Security news aggregator

Latest coverage for Ethical Hacking

Stay informed on ethical cybersecurity practices—discover insights, latest trends, and expert analyses on ethical information security topics.

91 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Ethical hacking is the authorized practice of simulating attacks to find and demonstrate security weaknesses before criminals exploit them. It may include penetration testing, red-team exercises, vulnerability validation, and reviews of applications, networks, cloud environments, or physical controls. The defining requirement is explicit permission: a written scope should identify approved systems, methods, testing dates, source addresses, safety limits, and contacts for urgent issues.

For practitioners, the main concerns are controlling testing risk and turning findings into useful remediation. Tests can expose personal or confidential data, disrupt production, or cross into systems that were not authorized; safeguards include least-necessary access, synthetic test data where possible, rate limits, secure evidence handling, and prompt cleanup. Reports should distinguish confirmed vulnerabilities from theoretical paths, explain business-relevant conditions and impact, and provide reproducible evidence without retaining unnecessary secrets. Coordinated disclosure and retesting help verify fixes, while legal, contractual, and privacy requirements determine what activities and data handling are permitted.

Volume over time

Weekly headline count for the current query.

Showing 20 most recent headlines of 91 Filtered view

EC-Council, creator of the world-renowned Certified Ethical Hacker (CEH) credential and a global leader in applied cybersecurity education, today launched its Enterprise AI Credential Suite, with four new role-based AI certifications debuting alongside Certified CISO v4, an overhauled executive cyber leadership program. [...]

With $5.5 trillion in global AI risk exposure and 700,000 U.S. workers needing reskilling, four new AI certifications and Certified CISO v4 help close the gap between AI adoption and workforce readiness

I'm dreaming of a white hat mass Opinion It was 40 years ago that four young British hackers set about changing the law, although they didn't know it at the time. It was a cross-platform attack including a ZX Spectrum, a BBC Micro, and a Tatung Einstein slamming British Telecom's Prestel service over dial-up modems at 75 bits per second.…

Bank Info Security 7 months, 1 week ago

Hacking as a Prompt: Malicious LLMs Find Users

WormGPT 4 Sells for $50 Monthly, While KawaiiGPT Goes Open SourceThe cybercrime-as-a-service model has a new product line, with malicious large language models built without ethical guardrails selling on Telegram for $50 monthly or distributed free on GitHub. Others groups are taking the open-source route.

Bank Info Security 8 months, 2 weeks ago

NIS2 Enhances Vulnerability Management Practices

Integrity's Ed Parsons on How Regs Are Pushing Firms Toward Proactive SecurityThe NIS2 Directive has driven significant improvements in vulnerability management across Europe. Organizations are accelerating vulnerability discovery by engaging with crowdsourced security communities and ethical hackers, said Ed Parsons, chief operations officer at Integrity.

Bank Info Security 10 months, 3 weeks ago

McFlaw: Hacker Breaches McDonald's Portal With URL Trick

Hacking Was the Easy Part, Notifying McDonald's the Extremely Difficult BitA security researcher gained access to McDonald's global marketing portal by changing a single word in its URL, uncovering a slew of additional vulnerabilities. The hard part was notifying the burger giant about the flaws, says self-described ethical hacker "BobDaHacker."

Anthropic Says Top AI Models may Deceive or Coerce to SurviveArtificial intelligence models will choose harm over failure when their goals are threatened and no ethical alternatives are available, say researchers who tested 16 popular large language models. The goal was to evaluate how systems behave. The result: blackmail and deception.

Bank Info Security 1 year, 2 months ago

Human Ingenuity Still Crucial in Cybersecurity Defense

HackerOne CEO Warns AI Can't Replace Creativity, Intuition in Cyber Defense EffortsDespite AI advances, human intuition remains essential in security, says HackerOne CEO Kara Sprague. Machines detect patterns, but only people can anticipate the unexpected. Ethical hackers and human-led defense are vital to addressing evolving threats and the cybersecurity talent gap.

Bank Info Security 1 year, 2 months ago

Restoring Trust in AI Through Governance

Ulla Coester on Ethical Design and the Role of the EU AI ActUnclear threats and unpredictable behavior complicate global trust in AI. Building a shared understanding through adaptable governance helps create consistent expectations for responsible development across societies, said Ulla Coester, project director, Fresenius University of Applied Sciences.

Loading more headlines...