The SOC’s visibility gap comes down to staffing
A new report reveals that while 80% of security operations center (SOC) practitioners use AI or machine learning tools daily, only a third have integrated them into structured workflows with governanc…
A new report reveals that while 80% of security operations center (SOC) practitioners use AI or machine learning tools daily, only a third have integrated them into structured workflows with governanc…
A critical authentication bypass vulnerability (CVE-2026-48558) in SimpleHelp's remote monitoring and management tool allows unauthenticated attackers to create a Technician account and gain full acce…
Oscar Andersson, CTO at Oplane, argues that most AI threat-modeling scanning tools fail because they flag threats that cannot run in real code, emphasizing that findings only matter when they are reac…
Cybersecurity expert Chris Hughes discusses the rise of machine identities and agentic AI, emphasizing the need for new security measures to maintain trust as systems gain autonomy in enterprises.…
AI-powered vulnerability discovery tools are driving a surge in disclosed software flaws, with the Forum of Incident Response and Security Teams (FIRST) now projecting 66,000 CVEs in 2026, far exceedi…
LTM launched BlueVerse for iRun, an AI-native managed services platform that uses agentic AI to transform IT operations into a resilient, intelligent, and outcome-driven function. The offering moves b…
Elastic Security Labs released an open-source CI/CD Abuse Detector that uses Anthropic's Claude LLM to analyze pull-request diffs for malicious workflow changes in GitHub Actions, GitLab CI, and Azure…
Senior engineers at U.S. technology companies are spending their weeks cleaning up AI-generated code, which, despite receiving high quality ratings during review, leads to more production incidents on…
Google released the Google Colab CLI, a command-line tool that connects local terminals to remote Colab runtimes, enabling users to provision CPU, GPU, and TPU sessions and execute local Python script…
Google has filed a lawsuit against Outsider Enterprise, a China-based cybercrime network accused of using its Gemini AI tool to build phishing websites and scam infrastructure. The company alleges the…
Security teams are mapping NIST's AI Risk Management Framework to ISO/IEC 42001 to create a unified governance playbook for autonomous AI agents in production environments. According to Check Point's …
ZeroFox launched ZeroFox AI Analytics, a new platform capability that provides security teams with real-time visibility into signals, patterns, and trends shaping their external threat landscape. The …
Data centers built for frontier AI consume hundreds of megawatts of power and large volumes of cooling water from fixed, known locations, concentrating tens of thousands of graphics processors and hig…
Anthropic published an analysis of 832 accounts banned for malicious cyber activity between March 2025 and March 2026, mapping their behavior to version 18 of the MITRE ATT&CK framework. The study fou…
Amit Gautam, CTO at AI-security vendor Abluva, outlined in a Help Net Security video how autonomous AI agents introduce governance and security risks inside enterprises. Gautam demonstrated a scenario…
AgentGG, an open-source static application security testing (SAST) scanner released under the Apache 2.0 license, uses AI agents to read source code, follow imports, walk call graphs, and confirm find…
Amit Gautam, CTO at Abluva, warned that autonomous AI agents pose escalating security risks as their numbers surpass human oversight in enterprises. He cited a real incident where a financial firm's r…
Multiple cybersecurity vendors, including Asimily, Hyland, and Diligent, released new products this week. Asimily launched Segmentation Orchestration, which automates network policy enforcement based …
Organizations preparing for CMMC and FedRAMP 20x often check 110 requirements but overlook the 320 assessment objectives beneath them, according to Secureframe's Head of Cybersecurity and Compliance M…
Microsoft released a suite of security tools addressing vulnerabilities in code, AI agents, and AI models, including a multi-agent vulnerability discovery system called MDASH that now integrates with …