Madhu Gottumukkala has been named Deputy Director of the cybersecurity agency CISA.
Wendi Whitmore has taken the role of Chief Security Intelligence Officer at Palo Alto Networks.
Phil Venables, former CISO of Google Cloud, has joined Ballistic Ventures as a Venture Partner.
David Currie, former CISO of Nubank and Klarna, has been appointed CEO of Vaultree.
Chris Burger has been named Chief Information Security Officer at F5.
This tension between hard-edged risk realism and breathless AI evangelism sets an unmistakable tone for a bellwether conference where 40,000-plus gather to do business.
Hundreds of companies are showcasing their products and services this week at the 2025 edition of the RSA Conference in San Francisco.
A zero-day vulnerability in SAP NetWeaver potentially affects more than 10,000 internet-facing applications.
With over 12,000 breaches analyzed, this year’s DBIR reveals a landscape shaped by not just individual threats, but by entire economies of compromise.
Combined with AI, polymorphic phishing emails have become highly sophisticated, creating more personalized and evasive messages that result in higher attack success rates.
While the Security Posture Management buzz is real, its long-term viability depends on whether it can deliver measurable outcomes without adding more complexity.
Our collective voices and one community will provide the intelligence we need to safeguard our businesses in today’s modern digital environment.
Very few people in the cybersecurity industry do not know, or know of, Bryson Bort, CEO/Founder of SCYTHE and the co-founder of ICS Village.
Join this event as we dive into threat hunting tools and frameworks, and explore value of threat intelligence data in the defender’s security stack.
This webinar will guide you in aligning your security testing strategy with the right tools, helping you move beyond identifying weaknesses to effectively validating your overall security posture.
Register
The AI Risk Summit brings together security and risk management executives, AI researchers, policy makers, software developers and influential business and government stakeholders. [August 19-20, 2025 | Ritz-Carlton, Half Moon Bay]
SecurityWeek’s CISO Forum Summer Summit & Golf Classic will take place August 19-20 at the Ritz-Carlton, Half Moon Bay, CA. (www.cisoforum.com)
The Threat Detection & Incident Response Summit delves into big-picture strategies to reduce attack surfaces, improve patch management, conduct post-incident forensics, and tools and tricks needed in a modern organization. [May 21, 2025 – Virtual]
SecurityWeek’s Cloud and Data Security Summit returns with a deliberate focus on exposed attack surfaces and weaknesses in public cloud infrastructure and APIs. [July 16, 2025 – Virtual]
-
Threat actors have exploited a zero-day vulnerability in Craft CMS to execute PHP code on hundreds of websites. (April 28, 2025)
-
A zero-day vulnerability in SAP NetWeaver potentially affects more than 10,000 internet-facing applications. (April 25, 2025)
-
Cisco is investigating the impact of the Erlang/OTP remote code execution vulnerability CVE-2025-32433 on its products. (April 24, 2025)
-
Desired Effect provides an ethical vulnerability exchange marketplace to help defenders get ahead of attackers. (April 23, 2025)
-
British retailer Marks & Spencer has been experiencing certain service disruptions after falling victim to a cyberattack. (April 23, 2025)
-
The city of Abilene, Texas, is scrambling to restore systems that have been taken offline in response to a cyberattack. (April 22, 2025)
-
With 51% of internet traffic now bot-driven and a growing share of it malicious, organizations must prepare for an era of more evasive, AI-assisted… (April 21, 2025)
-
Noteworthy stories that might have slipped under the radar: 4chan hacked, auto-reboot security feature coming to Android, Iranian administrator of Nemesis charged in US. (April 18, 2025)
