ESET Chief Security Evangelist Tony Anscombe highlights some of the key findings from the latest issue of the ESET APT Activity Report.

Former colleagues and friends remember the cybersecurity researcher, author, and mentor whose work bridged the human and technical sides of security.

Learn what’s been added to the ATT&CK framework — and how you can best operationalize it to advance your organization’s threat detection and response.

From unintentional data leakage to buggy code, here’s why you should care about unsanctioned AI use in your company.

Google and others are inundating development teams with AI-powered reporting. Are AI-enabled fixes the answer? 

Want real security without subscriptions? These three open-source tools help you lock down your computer with no ads, no telemetry, just protection.

Here's how cybercriminals could try to crack your vault and how you can keep your passwords safe.

Does your chatbot know too much? Think twice before you tell your AI companion everything.

ESET researchers have discovered a network implant used by the China-aligned PlushDaemon APT group to perform adversary-in-the-middle attacks.

The Open Worldwide Application Security Project’s widely used AppSec priority list is expanding to cover systemic risk to software security.

Here’s how open-source intelligence helps uncover your digital footprint and weak points, plus a few essential tools to connect the dots.

Here's why your business needs the best-of-breed combination of technology and human expertise

Purism makes premium phones, laptops, mini PCs and servers running free software on PureOS. Purism products respect people's privacy and freedom while protecting their security.

Social media influencers can provide reach and trust for scams and malware distribution. Robust account protection is key to stopping the fraudsters.

Online disagreements among young people can easily spiral out of control. Parents need to understand what’s at stake.

Data leaks by top AI companies, the Akira ransomware haul, Operation Endgame against major malware families, and more of this month's cybersecurity news

From LinkedIn to X, GitHub to Instagram, there are plenty of opportunities to share work-related information. But posting could also get your company into trouble.

MuddyWater targets critical infrastructure in Israel and Egypt, relying on custom malware, improved tactics, and a predictable playbook.

Improper Validation of Specified Quantity in Input vulnerability in Text component parser of the Qt declarative module has been discovered and has been assigned the CVE id CVE-2025-12385  Generated by RSStT. The copyright belongs to the original author. Source

Identity is effectively the new network boundary. It must be protected at all costs.