News Archives - Help Net Security

News

Mounting pressure is creating a ticking time bomb for railway cybersecurity

January 30, 2023

The expansion of potential cyber threats has increased due to the integration of connected devices, the Internet of Things (IoT), and the convergence of IT and OT in railway …

Insider attacks becoming more frequent, more difficult to detect

January 30, 2023

Insider threats are a top concern at organizations of all kinds; only 3% of respondents surveyed are not concerned with insider risk, according to Gurucul. With responses from …

Week in review: ChatGPT cybersecurity, critical RCE vulnerabilities found in git, Riot Games breached

January 29, 2023

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: BSidesZG 2023: Strengthening the infosec community in Croatia’s capital In …

New infosec products of the week: January 27, 2023

January 27, 2023

Here’s a look at the most interesting products from the past week, featuring releases from Perimeter 81, SpyCloud, ThreatConnect, Venafi, and Wallarm. SpyCloud Compass …

Open source skills continue to be in high demand

January 27, 2023

80% of organizations increased their use of open source software over the last 12 months, according to Perforce Software and the Open Source Initiative. Four out of five …

50% of organizations exceed their budgeted spend on cloud storage

January 27, 2023

Enterprises are going all-in on cloud storage, with average stored capacity in the public cloud expected to reach 43% of their total storage footprint by 2024, and the vast …

Authorities shut down HIVE ransomware infrastructure, provide decryption tools

January 26, 2023

Europol supported the German, Dutch and US authorities in taking down the infrastructure of the prolific HIVE ransomware. This international operation involved authorities …

Researchers release PoC exploit for critical Windows CryptoAPI bug (CVE-2022-34689)

January 26, 2023

Akamai researchers have published a PoC exploit for a critical vulnerability (CVE-2022-34689) in Windows CryptoAPI, which validates public key certificates. “An attacker …

Attackers use portable executables of remote management software to great effect

January 26, 2023

Tricking users at targeted organizations into installing legitimate remote monitoring and management (RMM) software has become a familiar pattern employed by financially …

ChatGPT is a bigger threat to cybersecurity than most realize

January 26, 2023

A language-generating AI model called ChatGPT, available for free, has taken the internet by storm. While AI has the potential to help IT and security teams become more …

Supply chain attacks caused more data compromises than malware

January 26, 2023

The first half of 2022 saw fewer compromises reported due in part to Russia-based cybercriminals distracted by the war in Ukraine and volatility in the cryptocurrency markets, …

Riot Games breached: How did it happen?

January 25, 2023

The hackers who breached Riot Games last week are asking for $10 million not to leak the stolen source code for the company’s popular League of Legends online game. The …

News

Mounting pressure is creating a ticking time bomb for railway cybersecurity

Insider attacks becoming more frequent, more difficult to detect

Week in review: ChatGPT cybersecurity, critical RCE vulnerabilities found in git, Riot Games breached

New infosec products of the week: January 27, 2023

Open source skills continue to be in high demand

50% of organizations exceed their budgeted spend on cloud storage

Authorities shut down HIVE ransomware infrastructure, provide decryption tools

Researchers release PoC exploit for critical Windows CryptoAPI bug (CVE-2022-34689)

Attackers use portable executables of remote management software to great effect

ChatGPT is a bigger threat to cybersecurity than most realize

Supply chain attacks caused more data compromises than malware

Riot Games breached: How did it happen?

Don't miss

How organizations can keep themselves secure whilst cutting IT spending

Mounting pressure is creating a ticking time bomb for railway cybersecurity

3 business application security risks businesses need to prepare for in 2023

Researchers release PoC exploit for critical Windows CryptoAPI bug (CVE-2022-34689)

Attackers use portable executables of remote management software to great effect