Tag: jobs
-
US hits senior North Korean officials with sanctions, $3 million bounties
Kim Se Un, Jo Kyong Hun and Myong Chol Min are accused of helping North Korea evade U.S. and United Nations sanctions through an IT worker plot that involved tricking companies into hiring North Koreans using stolen identities. First seen on therecord.media Jump to article: therecord.media/us-sanctions-north-korean-officers-it-worker-scheme
-
Trump AI plan calls for cybersecurity assessments, threat info-sharing
It remains unclear how federal agencies depleted by layoffs will be able to implement the strategy’s ambitious vision, which includes an ISAC dedicated to AI. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/white-house-artificial-intelligence-action-plan-cybersecurity-trump/753856/
-
How to Advance from SOC Manager to CISO?
Making the move from managing a security operations center (SOC) to being a chief information security officer (CISO) is a significant career leap. Not only do you need a solid foundation of tech knowledge but also leadership skills and business smarts. This article will guide you through the practical steps and skills you’ll need to…
-
The CISO code of conduct: Ditch the ego, lead for real
Where do we go from here?: To put a stop to this rising issue, we need to stop pretending this is someone else’s problem. We stop excusing toxic behavior just because someone carries the right title. And we stop treating leadership like it’s an untouchable domain reserved for those with the loudest voices or the…
-
As AI tools take hold in cybersecurity, entry-level jobs could shrink
A new survey from ISC2 shows that nearly a third of cybersecurity professionals are already using AI security tools, and many others are close behind. So far, 30 percent of … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/07/22/ai-in-cybersecurity-entry-level-jobs/
-
US signals intention to rethink job H-1B lottery
Foreign worker program represents betrayal of US computer science students, advocacy group argues First seen on theregister.com Jump to article: www.theregister.com/2025/07/20/h_1b_job_lottery/
-
Is AI here to take or redefine your cybersecurity role?
Tags: ai, attack, automation, business, ceo, cloud, compliance, conference, control, crowdstrike, cyber, cybersecurity, data, governance, intelligence, jobs, monitoring, phishing, risk, skills, soc, software, strategy, technology, threat, training, vulnerability“AI is coming, and will take some jobs, but no need to worry.”That headline ran atop a CSO story published in 2016. Nine years later, the prediction feels closer to coming true, with questions around jobs being replaced or redefined and whether cybersecurity pros should be worried taking on greater nuance, and still hanging in…
-
How to land your first job in cybersecurity
According to LinkedIn, job applications have surged over 45% in the past year, with 11,000 applications submitted every minute. This flood of applications is making it harder … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/07/21/cybersecurity-role-skills/
-
EncryptHub Targets Web3 Developers Using Fake AI Platforms to Deploy Fickle Stealer Malware
The financially motivated threat actor known as EncryptHub (aka LARVA-208 and Water Gamayun) has been attributed to a new campaign that’s targeting Web3 developers to infect them with information stealer malware.”LARVA-208 has evolved its tactics, using fake AI platforms (e.g., Norlax AI, mimicking Teampilot) to lure victims with job offers or portfolio review requests,” Swiss…
-
Laid-off AWS employee describes cuts as ‘cold and soulless’
Insiders tell The Register that a company-wide automation push means jobs are disappearing First seen on theregister.com Jump to article: www.theregister.com/2025/07/18/aws_sheds_jobs/
-
Building scalable secrets management in hybrid cloud environments: Lessons from enterprise adoption
Tags: access, backup, cloud, credentials, data, gitlab, group, iam, identity, infrastructure, jobs, kubernetes, leak, radius, service, supply-chain, toolLessons from integration: Identity, Kubernetes and CI/CD : Choosing a secrets management tool is the easy part. Integrating it across an enterprise is where the work begins. We started with identity. Manual user provisioning was not an option. We integrated Vault with our SSO platform using OIDC and mapped groups to Vault policies based on least privilege.…
-
HackHire – Silk Typhoon: Chinas gefährlichste Hacker-Gruppe enttarnt
First seen on security-insider.de Jump to article: www.security-insider.de/silk-typhoon-china-cyberangriffe-hackergruppe-a-55be6aded457c3723ef5f61473bda812/
-
Clément Domingo: “We are not using AI correctly to defend ourselves”
Tags: access, ai, attack, control, credentials, cyber, cyberattack, cybercrime, cybersecurity, dark-web, finance, government, group, hacker, infrastructure, intelligence, Internet, jobs, law, malicious, malware, office, password, programming, ransom, startup, threat, tool, trainingstartup, but dedicated to cybercrime in a very efficient way,” Domingo tells via email. “Most have what we call affiliates, which allows them to operate worldwide and attack any organization or entity. In most cases, the startup keeps 20% of the ransom and the accomplice takes 80%.”These are companies that, as he details, offer all…
-
What Fortune 100s are getting wrong about cybersecurity hiring
Many companies say they can’t find enough cybersecurity professionals. But a new report suggests the real problem isn’t a lack of talent, but how those jobs are structured and … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/07/17/cybersecurity-hiring-trends-2025/
-
State Department Layoffs Are ‘Fracturing’ US Cyber Diplomacy
Experts Warn Reorganization Splinters Cyberspace Bureau and Intelligence Divisions. U.S. Secretary of State Marco Rubio’s major shakeup of the State Department’s operations – including widespread layoffs and controversial restructurings that separate key cyber teams – will hinder U.S. cyber diplomacy as threats continue to escalate, analysts told Information Security Media Group. First seen on govinfosecurity.com…
-
Jamf Carries Out Another Round of Layoffs, Axing 6% of Staff
2nd Round of Layoffs in 2 Years Comes 3 Months After $216M Identity Acquisition. Jamf will execute its second round of layoffs in two years, cutting 6.4% of its workforce to reduce operating costs and improve operating margins. The Minneapolis-based Apple management and security vendor on Tuesday announced plans to reduce its staff by an…
-
Lessons Learned From McDonald’s Big AI Flub
McDonald’s hiring platform was using its original default credentials and inadvertently exposed information belonging to approximately 64 million job applicants. First seen on darkreading.com Jump to article: www.darkreading.com/application-security/lessons-learned-mcdonalds-ai-flub
-
North Korean Hackers Exploit Zoom Invites in Attacks on Crypto Companies
Tags: attack, blockchain, crypto, cyber, cybersecurity, data-breach, exploit, hacker, jobs, malware, north-korea, phishing, spear-phishing, tactics, threatCybersecurity firm SentinelOne has exposed an ongoing malware campaign orchestrated by North Korean threat actors, known for their persistent >>fake interview
-
Red Bull-Themed Phishing Attacks Target Job Seekers’ Credentials
A few significant investments in email filtering, authentication procedures, and endpoint protection, attackers are constantly improving their techniques to circumvent automated security measures in a time when phishing is still a major cyberthreat. A recent campaign identified by Evalian’s Security Operations Center (SOC) exemplifies this evolution, employing sophisticated deception to target job seekers with spoofed…
-
McDonald’s Hiring Bot: Would You Like A Side of PII With That?
An AI hiring bot intended to streamline the job application process has instead created a super-sized privacy headache for McDonald’s. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/07/mcdonalds-hiring-bot-would-you-like-a-side-of-pii-with-that/
-
8 tough trade-offs every CISO must navigate
Tags: access, ai, attack, business, ciso, cloud, compliance, computer, cyber, cybersecurity, ddos, defense, detection, framework, group, healthcare, incident response, jobs, malicious, mfa, regulation, resilience, risk, service, technology, threat, tool, vulnerability2. Weighing security investments when the budget forces choices: Closely related to the trade-off around risk is what CISOs must navigate when it comes to security investments.”For most CISOs, when they have to make tough choices, 99% of the time it’s due to budget constraints that force them to weight risks versus rewards,” says John…
-
Security Affairs newsletter Round 532 by Pierluigi Paganini INTERNATIONAL EDITION
A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. McDonald’s job app exposes data of 64 Million applicants Athlete or Hacker? Russian basketball player accused…
-
McDonald’s job app exposes data of 64 Million applicants
Vulnerabilities in McDonald’s McHire chatbot exposed data from 64 million job applicants due to insecure internal APIs. Security researchers Ian Carroll and Sam Curry discovered multiple vulnerabilities in the McDonald’s chatbot recruitment platform McHire that exposed the personal information of over 64 million job applicants. The security duo found that McDonald’s hiring bot, built by…
-
‘123456’ password exposed chats for 64 million McDonald’s job chatbot applications
Cybersecurity researchers discovered a vulnerability in McHire, McDonald’s chatbot job application platform, that exposed the chats of more than 64 million job applications across the United States. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/123456-password-exposed-chats-for-64-million-mcdonalds-job-chatbot-applications/
-
‘123456’ password exposed chats for 64 million McDonald’s job applications
Cybersecurity researchers discovered a vulnerability in McHire, McDonald’s chatbot job application platform, that exposed the chats of more than 64 million job applicants across the United States. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/123456-password-exposed-chats-for-64-million-mcdonalds-job-applications/
-
McDonald’s AI Hiring Tool McHire Security Flaw Exposed Candidate Chat Data
McHire’s AI system vulnerability briefly exposed limited candidate chat information. Learn how Paradox promptly fixed the issue, confirming… First seen on hackread.com Jump to article: hackread.com/mcdonalds-ai-hiring-tool-mchire-leaked-job-seekers-data/
-
‘123456’ password exposed chats for 64 million McDonald’s job applicants
Cybersecurity researchers discovered a vulnerability in McHire, McDonald’s chatbot job application platform, that exposed the chats of more than 64 million job applicants across the United States. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/123456-password-exposed-chats-for-64-million-mcdonalds-job-applicants/
-
‘123456’ password exposed info for 64 million McDonald’s job applicants
Cybersecurity researchers discovered a vulnerability in McHire, McDonald’s chatbot job application platform, that exposed the personal information of more than 64 million job applicants across the United States. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/123456-password-exposed-info-for-64-million-mcdonalds-job-applicants/
-
Airline executive agrees to dismiss litigation around alleged hackhire scheme
The cases, which stretched across multiple continents and shed light on the shady world of corporate espionage and mercenary hackers, stemmed from a scheme allegedly orchestrated by an attorney at the law firm Dechert to hack into Azima’s accounts for one of its clients. First seen on therecord.media Jump to article: therecord.media/airline-exec-agrees-to-dismiss-hack-for-hire-lawsuit