Stay updated on the latest cybersecurity tools. Find expert reviews, guides, and news on cutting-edge information security technologies.
Search across headline titles and summaries.
Background for this topic.
Tools in the context of information security are the software, applications, and utilities used by professionals to safeguard networks, systems, and information assets from cyber threats. These include a vast array of solutions designed for various security needs such as intrusion detection systems, encryption software, antivirus programs, firewalls, vulnerability scanners, and more.
These tools are critical for preventing, detecting, and responding to security incidents. Professionals rely on them to conduct assessments, monitor security postures, enforce policies, and manage the intricate tasks of digital protection. The selection and implementation of the right security tools are integral to maintaining the confidentiality, integrity, and availability of information.
Weekly headline count for the current query.
Cybersecurity researchers have flagged a new malspam campaign that makes use of Google's DoubleClick domain as a way to evade detection and ultimately deliver a remote access trojan (RAT) named DesckVB RAT
Redis has patched a use-after-free in its blocking-client code that lets an authenticated user run arbitrary OS commands on the machine hosting the database. The flaw was found by an autonomous AI tool built to hunt bugs in large codebases
Cybersecurity researchers have disclosed details of an unpatched issue that could be exploited to disclose a user's NTLMv2 hash to the attacker
A threat actor got a near-continuous view into an influential finance executive's email inbox, thanks to clever use of legitimate, native Windows tools.
Halcyon’s Cynthia Kaiser lifts the lid on the dark web market for AI cybercrime tools
CEO Nikesh Arora Says Agentic Workloads Generate Traffic Requiring InspectionPalo Alto Networks said surging AI infrastructure investment and growing enterprise demand for AI governance are expanding cybersecurity spending, while false positives from advanced AI vulnerability tools underscore the continued need for human oversight.
Healthcare Coordinating Council Highlights AI Risks, Potential Medical MishapsHealthcare organizations face an array of difficult cybersecurity, privacy, patient safety, supply chain and operational resiliency issues as they roll out artificial intelligence tools. A new Health Sector Coordinating Council playbook aims to help by providing a voluntary governance framework.
Multiple Instagram users had their accounts hijacked after attackers convinced Meta's AI-powered support tools that they were the legitimate owners. [...]
A threat actor used AI coding tools to build and test EDR evasion malware, Sophos finds
Monday hit like a cron job with anger issues
CVE-2026-8732 in WP Maps Pro lets unauthenticated attackers create WordPress admin accounts. 2,858 attacks blocked in 24 hours. WP Maps Pro plugin allows WordPress site owners to embed Google Maps and OpenStreetMap with markers, listings, and location search. It’s a store locator tool. Unremarkable. The plugin is installed on over 15,000 websites, according to sale […]
Three years ago, the practical question for an MSP building a cybersecurity practice was which "vCISO platform" to buy. The term was good shorthand for the work at the time: assessments, advisory, reporting, maybe a compliance module bolted on the side. The work has since outgrown the descriptor
Cybersecurity researchers have disclosed details of a new malicious supply chain campaign that's targeting developers using OpenAI Codex through a legitimate-looking remote web UI
DDoS attacks are increasingly being sold like subscription services, complete with pricing tiers, support, and reseller programs. Flare explores how the DDoS-as-a-Service market has evolved from scattered tools into polished attack platforms. [...]
Researchers say 'GREYVIBE' crew used AI tools throughout a campaign targeting Ukrainian military and government
A likely Russian threat cluster tracked as GreyVibe has been targeting Ukrainian entities with AI-generated lures and a rich set of custom malware tools. [...]
Rethinking Insider Threats in the Age of Autonomous SystemsAI systems are no longer passive tools. They make decisions, execute multi-step workflows and access sensitive data repositories with minimal human intervention. They begin to resemble something security leaders understand very well yet are ill-equipped to manage in a digital form: insider risk.
AI agents aren't black boxes — they're models interacting with software tools. The risk lies in their overlap.
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Daemon Tools, TanStack, and Nx Console flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Windows Shell and ConnectWise ScreenConnect flaws to its Known Exploited Vulnerabilities (KEV) catalog. Below are the flaws added to the catalog: The first flaw, tracked as CVE-2026-8398, […]
Deal Adds LLM-Based Reasoning to Sonar's Algorithmic Code Verification PlatformSonar purchased Silicon Valley-based startup Gitar to add LLM-based code review and verification capabilities as enterprises use AI agents to generate software that deterministic tools alone like SonarQube may not reliably audit, validate or govern.