Man jailed for teaching criminals how to use malware
Regular readers of Hot for Security will have read plenty of articles about cybercriminals who have created malware, or malicious...
about
The State of the 2025 Cyber Workforce: Skills Gaps, AI Opportunity and Economic Strain
Over the past few years, I have learned quite a bit about the cyber workforce from the annual ISC2 workforce...
SMS Phishers Pivot to Points, Taxes, Fake Retailers
China-based phishing groups blamed for non-stop scam SMS messages about a supposed wayward package or unpaid toll fee are promoting...
What People Really Ask AI About Cybersecurity (And Why It Should Worry CISOs)
What People Really Ask AI About Cybersecurity (And Why It Should Worry CISOs) Table of Contents The New Public Forum...
Webinar: The “Agentic” Trojan Horse: Why the New AI Browsers War is a Nightmare for Security Teams
The AI browser wars are coming to a desktop near you, and you need to start worrying about their security...
The Most Impersonated Brands in Holiday Shopping, Ranked
Scammers aren’t worried about ending up on the naughty list. If anything, they’re doubling down in 2025. This year, scammers are impersonating major brands with startling accuracy,...
Second Sha1-Hulud Wave Affects 25,000+ Repositories via npm Preinstall Credential Theft
Nov 24, 2025Ravie LakshmananCloud Security / Vulnerability Multiple security vendors are sounding the alarm about a second wave of attacks...
MY TAKE: Carol Sturka declares ‘I have agency!’ — Big Tech’s AI models now testing that claim
By Byron V. Acohido It was a tense moment in Episode 4 of Pluribus, the Apple TV series about...
What’s New in Cloud Monitor & Classroom Manager: Smarter Tools for K–12 Classrooms
At ManagedMethods, we’re always listening and thinking about how we can make our cybersecurity, student safety, and classroom management...
A miracle: A company says sorry after a cyber attack – and donates the ransom to cybersecurity research
One of the sad truths about this world of seemingly endless hacks and data breaches is that companies just won't...
AI Application Vulnerability Remediation: Why AI Vulnerability Fixes Fail Without Runtime Context
TL;DR AI-powered vulnerability remediation often fails because it lacks context about how your applications actually work. Runtime intelligence solves...
Can You Future-Proof Your Life in the Age of AI? (Book Review)
When Ranan Lachman reached out to tell me about his new book on future-proofing your world as AI accelerates change...
Now-Patched Fortinet FortiWeb Flaw Exploited in Attacks to Create Admin Accounts
Nov 14, 2025Ravie LakshmananThreat Intelligence / Vulnerability Cybersecurity researchers are sounding the alert about an authentication bypass vulnerability in Fortinet...
Rust in Android: move fast and fix things
Posted by Jeff Vander Stoep, Android Last year, we wrote about why a memory safety strategy that focuses on vulnerability...
Intel Sues Ex-Employee It Claims Stole 18,000 Company Files
IT giant Intel is reportedly suing a former employee who allegedly downloaded about 18,000 files days before leaving the...
