scaling automated compliance while maintaining security
In this Help Net Security interview, Vivek Agarwal, Privacy Program Manager at Meta Platforms, shares insights on strategies for reducing time to market, improving vendor onboarding, and updating privacy requirements to ensure compliance across third.....»»
CISO accountability: Navigating a landscape of responsibility
What was once primarily a technical role, CISOs now find themselves accountable for organizational risk, regulatory compliance, and even legal liabilities across the entire organization. However, as cyber threats intensify, it’s clear that overseei.....»»
GitGuardian launches multi-vault integration to combat secrets sprawl
GitGuardian unveiled a comprehensive Non-Human Identity (NHI) security strategy with integrations across major secrets management platforms, addressing the growing challenge of secrets sprawl in enterprise environments. With Non-Human Identities—di.....»»
Report: Elon Musk failed to report movement required by security clearance
No federal agencies have accused Musk of disclosing classified information. A new investigation from The New York Times suggests that SpaceX founder Elon Musk has not been reporti.....»»
The role of Rubisco in food and energy security
As global food and energy demand continues to grow, researchers are exploring multiple strategies to boost crop productivity. While engineering plant enzymes and biochemical pathways that are more efficient remains a transformative goal, this review.....»»
Researchers reveal OT-specific malware in use and in development
Malware that’s made specifically to target industrial control systems (ICS), Internet of Things (IoT) and operational technology (OT) control devices is still rare, but in the last few weeks security researchers have identified two salient thre.....»»
PFAS detected in firefighter gloves, hoods, and wildland gear
The protective clothing worn by wildland firefighters often contains PFAS, according to a new study from the National Institute of Standards and Technology (NIST). The study also found PFAS in hoods and gloves worn by firefighters who respond to buil.....»»
Arctic Wolf acquires BlackBerry’s Cylance endpoint security assets
Arctic Wolf and BlackBerry announced they have entered into a definitive agreement for Arctic Wolf to acquire BlackBerry’s Cylance endpoint security assets. Cylance is the pioneer of AI-based endpoint protection trusted by thousands of organization.....»»
RunSafe Security Platform enhances risk management with automation
RunSafe Security has released the RunSafe Security Platform that automates risk identification, exploit prevention, and runtime software monitoring. Now, developers can generate a high-fidelity software bill of materials (SBOM) at build time, ensurin.....»»
Cybersecurity jobs available right now: December 17, 2024
CISO ONE Security | Israel | Hybrid – View job details As a CISO, you will be responsible for overseeing information security, cybersecurity, application security, and business continuity strategies. The role involves implementing and.....»»
Balancing security and user experience to improve fraud prevention strategies
In this Help Net Security interview, Jennifer White, Senior Director for Banking and Payments Intelligence at J.D. Power, discusses how financial institutions can improve customer satisfaction during fraud resolution, covering proactive fraud prevent.....»»
The shifting security landscape: 2025 predictions and challenges
As the borderless threat ecosystem poses new challenges for companies and governments worldwide, CISA’s 2025-2026 International Plan aims to address this problem. CISA’s plan calls for integrated cyber defense across borders, addressing the c.....»»
HomeKit exploit used for spyware attacks on iPhones, says Amnesty International
Amnesty International says a security vulnerability in HomeKit was used to target iPhones belonging to Serbian journalists and activists. The civil rights organization conducted an investigation after Apple notified two of the victims that their d.....»»
Security Bite: Realst malware returns to cash in on crypto boom
9to5Mac Security Bite is exclusively brought to you by Mosyle, the only Apple Unified Platform. Making Apple devices work-ready and enterprise-safe is all we do. Our unique integrated approach to management and security combines state-of-the-art App.....»»
MUT-1244 targeting security researchers, red teamers, and threat actors
A threat actor tracked as MUT-1244 by DataDog researchers has been targeting academics, pentesters, red teamers, security researchers, as well as other threat actors, in order to steal AWS access keys, WordPress account credentials and other sensitiv.....»»
Evasive Node.js loader masquerading as game hack
Malware peddlers are using NodeLoader, a loader written in Node.js, to foil security solutions and deliver infostealers and cryptominers to gamers. The malicious links in YouTube comments (Source: Zscaler ThreatLabz) Attackers leveraging the Node.js.....»»
RCS encryption is still months away following major US telecomms breach
After the FBI warned of a major security breach, the world’s leading mobile networks industry organization is spearheading efforts to bring encryption to RCS – but it’s going to take a while to get there......»»
How companies can address bias and privacy challenges in AI models
In this Help Net Security interview, Emre Kazim, Co-CEO of Holistic AI, discusses the need for companies to integrate responsible AI practices into their business strategies from the start. He explores how addressing issues like bias, privacy, and tr.....»»
Deepfakes and AI attacks are worker"s biggest security worries
Workers are more concerned about AI-backed cyberthreats and deepfakes, with many having experienced them first-hand......»»