Help Net Security newsletters: Daily and weekly news, cybersecurity jobs, open source projects, breaking news – subscribe here!

Please turn on your JavaScript for this page to function normally.

Cybersecurity news

Microsoft 365 phishing
EvilTokens ramps up device code phishing targeting Microsoft 365 users
npm
Axios npm packages backdoored in supply chain attack
AWS
Amazon sends AI agents into pen testing and DevOps
Apple
Apple counters ClickFix attacks with macOS Terminal warning
identity
Why I’m done calling humans the weakest link
Download: 2026 SANS Identity Threats & Defenses Survey
Ransomware file restoration for Google Drive
Google Drive now detects ransomware and helps restore affected files
crypto scams
Hacker stripped more than $50 million from Uranium crypto exchange, spent it on trading cards
Windows 11
Windows 11 gets a rebuilt console engine with regex search, Sixel images and a 10x speed boost
Android developers just got a new verification layer
Intel puts its data center performance knowledge on GitHub
The art of making technical risk make sense to executives

Focus spotlight

AI
AI SOC vendors are selling a future that production deployments haven’t reached yet

RESOURCES

Expert corner

Why I’m done calling humans the weakest link
Brian Honan CEO, BH Consulting
Why I’m done calling humans the weakest link
Why risk alone doesn’t get you to yes
Chuck Randolph Chief Strategy Officer, 360 Privacy
Why risk alone doesn’t get you to yes
Why workforce identity is still a vulnerability, and what to do about it
Mike Engle Chief Strategy Officer, 1Kosmos
Why workforce identity is still a vulnerability, and what to do about it
Why SOCs are moving toward autonomous security operations in 2026
Subo Guha SVP of Product Management, Stellar Cyber
Why SOCs are moving toward autonomous security operations in 2026
How AI is reshaping attack path analysis
Dan DeCloss Chief Customer & Brand Officer, PlexTrac
How AI is reshaping attack path analysis

Videos

The art of making technical risk make sense to executives
The art of making technical risk make sense to executives
Why your phishing simulations aren’t building a security culture
Why your phishing simulations aren’t building a security culture
Cloud misconfiguration has evolved and your controls haven’t
Cloud misconfiguration has evolved and your controls haven’t
What to do in the first 24 hours of a breach
What to do in the first 24 hours of a breach
Passwords, MFA, and why neither is enough
Passwords, MFA, and why neither is enough

Industry news

Latest resources

RSAC 2026
Cybersecurity news
Daily newsletter sent Monday-Friday
Weekly newsletter sent on Mondays
Editor's choice newsletter sent twice a month
Periodical newsletter released when there is breaking news
Weekly newsletter listing new cybersecurity job positions
Monthly newsletter focusing on open source cybersecurity tools