Search Results
Showing results for "business" (3528 articles found)
Die besten DAST- & SAST-Tools
Tools für Dynamic und Static Application Security Testing helfen Entwicklern, ihren Quellcode zu härten. Wir zeigen Ihnen die besten Tools zu diesem Zweck.Chim | shutterstock.com Die Softwarelieferkette – respektive ihre Schwachstellen – haben in den vergangenen Jahren für viel Wirbel gesorgt. Ein besonders schlagzeilenträchtiges Beispiel ist der Angriff auf den IT-Dienstleister SolarWinds, bei dem mehr als 18.000 Kundenunternehmen betroffen waren.…
Train like you fight: Why cyber operations teams need no-notice drills
St. Michael’s Hospital in Toronto recently executed a full Code Orange simulation: A mass casualty emergency protocol requiring the activation of every clinical and operational team across the hospital. As a Level 1 trauma centre, it conducts large-scale exercises involving teams across the entire hospital: Emergency, surgery, communications, administration. The exercise is not a compliance event. It is an operational…
The Back Door Attackers Know About — and Most Security Teams Still Haven’t Closed
NetworkUstad — Security researchers report that a common server configuration leaves organizations open to backdoor attacks, with many teams failing to address the issue despite known risks as of May 6, 2026. Experts point to misconfigured administrative interfaces on web servers as the primary vulnerability. Attackers scan for exposed management portals, such as default admin...
Microsoft Details Phishing Campaign Targeting 35,000 Users Across 26 Countries
Microsoft has detailed a phishing campaign that targeted 35,000 users in 26 countries. The company tracked the operation through its threat intelligence efforts and shared findings on the scope and methods used by the attackers. Campaign Scope The phishing effort reached users in multiple regions, affecting 35,000 accounts in total. Microsoft detected the activity spanning...
We Scanned 1 Million Exposed AI Services. Here's How Bad the Security Actually Is
Researchers scanned one million exposed AI services and found widespread security failures. The assessment, detailed in a report released this week, shows many services lack basic protections against unauthorized access. Scan Details The team examined publicly accessible AI endpoints, including inference servers and model hosting platforms. They identified over 1 million instances running without authentication....
Microsoft Edge Stores Passwords in Process Memory, Posing Enterprise Risk
Microsoft Edge keeps user passwords in process memory during browser sessions, security researchers have found. This practice exposes enterprise networks to potential attacks from malware and memory-scraping tools. Discovery Details Researchers identified that Edge retains credentials in plain text within its memory space. Tools like Process Hacker and custom memory dump analyzers can extract these...
Physical Cargo Theft Gets a Boost From Cybercriminals
Reports from logistics security firms indicate cybercriminals now assist physical cargo theft rings by providing real-time tracking data and access codes, leading to a sharp rise in incidents across major shipping routes in early 2026. Recent Incidents Cargo theft cases involving cyber elements have increased by double digits in the first quarter of 2026, according...
Critical Bug Could Expose 300,000 Ollama Deployments to Information Theft
A critical security flaw in Ollama, a popular tool for running large language models locally, puts around 300,000 deployments at risk of information theft, security researchers reported this week. The vulnerability allows attackers to access sensitive data from systems running Ollama. Researchers identified the issue in the software’s default configuration, which exposes an unauthenticated endpoint....
Hacker News Opens Cybersecurity Stars Awards 2026
The Hacker News launched the Cybersecurity Stars Awards 2026, opening submissions for cybersecurity achievements. Nominations are accepted via online portal.
Hackers Hate AI Slop Even More Than You Do
It's not just you. Scammers, hackers, and other cybercriminals are complaining about “AI shit” flooding platforms where they discuss cyberattacks and other illegal activity.