Collaborate Disseminate
Resecurity has identified the emergence of uncensored darknet AI assistants, enabling threat actors to leverage advanced data processing capabilities for malicious purposes. One of these – DIG AI – was identified on September 29 of this yea… Continue reading DIG AI: Uncensored darknet AI assistant at the service of criminals and terrorists
In this Help Net Security video, Simon Wijckmans, CEO at cside, discusses why session token theft is rising and why security teams miss it. He walks through how web applications rely on browsers to store session tokens after login often in cookies or b… Continue reading Session tokens give attackers a shortcut around MFA
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: How researchers are teaching AI agents to ask for permission the right way People are starting to hand more decisions to AI agents, from booking trips to … Continue reading Week in review: Exploited zero-day in Cisco email security appliances, Kali Linux 2025.4 released
NAKIVO Backup & Replication v11.1 brings a host of benefits to MSPs and their clients. It eliminates the need for client-side port configuration, enhances security with encrypted multi-platform support, and introduces automated failover capabiliti… Continue reading Product showcase: NAKIVO v11.1 advances MSP service delivery with secure multi-tenant management
Between June 2024 and December 2025, Fortra analysts tracked a persistent business email compromise (BEC) operation that we have now classified as Scripted Sparrow. The group carries out well-crafted highly targeted phishing campaigns that masquerade a… Continue reading Clipping Scripted Sparrow’s wings: Tracking a global phishing ring
Miggo Security has released a new report that examines how web application firewalls are used across real-world security programs. The research outlines the role WAFs play as foundational infrastructure and evaluates their effectiveness against critica… Continue reading More than half of public vulnerabilities bypass leading WAFs
In this Help Net Security video, Larry Slusser, VP of Strategy at SixMap, explains why endpoint detection and response is only part of the security story. Drawing on his work as an incident responder, engagement manager, and ransomware negotiator, he d… Continue reading How exposure management changes cyber defense
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: 40 open-source tools redefining how security teams secure the stack Open source security software has become a key way for teams to get flexibility, trans… Continue reading Week in review: 40 open-source tools securing the stack, invisible IT to be the next workplace priority
In this Help Net Security video, Andréanne Bergeron, Security Researcher at Flare, explains how changes in user habits, policy shifts, and new tools have shaped password security over nearly twenty years. She walks through research based on leaked pass… Continue reading Password habits are changing, and the data shows how far we’ve come
Tuta, formerly known as Tutanota, is built for anyone who wants email that stays private. Instead of treating encryption like a bonus feature, the service encrypts almost everything by default. That means your messages are locked down from the moment y… Continue reading Product showcase: Tuta – secure, encrypted, private email