Tenable has appointed Eric Doerr as its Chief Product Officer.
Michael Adams has joined Docusign as the new Group Vice President and CISO.
Security awareness training firm KnowBe4 has named Bryan Palma as president and CEO effective May 5.
Threat intelligence firm Team Cymru has appointed Joe Sander as its Chief Executive Officer.
Madhu Gottumukkala has been named Deputy Director of the cybersecurity agency CISA.
As Xi Jinping advances his vision for China’s dominance by 2049, cybersecurity experts warn that connected technologies—like EV batteries—may quietly serve as tools of influence, espionage, and disruption.
Hundreds of companies are showcasing their products and services this week at the 2025 edition of the RSA Conference in San Francisco.
This tension between hard-edged risk realism and breathless AI evangelism sets an unmistakable tone for a bellwether conference where 40,000-plus gather to do business.
Before engaging in a full-scope exercise, it’s important to assess whether your program, people and processes are truly ready.
With over 12,000 breaches analyzed, this year’s DBIR reveals a landscape shaped by not just individual threats, but by entire economies of compromise.
Combined with AI, polymorphic phishing emails have become highly sophisticated, creating more personalized and evasive messages that result in higher attack success rates.
While the Security Posture Management buzz is real, its long-term viability depends on whether it can deliver measurable outcomes without adding more complexity.
Our collective voices and one community will provide the intelligence we need to safeguard our businesses in today’s modern digital environment.
Join this event as we dive into threat hunting tools and frameworks, and explore value of threat intelligence data in the defender’s security stack.
This webinar will guide you in aligning your security testing strategy with the right tools, helping you move beyond identifying weaknesses to effectively validating your overall security posture.
Register
The AI Risk Summit brings together security and risk management executives, AI researchers, policy makers, software developers and influential business and government stakeholders. [August 19-20, 2025 | Ritz-Carlton, Half Moon Bay]
SecurityWeek’s CISO Forum Summer Summit & Golf Classic will take place August 19-20 at the Ritz-Carlton, Half Moon Bay, CA. (www.cisoforum.com)
The Threat Detection & Incident Response Summit delves into big-picture strategies to reduce attack surfaces, improve patch management, conduct post-incident forensics, and tools and tricks needed in a modern organization. [May 21, 2025 – Virtual]
SecurityWeek’s Cloud and Data Security Summit returns with a deliberate focus on exposed attack surfaces and weaknesses in public cloud infrastructure and APIs. [July 16, 2025 – Virtual]
-
The number of exploited zero-days seen by Google in 2024 dropped to 75, from 98 observed in the previous year. (April 29, 2025)
-
More than 400 SAP NetWeaver servers are impacted by CVE-2025-31324, an exploited remote code execution vulnerability. (April 29, 2025)
-
CISA urges immediate patching for recently disclosed Broadcom, Commvault, and Qualitia vulnerabilities exploited in the wild. (April 29, 2025)
-
Threat actors have exploited a zero-day vulnerability in Craft CMS to execute PHP code on hundreds of websites. (April 28, 2025)
-
British retailer Marks & Spencer has been experiencing certain service disruptions after falling victim to a cyberattack. (April 23, 2025)
-
The city of Abilene, Texas, is scrambling to restore systems that have been taken offline in response to a cyberattack. (April 22, 2025)
-
With 51% of internet traffic now bot-driven and a growing share of it malicious, organizations must prepare for an era of more evasive, AI-assisted… (April 21, 2025)
-
Noteworthy stories that might have slipped under the radar: 4chan hacked, auto-reboot security feature coming to Android, Iranian administrator of Nemesis charged in US. (April 18, 2025)
