Tag: software
-
Modern Enterprises: How to Evaluate the Security and Compliance of Office Software
Learn how modern businesses can judge office software for ISO 27001 certification, GDPR-aligned data handling, encryption, and safer PDF workflows with clarity. First seen on hackread.com Jump to article: hackread.com/evaluate-security-compliance-of-office-software/
-
Veraltete Software in Container-Images Die unsichtbare Angriffsfläche in deutschen Cloud-Umgebungen
Container-Technologien sind in deutschen Unternehmen längst zum Standard geworden: Laut aktuellen Marktdaten nutzen 79 % aller Unternehmen Kubernetes für das Management ihrer Cloud-Anwendungen, und Gartner prognostiziert, dass bis 2027 mehr als 90 % der Unternehmen weltweit containerisierte Anwendungen in der Produktion betreiben werden. Gleichzeitig warnen 42 % der DevOps- und Sicherheitsfachleute, dass Sicherheit die größte…
-
EndLife-Software in Kubernetes-Umgebungen wird zum Compliance- und Sicherheitsrisiko
Entscheidend ist dabei nicht nur die reine Erkennung einer veralteten Komponente. Relevant ist auch der Kontext: Wo wird das betroffene Image aktiv eingesetzt? First seen on infopoint-security.de Jump to article: www.infopoint-security.de/end-of-life-software-in-kubernetes-umgebungen-wird-zum-compliance-und-sicherheitsrisiko/a45633/
-
Vulnerability reports are arriving faster than GitHub can review them
Across the open source world, people are reporting software flaws in record numbers, and the systems built to verify those reports are straining under the weight. The GitHub … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/30/github-advisory-database-review/
-
Warner bill would create federally vetted list for secure, trustworthy AI agents
The bill empowers the FTC to create a registry for sellers of AI agent software certifying their privacy and cybersecurity protections. First seen on cyberscoop.com Jump to article: cyberscoop.com/ai-agent-act-senate-draft-bill-mark-warner/
-
KDDI Data Breach May Expose 14.2 Million Email Accounts
KDDI disclosed a breach that may have exposed up to 14.2 million email accounts after attackers exploited a third-party software vulnerability. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/kddi-data-breach-may-expose-14-2-million-email-accounts/
-
JSP webshells being dropped on unpatched PTC Windchill instances
The US Cybersecurity and Infrastructure Security Agency (CISA) added a vulnerability (CVE-2026-12569) in Windchill and FlexPLM, two product lifecycle management software … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/29/ptc-windchill-cve-2026-12569-exploited/
-
Polizei und Palantir: Wie Bayern die Kontrolle über Palantir verliert
Tags: softwareMehrere Bundesländer, auch Bayern, setzen die umstrittene US-Software Palantir in ihren Polizeibehörden ein. Warnungen von Datenschützern haben sich dabei teilweise bestätigt. First seen on golem.de Jump to article: www.golem.de/news/bayerische-polizei-und-palantir-ist-der-einsatz-von-vera-teils-verfassungswidrig-2606-210271.html
-
KI-Zugangsbeschränkungen und ihre Folgen für die Cybersicherheit
Laut Berichterstattung hat die US-Regierung Anthropic angewiesen, den Zugang zu seinen leistungsfähigsten KI-Modellen, Fable 5 und Mythos 5, zu beschränken. Grund dafür sind Bedenken hinsichtlich der Cybersicherheit und der nationalen Sicherheit: vermutlich die Sorge darüber, dass ausländische Bedrohungsakteure die Systeme zur Identifizierung von Software-Schwachstellen oder zur Unterstützung von Cyberangriffen nutzen könnten. Dieses Vorgehen der amerikanischen…
-
Bayerische Polizei und Palantir: Ist der Einsatz von Vera teils verfassungswidrig?
Tags: softwareMehrere Bundesländer, auch Bayern, setzen die umstrittene US-Software Palantir in ihren Polizeibehörden ein. Warnungen von Datenschützern haben sich dabei teilweise bestätigt. First seen on golem.de Jump to article: www.golem.de/news/bayerische-polizei-und-palantir-ist-der-einsatz-von-vera-teils-verfassungswidrig-2606-210271.html
-
China’s Zhipu AI Model GLM-5.2 Detects Software Vulnerabilities Like Claude Mythos
Zhipu AI’s newly released GLM-5.2 model is attracting significant attention from the cybersecurity community due to its vulnerability detection capabilities, which are comparable to those of Anthropic’s restricted Claude Mythos system. This development raises new concerns about the effectiveness of U.S. export control policies on advanced artificial intelligence. Released on June 13, 2026, under a…
-
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 103
Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Malware Newsletter More Than 4,000 Legacy Routers Compromised by AryStinger, Turned into Global Attack Proxies for Hackers A VBScript campaign distributed through WhatsApp deploying RMM software Lost in relocation: analysis of a new loader distributing CASTLESTEALER…
-
How to stop treating OEM software like a security liability
Tags: softwareFirst seen on scworld.com Jump to article: www.scworld.com/perspective/how-to-stop-treating-oem-software-like-a-security-liability
-
New Initiative Tackles Security for EndLife Open Source Software
The Open Source Sustainability Initiative’s goal is to help enterprises manage and secure aging open source projects while maintaining regulatory compliance. First seen on darkreading.com Jump to article: www.darkreading.com/application-security/initiative-tackles-security-end-of-life-open-source
-
Comparing Antivirus Software 2026: Avast vs. AVG
Compare Avast and AVG antivirus software in 2026. We assess features like malware detection, real-time protection, pricing, customer support, and more. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/products/avast-vs-avg-antivirus/
-
Software, AI companies form alliance to tackle open-source security flaws
The emergence of frontier AI models has increased the speed and capabilities of malicious hackers. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/software-ai-alliance-open-source-security-flaws/823889/
-
Norton vs McAfee: Compare Antivirus Software in 2026
Compare Norton and McAfee antivirus software in 2026. We assess features like malware detection, real-time protection, pricing, customer support, and more. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/products/norton-vs-mcafee-antivirus/
-
Microsoft Defender vs Bitdefender: Compare Antivirus Software in 2026
Compare Microsoft Defender and Bitdefender across pricing, features, support, and business use cases in 2026 to find the best antivirus solution. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/products/microsoft-defender-vs-bitdefender/
-
Datenleck bei Meta: Umstrittene Tracking-Software gibt persönliche Informationen preis
First seen on t3n.de Jump to article: t3n.de/news/datenleck-bei-meta-umstrittene-tracking-software-gibt-persoenliche-informationen-preis-1749304/
-
CISA Adds Exploited PTC Windchill RCE Flaw to KEV as Web Shell Attacks Continue
Tags: attack, cisa, cybersecurity, data, exploit, flaw, infrastructure, kev, rce, remote-code-execution, software, vulnerabilityThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a critical remote code execution vulnerability impacting PTC Windchill PDMlink and PTC FlexPLM enterprise Product Data Management (PDM) and Product Lifecycle Management (PLM) software to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation.The vulnerability in question is First seen on thehackernews.com…
-
Erste aktive Ausnutzung von Industrie-Plattform Windchill entdeckt
Die US-Sicherheitsbehörde CISA warnt vor Angriffen auf die PLM-Software PTC Windchill, bei denen Angreifer über Schadcode komplette Systeme übernehmen. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/ausnutzung-industrie-windchill
-
Critical open-source projects get a new security framework
Open source software projects are getting a new framework for handling security vulnerabilities as AI shortens the time between flaw discovery and exploitation. The Linux … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/26/akrites-open-source-security-framework/
-
Synology issues critical fix for MailPlus Server vulnerabilities
Synology has has fixed critical vulnerabilities in MailPlus Server, a software package used to run private email infrastructure on Synology NAS devices. The security update … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/26/synology-mailplus-server-vulnerabilities/
-
Mystery hackers use novel SharkLoader dropper against governments, software devs
Kaspersky researchers have uncovered a previously unknown cyberattack campaign that has compromised government organizations and software development companies in multiple … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/26/sharkloader-dropper-governments-software-developers/
-
EdTech Attackers Shift From Schools to Their Software Suppliers
Tags: softwareEducational institutions, the edtech companies they rely on, and, more concerningly, the challenges they pose for schools are the focus of the latest Reporters’ Notebook video series. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/edtech-attackers-shift-schools-software-suppliers
-
Open-Source Coalition Pushes California to Rework AI Act
Developers Warn Clause in AI Transparency Act Collides With Open-Source Licensing. A coalition of open-source artificial intelligence players are pressing California to rewrite a license-revocation provision in the state’s AI Transparency Act, warning that the language as drafted clashes with how open-source licensing works and could seed uncertainty across the software supply chain. First seen…
-
Best practices for AI in open-source work
Free and open source software developers us AI coding assistants such as Claude Code, Copilot CLI, Antigravity, and OpenCode in their daily work. The Software Freedom … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/25/foss-ai-in-open-source/
-
Most teams will ship AI-written infrastructure code with little review
AI-assisted development has settled into everyday practice across software organizations, and developers using it move from idea to working code in hours. That code does not … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/25/ai-infrastructure-governance-gap-report/
-
Warum Software-Schutz für KI-Agenten nicht ausreicht – Bei Agentic AI wiederholt die IT-Branche alte Fehler
First seen on security-insider.de Jump to article: www.security-insider.de/agentic-ai-autonome-agenten-hardware-sicherheit-a-0fa7e12b967f75c542ae336b38cd3f51/
-
Krypto-Clipper tarnt sich auf Software-Plattformen
Angreifer nutzen KI-Stimmen, Fake-Reviews und manipulierte Downloadzahlen, um eine Schadsoftware für Krypto-Diebstahl als sichere Tools zu tarnen. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/krypto-clipper-software-plattformen

