Rapid7 details a critical unauthenticated overflow in HP Poly VoIP phones that can lead to root RCE, with patches available for affected models. Rapid7’s latest disclosure on CVE-2026-0826 should get serious attention from anyone running HP Poly VoIP phones in an enterprise setting. It’s a critical unauthenticated stack-based buffer overflow that can give a remote…
Tag: lead
AI, Global Security News
Who Owns the Future of AI?
Plus, what to look for in a used EV, Anthropic’s AI lead, the Cerebras IPO, the OpenAI lottery tickets and the most AI-proof jobs in tech.
AI, Cybersecurity, Exploits, Global Security News, Government & Policy, Network Security, Risk Management
The curious case of Sean Plankey’s derailed CISA nomination
Donald Trump’s nominee to lead the Cybersecurity and Infrastructure Security Agency (CISA), Sean Plankey, informed Homeland Security Secretary Markwayne Mullin and the White House that he is withdrawing his nomination after a 13-month stall, during which the well-regarded cybersecurity veteran faced mounting resistance. “After thirteen months since my initial nomination, it has become clear the…
Global Security News
FUJIFILM Business Innovation Australia Appoints New Managing Director
Yoshinori Nagata to Lead Next Phase of Growth
AI, Cybersecurity, Global Security News
CISA director pick Sean Plankey withdraws his nomination
Sean Plankey, the long-sidelined nominee to lead the Cybersecurity and Infrastructure Security Agency, asked President Donald Trump on Wednesday to withdraw his nomination. “At this point in time, I am asking the President to remove my nomination from consideration,” he said in a notification letter seen by CyberScoop. “After thirteen months since my initial nomination, it…
Global Security News
Recovery scammers hit you when you’re down: Here’s how to avoid a second strike
If you’ve been the victim of fraud, you’re likely already a lead on a ‘sucker list’ – and if you’re not careful, your ordeal may be about to get worse.
AI, Global Security News, privacy
Health insurance lead sites sell personal data within seconds of form submission
Lead generation websites that offer health insurance quotes collect sensitive personal data and sell it to multiple buyers within seconds of a user clicking submit. A study by researchers at UC Davis, Stanford University, and Maastricht University mapped this process across 105 health insurance lead generation sites and monitored what happened to the data over…
AI, Global Security News
The case for fixing CWE weakness patterns instead of patching one bug at a time
In this Help Net Security interview, Alec Summers, MITRE CVE/CWE Project Lead, discusses how CWE is moving from a background reference into active use in vulnerability disclosure. More CVE records now include CWE mappings from CNAs, which tends to produce more precise root-cause data. Automation tools help analysts map weaknesses faster, but can reinforce bad…
Global Security News
New Relic Appoints Masakiyo Furudate as Group Vice President, Head of New Relic Japan
Seasoned enterprise technology leader to lead Japan operations and accelerate market leadership.
AI, Apps, Cloud Security, Data Breaches, Global Security News, malware
Attackers trojanize Axios HTTP library in highest-impact npm supply chain attack
Attackers compromised the npm account of the lead maintainer of Axios, a widely used JavaScript HTTP client library, and used it to publish malicious versions of the package that deployed a cross-platform remote access trojan on developer machines. The incident represents the highest-impact npm supply chain attack on record given Axios’ approximately 100 million weekly…
AI, Cybersecurity, Global Security News, Risk Management
Saviynt Appoints Alex Lei to Drive Identity Security Growth Across Asia Pacific and Japan
COMPANY ANNOUNCEMENT: Enterprise security veteran to lead regional sales strategy as organisations across APJ strengthen identity-first cybersecurity Key Highlights: The appointment comes as organisations across APJ increase investment in identity security to support cloud adoption, AI initiatives, and evolving cyber risks Lei will oversee customer acquisition, partner strategy, and go-to-market execution across APJ
AI, Global Security News, Risk Management
From Data Silos to Executive Clarity: Workiva Reimagines GRC With AI-Powered Platform for Audit, Risk, and Controls
CFOs empowered to rule over risk and lead with confidence on the platform powering the future of trust
AI, Global Security News, Risk Management
Multiple Zero-Day Flaws in PDF Platforms Enable XSS and One-Click Attacks
16 zero-day security flaws found in Foxit and Apryse PDF platforms could lead to account takeover and RCE. Learn how AI identified these risks.