Stop the Spread: How to Contain Machine Identity Sprawl
In this 15-minute podcast, identity experts examine key findings from recent industry research on machine identity governance and how you can secure them
Research examines attack methods, defenses, and vulnerabilities, helping security teams understand risks and improve protection.
Search across headline titles and summaries.
Background for this topic.
Research is the systematic study of technologies, systems, attack methods, vulnerabilities, and defensive techniques to establish evidence and produce new findings. In information security, it includes work such as discovering flaws in software or protocols, analyzing malware and attacker behavior, testing cryptographic designs, and evaluating security controls. News under this tag may describe a proof of concept, a measurement study, or a proposed technique rather than a confirmed real-world attack.
For practitioners, research can change how risks are prioritized and mitigated. A demonstrated vulnerability may require vulnerability-management teams to verify affected assets, apply fixes, or add compensating controls; responsible disclosure gives developers time to assess and remediate before technical details enable exploitation. Research involving live systems, personal data, or offensive tooling also raises privacy, authorization, dual-use, and ethical concerns. Sound findings should state their assumptions, scope, limitations, and reproducibility, since laboratory results do not automatically show that an attack is practical in every environment.
In this 15-minute podcast, identity experts examine key findings from recent industry research on machine identity governance and how you can secure them
Recent advisories from U.S. federal authorities on vulnerabilities in certain operational technology devices underscore the potential security risks that many healthcare providers frequently underestimate, said Sila Özeren, a security research engineer at Picus Security.
Trend Micro Researchers Uncover New Ransomware StrainA newly identified ransomware group is targeting victims across the Asia Pacific region using custom-built evasion capabilities that could pose a "significant threat" to organizations, warn researchers at security firm Trend Micro. The Gentlemen deploys customized methods tailored to each target.
Security Researchers Reveal Methods to Reverse Engineer MediaTek FirmwareReverse engineering Wi-Fi chips opens new opportunities for security research. Security researchers Daniel Wegemer and Edoardo Mantovani describe tools, methods and motivations for unlocking hidden functions and enabling deeper hardware analysis.
Also: AI Threats, Old Flaws and Why Vendors Delay FixesAI prompt injection risks, decades-old vulnerabilities resurfacing in new systems and vendors prioritizing profits over protection defined the conversations at Nullcon Berlin 2025. Panelists shared how this event stood out for its technical depth and advancing security knowledge.
Researcher Who Privately Reported Flaws Receives Legal ThreatFresh research posted online, titled "We Hacked Burger King," has disappeared faster than the purple Wednesday Whopper from the specials menu, after researcher "BobDaHacker" received a DMCA takedown request on behalf of the fast food brand's owner, multinational Restaurant Brands International.