Security
Headlines
HeadlinesLatestCVEs

Source

DARKReading

Using Third-Party ID Providers Without Losing Zero Trust

With $4.4 billion in worldwide data breach fines in 2024, the cost of not knowing who's walking into your systems is devastating.

DARKReading
Organizations Lack Incident Response Plans, but Answers Are on the Way

Developing strong incident response plans remains an area that requires significant improvement. Here are some shortcomings and how to address them.

10 Bugs Found in Perplexity AI's Chatbot Android App

Researchers characterize the company's artificial intelligence chatbot as less secure than ChatGPT and even DeepSeek.

#android#intel
Zero-Day in CentreStack File-Sharing Platform Under Attack

Gladinet's platform is widely used among managed service providers, and a critical deserialization flaw could put MSP customers in jeopardy.

AuthZEN Aims to Harmonize Fractured Authorization Controls

Managing permissions and authorizations across dozens or hundreds of cloud services and platforms poses significant headaches for companies. An open specification aims to change that.

Trump's DoJ Targets Krebs, Revokes SentinelOne Security Clearance

An executive order is targeting former Trump appointees, including former CISA director Chris Krebs and his current coworkers, in the latest in a series of directives against those who dissented against the president and his associates.

What Should the US Do About Salt Typhoon?

Security experts weigh in on the problem Salt Typhoon and its hacking of telecoms poses against the United States, including what the US should do and how defenders can protect themselves.

Open Source Poisoned Patches Infect Local Software

Malicious packages lurking on open source repositories like npm have become less effective, so cyberattackers are using a new strategy: offering "patches" for locally installed programs.