Help Net Security newsletters: Daily and weekly news, cybersecurity jobs, open source projects, breaking news – subscribe here!

Please turn on your JavaScript for this page to function normally.

Cybersecurity news

CISA
JSP webshells being dropped on unpatched PTC Windchill instances
AI
Mozilla warns of indirect prompt injection risk in AI coding agents
OpenAI
GPT-5.6 gets better at cybersecurity
DarkMoon
DarkMoon: Open-source AI pentesting platform
face
Sycophantic chatbots and the harms that build over many chats
See
Companies keep bolting AI onto their products, and the security bill is coming due
lock
Most teams accept higher risk for faster AI database work
open source
Critical open-source projects get a new security framework
Synology
Synology issues critical fix for MailPlus Server vulnerabilities
Mirage2FA phishing kit uses HTML smuggling to steal Microsoft 365 credentials
Ransomware gangs find Europe’s weakest link in third-party suppliers
Mystery hackers use novel SharkLoader dropper against governments, software devs

Focus spotlight

Mattias Geniar
The uptime questions every engineering leader should ask this week

RESOURCES

Expert corner

EU Cybersecurity Act 2.0: When good regulation goes bad
Brian Honan CEO, BH Consulting
EU Cybersecurity Act 2.0: When good regulation goes bad
The rise of machine identities and agentic AI: Securing trust in the next era of digital autonomy
Phil Calvin Chief Product Officer, Delinea
The rise of machine identities and agentic AI: Securing trust in the next era of digital autonomy
How to use NIST and ISO frameworks to govern AI agents
Ido Shlomo CTO, Token Security
How to use NIST and ISO frameworks to govern AI agents
The architecture of subtraction: Why it’s time to erase the roads, not just map the traffic
Christopher Frenz Enterprise CISO and Founder, Subtractive Security
The architecture of subtraction: Why it’s time to erase the roads, not just map the traffic
The modern-day business can learn a lot about risk from this year’s mega events
Matt Kunkel CEO, LogicGate
The modern-day business can learn a lot about risk from this year’s mega events

Videos

What your next cyber insurance renewal will demand
What your next cyber insurance renewal will demand
23 ClawHub plugins squatting official scopes expose AI registry security gaps
23 ClawHub plugins squatting official scopes expose AI registry security gaps
Navigating SEC, NIS2, and DORA incident disclosure timelines under pressure
Navigating SEC, NIS2, and DORA incident disclosure timelines under pressure
Cyber resilience metrics that drive action
Cyber resilience metrics that drive action
When attacks spread too far: Lessons from real cyber attack case studies
When attacks spread too far: Lessons from real cyber attack case studies

Industry news

CISO focus

Latest resources
Cybersecurity news
Daily newsletter sent Monday-Friday
Weekly newsletter sent on Mondays
Editor's choice newsletter sent twice a month
Periodical newsletter released for important security events and breaking news
Weekly newsletter listing new cybersecurity job positions
Monthly newsletter focusing on open source cybersecurity tools