Category: HelpnetSecurity

Actively exploited FreeType flaw fixed in Android (CVE-2025-27363)
07
May
2025

Actively exploited FreeType flaw fixed in Android (CVE-2025-27363)

Google has released fixes for a bucketload of Android security vulnerabilities, including a FreeType flaw (CVE-2025-27363) that “may be under…

Digital welfare fraud: ALTSRUS syndicate exploits the financially vulnerable
07
May
2025

Digital welfare fraud: ALTSRUS syndicate exploits the financially vulnerable

A new report from bot defense firm Kasada has exposed the growing threat of ALTSRUS, a fraud syndicate targeting some…

1 in 3 workers keep AI use a secret
07
May
2025

1 in 3 workers keep AI use a secret

Employees are feeling heightened concerns around the use of technology to enhance productivity, as well as job dissatisfaction and a…

Rethinking AppSec: How DevOps, containers, and serverless are changing the rules
07
May
2025

Rethinking AppSec: How DevOps, containers, and serverless are changing the rules

Application security is changing fast. In this Help Net Security interview, Loris Gutic, Global CISO at Bright, talks about what…

Autorize: Burp Suite extension for automatic authorization enforcement detection
07
May
2025

Autorize: Burp Suite extension for automatic authorization enforcement detection

Autorize is an open-source Burp Suite extension that checks if users can access things they shouldn’t. It runs automatic tests…

Personal data of top executives easily found online
07
May
2025

Personal data of top executives easily found online

The personal information of 75% of corporate directors can be found on people search sites, according to Incogni. People search…

Webinar: Securely migrating to the cloud
06
May
2025

Webinar: Securely migrating to the cloud

Whether your organization is already in the cloud or just starting to plan your migration, security is a top priority….

RCE flaw in tool for building AI agents exploited by attackers (CVE-2025-3248)
06
May
2025

RCE flaw in tool for building AI agents exploited by attackers (CVE-2025-3248)

A missing authentication vulnerability (CVE-2025-3248) in Langflow, a web application for building AI-driven agents, is being exploited by attackers in…

Exploited: Vulnerability in software for managing Samsung digital displays (CVE-2024-7399)
06
May
2025

Exploited: Vulnerability in software for managing Samsung digital displays (CVE-2024-7399)

An easily and remotely exploitable vulnerability (CVE-2024-7399) affecting Samsung MagicINFO, a platform for managing content on Samsung commercial displays, is…

What it really takes to build a resilient cyber program
06
May
2025

What it really takes to build a resilient cyber program

In this Help Net Security interview, Dylan Owen, CISO at Nightwing, talks about what it really takes to build an…

How cybercriminals exploit psychological triggers in social engineering attacks
06
May
2025

How cybercriminals exploit psychological triggers in social engineering attacks

Most attacks don’t start with malware; they begin with a message that seems completely normal, whether it comes through email,…

Cybersecurity jobs available right now: May 6, 2025
06
May
2025

Cybersecurity jobs available right now: May 6, 2025

Application Security Specialist Signify | Netherlands | On-site – View job details As an Application Security Specialist, you will define…