Help Net Security newsletters: Daily and weekly news, cybersecurity jobs, open source projects, breaking news – subscribe here!

Please turn on your JavaScript for this page to function normally.
malware
Fake Spotify Premium tutorials on TikTok and Instagram Reels spread malware

Cybercriminals are using TikTok and Instagram Reels videos to spread Vidar, an infostealer malware, through fake downloads for popular paid software, according to …

Oracle
Oracle PeopleSoft servers under attack, Oracle pushes out-of-band security alert

A zero-day vulnerability (CVE-2026-35273) in Oracle PeopleSoft PeopleTools is being exploited in the wild, Charles Carmakal, CTO at cybersecurity firm Mandiant, part of Google …

US Department of Justice
FBI seizes 13 websites linked to alleged Chinese intelligence-gathering effort

Federal authorities have seized 13 internet domains allegedly used to target current and former U.S. government employees and military personnel with access to classified and …

deepfakes
9 out of 10 people can no longer distinguish real from AI-generated content

Online fraud is becoming harder to distinguish from legitimate activity as AI-generated messages, voices, photos, reviews, and identities become more convincing. Nearly nine …

Help Net Security
Check Point expands MSP platform with with AI governance and unified security bundles

Check Point has announced a major expansion of its Managed Service Provider (MSP) platform, designed to help MSPs secure AI adoption, streamline operations and simplify …

Help Net Security
IDnow launches Trust Platform to help regulated firms move from KYC to continuous trust

IDnow has announced the launch of the IDnow Trust Platform, designed to help regulated organisations orchestrate identity verification, fraud prevention, biometric …

insider threat
Threat actors are recruiting the people who hold cloud logins

Companies keep most of their data and applications in cloud platforms that anyone can reach with the right login. That setup turns each employee holding those credentials into …

GDPR-compliant cloud storage
Making the cloud prove it followed your privacy wishes

Companies that store personal data in cloud key-value databases should handle deletion requests by running the operation and confirming the job is complete. The people making …

brain
Prompt injection still drives most agentic AI security failures in production

A backdoor sat on PyPI for three hours in March 2026. Nearly 47,000 downloads occurred during the window. The compromised package, LiteLLM, serves as the language-model …

Robot
X Square Robot open sources its robot-free data collection framework

Companies building robots for physical work spend large amounts of time and money operating machines by hand to gather training examples. Each session with a physical robot …

smartphone
Organizations can’t see much of their mobile AI activity

Organizations have limited visibility into AI activity on mobile devices despite security leaders expressing confidence in their AI governance, according to Lookout’s …

identity
Identity theft is turning into a chain reaction for victims

For a growing number of victims, identity theft no longer ends with a fraudulent charge or a compromised account. More than one in four people who contacted the Identity Theft …

Don't miss

Cybersecurity news
Daily newsletter sent Monday-Friday
Weekly newsletter sent on Mondays
Editor's choice newsletter sent twice a month
Periodical newsletter released for important security events and breaking news
Weekly newsletter listing new cybersecurity job positions
Monthly newsletter focusing on open source cybersecurity tools