Good news for defenders — patches, takedowns, arrests, and security improvements.
This article discusses common mistakes organizations make when conducting tabletop exercises for incident response. It highlights the importance of clear objectives, realistic scenarios, and involving diverse stakeholders to ensure these simulations effectively test preparedness for cyber incidents.
Anthropic's AI model, Mythos, will be made available to the European Union's Agency for Cybersecurity (ENISA) through a collaboration known as Project Glasswing. This initiative stems from close cooperation between the European Commission and Anthropic.
Dutch police have successfully dismantled a massive botnet consisting of 17 million infected devices. This botnet was allegedly used to operate a residential proxy network and facilitate various cybercriminal activities.
The EFF welcomes Nicole Ozer as its new Executive Director. Ozer is a legal expert with extensive experience in privacy, surveillance, and AI, and has previously worked with the ACLU of Northern California.
Dragos has acquired xIoT security firm Phosphorus. This acquisition is expected to enhance asset visibility, device intelligence, and automated remediation workflows for Dragos customers.
This article announces a webinar focusing on improving network incident response times. It will cover how automation and AI-assisted workflows can help IT teams accelerate the process from initial alert to final resolution.
This article presents a pop quiz specifically for the CompTIA A+ 220-1201 certification exam, focusing on a topic applicable to a wide range of IT systems. It is hosted on Professor Messer's website, known for providing free IT certification training resources.
Managed Service Providers (MSPs) are evolving beyond basic vCISO (virtual Chief Information Security Officer) tools, which previously focused on assessments, advisory, and reporting. The industry is shifting towards 'Security Growth Platforms' to meet the expanding needs of MSPs and Managed Security Service Providers (MSSPs).
Microsoft has released a fix for installation problems affecting the May 2026 Windows 11 security update, identified as KB5089549. The update was experiencing installation failures, often accompanied by the error code 0x800f0922, preventing users from successfully applying the security patch.
The CSO30 ASEAN & Hong Kong Awards are now open for nominations for 2026, recognizing cybersecurity leaders and teams for their contributions to regional resilience. The awards aim to highlight impactful achievements in strengthening cyber posture, influencing strategic decisions, and building ecosystem partnerships.
YARA-X, a popular tool for malware analysis and threat hunting, has released version 1.17.0. This update includes five performance enhancements and one bug fix, aiming to improve the efficiency of its pattern-matching capabilities.
Dutch authorities have successfully dismantled a large botnet comprising at least 17 million infected devices, including computers, tablets, smartphones, and IoT devices. The operation, conducted by the Dutch Politie and the National Cyber Security Center (NCSC), involved taking down over 200 servers used to control the bot network.
This post, titled "Friday Squid Blogging: Another Squid," serves as a recurring informal update and discussion thread for readers of Schneier on Security. It mentions a "West Country legend" named Squid and encourages readers to discuss other security news stories not covered by the author.
Dark Reading is celebrating its 20th anniversary by asking readers to submit cybersecurity-related captions for a cartoon. The initiative aims to reflect on the progress and evolution of the cybersecurity industry over the past two decades.
The Linux Foundation is launching DNS-AID, an open-source project to standardize how AI agents discover and communicate with each other using existing DNS infrastructure. This aims to provide a secure and vendor-neutral directory for AI agents, preventing sprawl and ensuring trust in connectivity.
Swiss researchers have developed a new method for generating truly random numbers using quantum superconducting chips and a long microwave pipe. This advancement aims to overcome biases found in traditional random number generators, which have previously led to security issues in various applications.
The cyber insurance market in Asia has historically struggled to gain traction due to various challenges. However, recent indications suggest a potential resurgence and growth in this sector across the region.
MokN has secured $15 million in funding for its "Phish-Back" platform. This platform aims to lure attackers into revealing compromised credentials by deploying realistic decoy access points, allowing organizations to respond proactively before these credentials can be misused.
Google has rolled out its Device Bound Session Credentials (DBSC) security feature to all Chrome users. This new feature aims to prevent account takeovers by protecting against session cookie theft, a common method used by attackers.
This article presents a pop quiz for the CompTIA A+ 220-1202 certification exam. It is designed to test users' knowledge of the exam's objectives and terminology.
Public companies are now required by the SEC to include a section in their annual 10-K filings detailing their cybersecurity risk management, strategy, governance, and incidents. This article analyzes these filings, focusing on the top 200 S&P companies, to understand how senior executives are reporting on their cybersecurity posture and to identify trends. The research specifically examines the role of the Chief Information Security Officer (CISO) and their reporting structure.
IBM and Red Hat are launching Project Lightwell, a new initiative backed by a $5 billion investment and 20,000 engineers, to create an 'enterprise clearinghouse' for open source applications. This AI-powered platform aims to accelerate the discovery and remediation of vulnerabilities in open source software, addressing the challenge of rapid patching in enterprise environments.
Snowflake has acquired Natoma, a data security startup focused on preventing unauthorized access and data leakage. This acquisition aims to bolster Snowflake's security offerings, particularly in protecting sensitive data from rogue agents and insider threats.
Geordie, a company focused on AI security and governance, has successfully raised $30 million in a funding round. The round was led by Balderton Capital, with participation from Crosspoint Capital and existing investors General Catalyst and Ten Eleven Ventures.
This article presents a pop quiz for the CompTIA Security+ SY0-701 certification exam, focusing on a specific topic with an unexpected development. It is part of a series of practice questions designed to help individuals prepare for the certification.
Managed Service Providers (MSPs) often face an overwhelming volume of security alerts, making it difficult to identify genuine threats. Kaseya highlights how Security Information and Event Management (SIEM) solutions can help MSPs cut through this 'noise' by improving visibility, reducing alert fatigue, and enabling faster threat response.
IBM and Red Hat are investing $5 billion in "Project Lightwell" to strengthen the security of open-source software supply chains. This initiative aims to address vulnerabilities without disrupting existing production systems.
This article discusses how the cyber insurance industry is compelling organizations to quantify their security risks. It explores what cyber insurance policies typically cover and highlights how this focus on risk assessment can ultimately improve overall cybersecurity posture.
This article announces a webinar that will discuss why network incidents often take too long to resolve, even when detection is fast. It will explore how automation and AI can help IT teams improve incident response times and reduce delays.
This article presents a pop quiz for the CompTIA A+ 220-1201 certification, focusing on hardware identification and terminology. It's part of Professor Messer's free IT certification training resources.
Edamame, a startup based in France, has launched a new runtime verification platform. This platform is designed to detect when AI coding agents deviate from their intended tasks, steal secrets, or engage in supply-chain attacks by analyzing host telemetry and AI data in real time.
Google has launched a new AI Threat Defense platform designed to combat AI-powered cyberattacks. This platform integrates capabilities from Mandiant, Wiz, and Gemini to provide customers with AI-driven defenses.
A survey of CISOs in Nordic countries indicates that most are not experiencing an increase in the severity or frequency of cyberattacks compared to two years ago. This resilience is observed despite the growing prevalence and capabilities of artificial intelligence in the threat landscape.
Sophos has been recognized as the number one vendor in multiple categories by G2 for the second consecutive time in their Summer 2026 Reports. The company received top rankings in Endpoint, EDR, XDR, MDR, and Firewall solutions, alongside an overall #1 position.
Gartner has released its 2023 Magic Quadrant for Endpoint Protection Platforms (EPP), a report evaluating vendors in the endpoint security market. The report assesses vendors based on their ability to execute and completeness of vision. Sophos is recognized for its strengths in the market.
Professor Messer is offering a Security+ Success Bundle that includes downloadable course notes and practice exams to help individuals prepare for the CompTIA Security+ exam. This resource is designed to supplement his free video series and test users' knowledge of the exam objectives.
Specops Software offers strategies for enforcing strong Active Directory password policies without alienating users. These strategies include implementing passphrases, utilizing breached password protection, and enabling self-service password resets.
This article describes an operation called ANTISOC, which blends traditional penetration testing techniques such as red teaming, cloud security, web application testing, and social engineering. The goal is to achieve a broader scope and discover more than a typical penetration test.
SecurityWeek announced its third annual AI Risk Summit, scheduled for August 11-12 at the Ritz-Carlton in Half Moon Bay. The event will convene CISOs, security leaders, AI researchers, developers, policymakers, and enterprise risk professionals.
The cybersecurity industry has undergone a significant transformation since 2006, evolving from a focus on perimeter defense to the current landscape of AI-native security. This evolution is examined through a technological lens as part of Dark Reading's 20th-anniversary coverage.
Professor Messer is offering a free quiz for the CompTIA A+ 220-1202 certification. This quiz is designed to help individuals test their knowledge and prepare for the exam. The post links back to Professor Messer's IT certification training courses.
This article provides a humorous and metaphorical guide to "hacking" a call-for-proposal (CFP) platform to secure a speaker gig at a conference. It uses cybersecurity analogies to explain how to manipulate the system and craft a compelling submission.
RevEng.AI has secured $15 million in funding to advance its AI-powered platform, BinNet, which is designed to identify vulnerabilities and backdoors within software binaries. The company aims to leverage this investment to enhance its capabilities in proactively hunting for security flaws in released software.
Modern cyber incidents often bypass traditional defenses by masquerading as legitimate activity, accumulating risk over time. To counter this, the role of the Security Operations Center (SOC) needs to evolve from a 'fortress' approach to one that can detect and disrupt threats early in their lifecycle. This involves proactive measures beyond simply strengthening defenses.
Lastwall has successfully raised $11.5 million in funding, primarily led by BDC Capital's StrongNorth Fund. This investment is intended to fuel the company's expansion into the North American market with its quantum-resilient identity platform.
Security firms have successfully disrupted the GlassWorm botnet by taking down all four of its command-and-control (C&C) channels. This action is a significant step in mitigating the threat posed by this particular malware.
Microsoft has released the KB5089573 preview cumulative update for Windows 11 versions 25H2 and 24H2. The update includes 30 changes focused on improving performance and reliability within the operating system.
Data Security Posture Management (DSPM) tools help security teams identify and manage risks associated with sensitive data across cloud and on-premises environments. These tools aim to locate 'shadow data' and complement Cloud Security Posture Management (CSPM) by focusing on data consumption and potential exposure.
Anthropic has launched a new Claude Sandbox feature and a Security Guidance Plugin. This plugin assists developers in identifying coding vulnerabilities as they write code and has seen significant internal usage.
Sophos has been recognized as a Leader in the 2026 Gartner Magic Quadrant for Endpoint Protection for the 17th consecutive time. The report highlights the ongoing importance of strong endpoint protection, particularly in an AI-driven threat landscape, emphasizing its effectiveness when integrated into a broader defense strategy.
