Tag: Help Net Security

Attackers are actively exploiting another FortiWeb vulnerability (CVE-2025-58034) that Fortinet fixed without making its existence public at the time. About CVE-2025-58034 CVE-2025-58034 is an OS Command Injection flaw caused by improper neutralization of special elements. It allows authenticated attackers to…

Read more →

Black Kite announced the release of Black Kite AI Agent, an agent that automatically investigates, assesses, and reports on third-party risk. “Our strong performance validates that our accuracy, scalability, and transparent approach is more than meeting the demands to avoid…

Read more →

Sometimes an attack hides in the most ordinary corner of a network. ESET researchers say a China aligned threat group known as PlushDaemon has been quietly using hacked routers to steer software updates toward its own servers. The discovery shows…

Read more →

Arctic Wolf announced a new integration between the Arctic Wolf Aurora Platform and Abnormal AI, expanding detection and response capabilities across one of the most targeted attack surfaces, email. The integration brings Abnormal AI’s behavioral AI detections directly into Arctic…

Read more →

Sophos announced the general availability of new integrations that connect Sophos Intelix, its cyber threat intelligence repository, with Microsoft Security Copilot and Microsoft 365 Copilot. Organizations of all sizes now gain real-time access to Sophos threat intelligence within Microsoft’s AI-powered…

Read more →

Vanta unveiled a number of new products that redefine how enterprises earn and prove trust at scale. Powered by intelligent automation, Vanta’s Agentic Trust Platform helps teams understand their environment, anticipate what’s next, and automate workflows across compliance, risk, and…

Read more →

Tanium announced the general availability of Tanium Security Triage Agent and Tanium Security Triage Agent with Identity Insights in Microsoft Security Copilot. “Agentic AI is transforming the workflows used by security operations to respond, prioritize and act,” said Dan Varga,…

Read more →

Cayosoft announced an expansion in the deployment of its flagship platform, Cayosoft Guardian SaaS. This milestone marks a significant evolution in identity continuity, empowering enterprises to detect, respond, and recover instantly, even when infrastructure is under attack. Enterprises can now…

Read more →

authID unveiled the authID Mandate Framework, a comprehensive governance model for agentic AI security with support for non-human identities, including autonomous and semi-autonomous AI agents. Mandate provides enterprises with the trust foundation, policy controls, and auditability needed to safely deploy…

Read more →

F5 introduced BIG-IP v21.0, giving customers a unified approach to app delivery, security, and scale in the AI era. This major release extends the F5 Application Delivery and Security Platform (ADSP) with a purpose-built delivery engine for application workloads—reducing operational…

Read more →

CyberProof has launched its new Agentic AI framework and SOC agents which are designed to improve threat detection, incident response, and operational efficiency for exposure and defense management. This framework is a key part of CyberProof’s Threat-led defense methodology, orchestrating…

Read more →

Nightfall announced the launch of AI File Classifier Detectors, the first solution to use large language models (LLMs) to classify and protect business-critical documents that traditional DLP tools cannot see. Most high-value assets, including source code, financial reports, strategic roadmaps,…

Read more →

Online scammers often take weeks to build trust before making a move, which makes their work hard to study. A research team from UC San Diego built a system that does the patient work of talking to scammers at scale,…

Read more →

Bitwarden announced expanded passkey login capabilities for Bitwarden browser extensions. The update enables users to access their vaults in Chromium-based browsers using a passkey instead of a master password, delivering a secure, phishing-resistant authentication method that protects against credential theft.…

Read more →

Metis is an open source tool that uses AI to help engineers run deep security reviews on code. Arm’s product security team built Metis to spot subtle flaws that are often buried in large or aging codebases where traditional tools…

Read more →

In this Help Net Security video, Jon Taylor, Director and Principal of Security at Versa Networks, talks about how organizations can deal with security tool sprawl. He explains why many teams end up with too many tools, especially as zero…

Read more →

Managing passwords can be a real headache, and it’s still common to fall back on reusing them or storing them in a browser without much protection. Proton Pass, built by the Swiss company Proton AG (the team behind Proton Mail…

Read more →

A currently undisclosed issue has crippled Cloudflare’s network and has rendered a large swathe of internet’s most popular sites and services temporily inaccessible today. Some of the sites and services affected by the Cloudflare outage (Source: Down Detector) What happened?…

Read more →

Kentik has launched the Kentik AI Advisor, an agentic AI solution that understands enterprise and service provider networks, thinks critically, and offers guidance for designing, operating, and protecting infrastructure at scale. “We’ve been using Kentik AI Advisor in early access,…

Read more →

Google has shipped an emergency fix for a Chrome vulnerability (CVE-2025-13223) reported as actively exploited in the wild by its Threat Analysis Group (TAG). About CVE-2025-13223 CVE-2025-13223 is a type confusion vulnerability in V8, the JavaScript and WebAssembly engine used…

Read more →