Help Net Security newsletters: Daily and weekly news, cybersecurity jobs, open source projects, breaking news – subscribe here!

Please turn on your JavaScript for this page to function normally.

Cybersecurity news

CISA
CISA orders federal agencies to “patch smarter”
Oracle
Oracle PeopleSoft servers under attack, Oracle pushes out-of-band security alert
malware
Fake Spotify Premium tutorials on TikTok and Instagram Reels spread malware
US Department of Justice
FBI seizes 13 websites linked to alleged Chinese intelligence-gathering effort
deepfakes
9 out of 10 people can no longer distinguish real from AI-generated content
insider threat
Threat actors are recruiting the people who hold cloud logins
GDPR-compliant cloud storage
Making the cloud prove it followed your privacy wishes
brain
Prompt injection still drives most agentic AI security failures in production
Proxmox
Proxmox releases Mail Gateway 9.1 with quarantine and backup encryption changes
X Square Robot open sources its robot-free data collection framework
Organizations can’t see much of their mobile AI activity
Identity theft is turning into a chain reaction for victims

Focus spotlight

Ivanti
Critical Ivanti Sentry flaw allows root-level remote code execution (CVE-2026-10520)

RESOURCES

Expert corner

The architecture of subtraction: Why it’s time to erase the roads, not just map the traffic
Christopher Frenz Enterprise CISO and Founder, Subtractive Security
The architecture of subtraction: Why it’s time to erase the roads, not just map the traffic
The modern-day business can learn a lot about risk from this year’s mega events
Matt Kunkel CEO, LogicGate
The modern-day business can learn a lot about risk from this year’s mega events
From critical to controlled: Cutting vulnerabilities in a live manufacturing environment
Sean Sailors Information Security Engineer, PDW
From critical to controlled: Cutting vulnerabilities in a live manufacturing environment
Attackers already know the secrets are on your developers’ machines. Do you?
Thomas Segura Tech content writer, GitGuardian
Attackers already know the secrets are on your developers’ machines. Do you?
Why you need BAS and autonomous pentesting together
Sıla Özeren Hacıoğlu Security Research Engineer, Picus Security
Why you need BAS and autonomous pentesting together

Videos

Cyber resilience metrics that drive action
Cyber resilience metrics that drive action
When attacks spread too far: Lessons from real cyber attack case studies
When attacks spread too far: Lessons from real cyber attack case studies
AI agent governance gets harder when agents outnumber your people
AI agent governance gets harder when agents outnumber your people
What CISOs need to do about post-quantum migration in the next 24 months
What CISOs need to do about post-quantum migration in the next 24 months
Governing shadow AI without killing innovation
Governing shadow AI without killing innovation

Industry news

CISO focus

Latest resources
Cybersecurity news
Daily newsletter sent Monday-Friday
Weekly newsletter sent on Mondays
Editor's choice newsletter sent twice a month
Periodical newsletter released for important security events and breaking news
Weekly newsletter listing new cybersecurity job positions
Monthly newsletter focusing on open source cybersecurity tools