Blog

Reachability makes AI threat modeling worth the trust

In this interview with Help Net Security, Oscar Andersson, CTO at Oplane, explains why most scanning tools fail. They cry wolf, flagging threats that cannot run in real code. The argument centers on reachability. A finding counts only when someone walks the path to impact on a working build. He shows how a chain of small design choices led to account takeover in a popular open-source project, then covers how to test a vendor’s claims, … More → The post Reachability makes AI threat modeling worth the trust appeared first on Help Net Security.
http://news.poseidon-us.com/TT3gjY

EU Cybersecurity Act 2.0: When good regulation goes bad

Over recent years we’ve witnessed the EU becoming increasingly serious about cybersecurity. After years of watching high profile breaches, many resulting from supply chain attacks targeting our critical infrastructure, that seriousness is welcome. But good intentions and good policy are not the same thing, and the proposed EU Cybersecurity Act 2.0 is starting to look a lot more like the former than the latter. The problem with CSA 2.0 The original EU Cybersecurity Act, which … More → The post EU Cybersecurity Act 2.0: When good regulation goes bad appeared first on Help Net Security.
http://news.poseidon-us.com/TT3ghW

The rise of machine identities and agentic AI: Securing trust in the next era of digital autonomy

In the latest episode of Identity Insider, I sat down with Chris Hughes, a cybersecurity expert who’s involved in OWASP’s work on non-human and machine identity security. Unsurprisingly, our discussion centered on the rapidly changing cybersecurity landscape, driven by the rise of artificial intelligence (AI), particularly agentic AI, which is giving systems unprecedented autonomy within the enterprise. You can watch our full discussion here: The conversation reinforced something I’ve been thinking about for a while: … More → The post The rise of machine identities and agentic AI: Securing trust in the next era of digital autonomy appeared first on Help Net Security.
http://news.poseidon-us.com/TT3d6S

A $2 trillion revenue shift hinges on AI data governance

Across large enterprises, a single question keeps surfacing when teams want to put customer data to work. Can this record be used for a given purpose, and does the consent behind it still hold? The data sits in warehouses and customer databases, and the ability to answer that question often lags behind. That delay carries a cost. Many enterprises have seen AI initiatives stall over the past year, and the ones stalling most often carry … More → The post A $2 trillion revenue shift hinges on AI data governance appeared first on Help Net Security.
http://news.poseidon-us.com/TT3d65

Cybersecurity jobs available right now: June 16, 2026

Android Vulnerability Researcher Byteria | USA | Remote – View job details As an Android Vulnerability Researcher, you will analyze the Android attack surface, including the Linux kernel, system services, drivers, firmware, applications, and Trusted Execution Environment (TEE). You will reverse engineer native binaries and mobile software, identify vulnerabilities through code review, fuzzing, and static and dynamic analysis, and develop proof-of-concept exploits to validate findings. Application Security Engineer Millennium | Ireland | On-site – View … More → The post Cybersecurity jobs available right now: June 16, 2026 appeared first on Help Net Security.
http://news.poseidon-us.com/TT3c2h

Amex ordered to implement access controls after insider privacy breaches

OAIC gives card issuer six months to comply.
http://news.poseidon-us.com/TT3c2Z