Tabitha Craig has been named the CISO of the Congressional Budget Office (CBO).
Life360 has appointed Vari Bindra, former Amazon cybersecurity lead, as Chief Information Security Officer.
Forcepoint has appointed Guy Shamilov as CISO, Bakshi Kohli as CTO and Naveen Palavalli as CPO and CMO.
Paul Calatayud has been named CISO of developer security posture management firm Archipelo.
Cyber readiness and response firm Sygnia has appointed Avi Golan as its new CEO.
The FCC is investigating whether Chinese firms such as Huawei, ZTE and China Telecom are still operating in the US.
More details have come to light on the recent supply chain attack targeting GitHub Actions, including its root cause.
Attacks involving Paragon’s Graphite spyware involved a WhatsApp zero-day that could be exploited without any user interaction.
A Joni Mitchell song from the 1960s can teach us a lot about securing hybrid and multi-cloud environments.
Defending high profile sporting events from adversarial attacks requires a mix of experienced capabilities and a solid threat intelligence program.
Your guide on how to get through the conference with your sanity, energy, and key performance indicators (KPIs) intact.
Organizations can align their processes with one of two global industry standards for self-assessment and security maturity—BSIMM and OWASP SAMM.
Organizations must recognize that security is not about the number of tools deployed, it is about ensuring those tools effectively disrupt the attack chain at every stage.
Join this event as we dive into threat hunting tools and frameworks, and explore value of threat intelligence data in the defender’s security stack.
This webinar will guide you in aligning your security testing strategy with the right tools, helping you move beyond identifying weaknesses to effectively validating your overall security posture.
Register
The AI Risk Summit brings together security and risk management executives, AI researchers, policy makers, software developers and influential business and government stakeholders. [August 19-20, 2025]
SecurityWeek’s CISO Forum Summer Summit & Golf Classic will take place August 19-20 at the Ritz-Carlton, Half Moon Bay, CA
This event delves into big-picture strategies to reduce attack surfaces, improve patch management, conduct post-incident forensics, and tools and tricks needed in a modern organization.
Supply Chain Security Summit
Join us as we explore the critical nature of software and vendor supply chain security issues with a focus on understanding how attacks against identity infrastructure come with major cascading effects. (March 19, 2025)
-
The effects of the backlog is already being felt in vulnerability management circles where NVD data promises an enriched source of truth. (March 24, 2025)
-
A Russian exploit acquisition firm is offering up to $4 million for a full-chain exploit targeting messaging service Telegram. (March 24, 2025)
-
Noteworthy stories that might have slipped under the radar: Capital One hacker’s sentence reversed, Google patches critical Chrome vulnerability, the story of an Expat… (March 21, 2025)
-
CISA has added an absolute path traversal bug in Nakivo Backup and Replication to its Known Exploited Vulnerabilities list. (March 20, 2025)
-
Former NFL and University of Michigan assistant football coach Matt Weiss hacked into the computer accounts of thousands of college athletes seeking intimate photos… (March 21, 2025)
-
Defending high profile sporting events from adversarial attacks requires a mix of experienced capabilities and a solid threat intelligence program. (March 19, 2025)
-
Russian-Israeli LockBit ransomware developer Rostislav Panev has been extradited from Israel to the United States. (March 14, 2025)
-
Exploiting trust in the DeepSeek brand, scammers attempt to harvest personal information or steal user credentials. (March 12, 2025)
