Jeremy Koppen has left Mandiant after 13 years to become the CISO of Equifax.
Engineering and technology solutions provider Amentum has appointed Max Shier as its CISO.
PAM provider Keeper Security has appointed Shane Barney as its Chief Information Security Officer.
SpecterOps has appointed Tim Bender as CFO, Pat Sheridan as CRO, and Bryce Hein as CMO.
CISA has officially announced the appointment of Madhu Gottumukkala as its new deputy director.
Many of the industrial control system (ICS) instances seen in internet scanning are likely or possibly honeypots, not real devices.
Pwn2Own participants demonstrated exploits against VMs, AI, browsers, servers, containers, and operating systems.
The 15th edition of NATO’s Locked Shields cyber defense exercise brought together 4,000 experts from 41 countries.
Trying to block AI tools outright is a losing strategy. SaaS and AI are increasingly inseparable, and AI isn’t limited to tools like ChatGPT or Copilot anymore.
CTI, digital brand protection and other cyber risk initiatives shouldn’t only be utilized by security and cyber teams.
Sightline Security’s founder explains why nonprofits need cybersecurity solutions tailored to their unique missions — and why vendors need to listen.
By taking immediate actions, organizations can ensure that shadow AI is prevented and used constructively where possible.
Year of the Twin Dragons: Developers Must Slay the Complexity and Security Issues of AI Coding Tools
The advantages AI tools deliver in speed and efficiency are impossible for developers to resist. But the complexity and risk created by AI-generated code can’t be ignored.
Join this event as we dive into threat hunting tools and frameworks, and explore value of threat intelligence data in the defender’s security stack.
Join this webinar for a fascinating discussion to understand why data in itself is not enough to make informed decisions for prioritization.
Register
The AI Risk Summit brings together security and risk management executives, AI researchers, policy makers, software developers and influential business and government stakeholders. [August 19-20, 2025 | Ritz-Carlton, Half Moon Bay]
SecurityWeek’s CISO Forum Summer Summit & Golf Classic will take place August 19-20 at the Ritz-Carlton, Half Moon Bay, CA. (www.cisoforum.com)
The Threat Detection & Incident Response Summit delves into big-picture strategies to reduce attack surfaces, improve patch management, conduct post-incident forensics, and tools and tricks needed in a modern organization. [May 21, 2025 – Virtual]
SecurityWeek’s Cloud and Data Security Summit returns with a deliberate focus on exposed attack surfaces and weaknesses in public cloud infrastructure and APIs. [July 16, 2025 – Virtual]
-
GitLab and Atlassian have released patches for over a dozen vulnerabilities in their products, including high-severity bugs. (May 22, 2025)
-
Russian military intelligence hackers intensify targeting of Western logistics and technology companies moving supplies into Ukraine. (May 21, 2025)
-
Wiz warns that threat actors are chaining two recent Ivanti vulnerabilities to achieve unauthenticated remote code execution. (May 21, 2025)
-
An OpenPGP.js vulnerability tracked as CVE-2025-47934 allows message signature verification to be spoofed. (May 21, 2025)
-
Matthew Lane allegedly hacked PowerSchool using stolen credentials and admitted to extorting a telecoms provider. (May 21, 2025)
-
Wireless carrier Cellcom has confirmed that a week-long widespread service outage is the result of a cyberattack. (May 21, 2025)
-
Eric Council Jr. was sentenced to prison for hacking SEC’s official X account and publishing fraudulent posts increasing Bitcoin value. (May 19, 2025)
-
The FBI says former federal and state government officials are targeted with texts and AI-generated voice messages impersonating senior US officials. (May 16, 2025)
