Collaborate Disseminate
Once a secret enters Git, it’s expensive to remediate. But the real problem runs deeper than cost. Grégory Maitrallain, Solution Architect at Orange Business, discovered this reality during their implementation: “Once a secret is pushed to … Continue reading Why prevention-first secrets security will define enterprise scale: Learnings from a leading telecom
In this Help Net Security video, Ryan Seymour, VP, Consulting and Education at ConnectSecure, shares lessons from more than two decades in cybersecurity incident response. He explains why many response failures are set in motion long before an attack b… Continue reading Incident response lessons learned the hard way
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Review: AI Strategy and Security AI Strategy and Security is a guide for organizations planning enterprise AI programs. The book targets technology leader… Continue reading Week in review: Fully patched FortiGate firewalls are getting compromised, attackers probe Cisco RCE flaw
In this Help Net Security video, James Wickett, CEO of DryRun Security, explains cyber risks many teams underestimate as they add AI to products. He focuses on how fast LLM features are pushed into live applications without limits or guardrails. The vi… Continue reading Unbounded AI use can break your systems
Penetration testing has evolved significantly over the past several years. While uncovering exploitable vulnerabilities remains the core goal, the real differentiator today is how findings are handled after the testing concludes. The method of reportin… Continue reading The 2026 State of Pentesting: Why delivery and follow-through matter more than ever
Keepnet launched its Agentic AI for Behavioral Microlearning solution, which moves success metrics from “completion rates” to behavior change and verifiable incident reduction. Agentic AI autonomously plans, creates, delivers, and optimizes training ba… Continue reading Keepnet bets on agentic AI behavioral training to curb security mistakes
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: What security teams can learn from torrent metadata Security teams often spend time sorting through logs and alerts that point to activity happening outsi… Continue reading Week in review: PoC for FortiSIEM flaw released, Rakuten Viber CISO/CTO on messaging risks
If you’ve done a pentest before, you know things can get messy fast. You start organized, but a few hours in, notes are scattered, screenshots have odd filenames, and small details get lost. PentestPad was built to help with that, not to change how you… Continue reading Product showcase: Penetration test reporting with PentestPad
Join former Gartner analyst Ravisha Chugh and Abnormal’s Director of Product Marketing, Lane Billings, on January 20th for an exclusive insider look at how email security vendors will be evaluated in 2026. Backed by years of analyst experience and deep… Continue reading Webinar: Beyond the Quadrant: An Analyst’s Guide to Evaluating Email Security in 2026
In this Help Net Security video, Bryan Sacks, Field CISO at Myriad360, explains how security leaders can measure cybersecurity in ways that matter to executives and boards. He argues that metrics should support decisions, not exist for reporting alone…. Continue reading Turning cyber metrics into decisions leaders can act on