As AI tools take hold in cybersecurity, entry-level jobs could shrink
A new survey from ISC2 shows that nearly a third of cybersecurity professionals are already using AI security tools, and many others are close behind.…
Month: July 2025
DTA CEO suggests AI usage to reduce ‘white-collar effort’ in APS
The head of the Digital Transformation Agency has pointed to artificial intelligence’s potential to “lift productivity” across the federal government’s program delivery amid a “really…
When is an Idea Ridiculous?
I’ve been debating here for quite some time the question of how direct, or even confrontational, to be with those who make strong and specific…
Kinetic IT appoints Defence leader Murray Thompson AM CSC
Kinetic IT has announced the appointment of Major General (Retired) Murray Thompson AM CSC as Group Executive Advisory & Transformation, marking a significant step forward…
“PoisonSeed” attack does not bypass hardware MFA
A recent report that appeared to demonstrate a new kind of attack able to bypass the Fast Identity Online Alliance (FIDO) hardware multi-factor authentication (MFA)…
Microsoft issues patches for “ToolShell” vulnerable SharePoint Servers
Patches for two vulnerable editions of Microsoft’s on-premises SharePoint Server collaboration tool are now available, with administrators urged to apply them immediately as threat actors…
The Connected Web: Why It’s Time For Strong Authentication
It’s getting exciting in the world of cross-network authentication. Let’s review. I can now: sign into Digg > using Facebook > sign into DISQUS >…
Cybersecurity Still Misaligned with Business Risk Priorities
Qualys has released The 2025 State of Cyber Risk Assessment Report, revealing that many organisations are still approaching cyber risk as a technical rather than…
The Connected Web: Why It’s Time For Strong Authentication
It’s getting exciting in the world of cross-network authentication. Let’s review. I can now: sign into Digg > using Facebook > sign into DISQUS >…
DeerStealer Malware Delivered Via Weaponized .LNK Using LOLBin Tools
A sophisticated new phishing campaign has emerged, delivering the DeerStealer malware through weaponized .LNK shortcut files that exploit legitimate Windows binaries in a technique known…
Threat Actors Hijack Popular npm Packages to Steal The Project Maintainers’ npm Tokens
A sophisticated supply chain attack has compromised several widely-used npm packages, including eslint-config-prettier and eslint-plugin-prettier, after threat actors successfully stole maintainer authentication tokens through a…
Developers Beware of npm Phishing Email That Steal Your Login Credentials
A sophisticated phishing campaign has emerged targeting Node.js developers through a meticulously crafted attack that impersonates the official npm package registry. The malicious operation utilizes…