![[Valid RSS]](images/valid-rss-rogers.png "Valid RSS")
This is a valid RSS feed.
This feed is valid, but interoperability with the widest range of feed readers could be improved by implementing the following recommendations.
<?xml version="1.0" encoding="UTF-8"?><rss version="2.0" xmlns:content="http://purl.org/rss/1.0/modules/content/" xmlns:wfw="http://wellformedweb.org/CommentAPI/" xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:atom="http://www.w3.org/2005/Atom" xmlns:sy="http://purl.org/rss/1.0/modules/syndication/" xmlns:slash="http://purl.org/rss/1.0/modules/slash/" > <channel> <title>Help Net Security</title> <atom:link href="https://www.helpnetsecurity.com/feed/" rel="self" type="application/rss+xml" /> <link>https://www.helpnetsecurity.com/</link> <description>Daily information security news with a focus on enterprise security.</description> <lastBuildDate>Fri, 17 May 2024 11:34:07 +0000</lastBuildDate> <language>en-US</language> <sy:updatePeriod> hourly </sy:updatePeriod> <sy:updateFrequency> 1 </sy:updateFrequency> <generator>https://wordpress.org/?v=6.4.3</generator> <image> <url>https://img.helpnetsecurity.com/wp-content/uploads/2019/09/09093400/cropped-hns2-32x32.png</url> <title>Help Net Security</title> <link>https://www.helpnetsecurity.com/</link> <width>32</width> <height>32</height></image> <item> <title>US exposes scheme enabling North Korean IT workers to bypass sanctions</title> <link>https://www.helpnetsecurity.com/2024/05/17/north-korean-it-workers/</link> <dc:creator><![CDATA[Zeljka Zorz]]></dc:creator> <pubDate>Fri, 17 May 2024 11:34:07 +0000</pubDate> <category><![CDATA[Don't miss]]></category> <category><![CDATA[Hot stuff]]></category> <category><![CDATA[News]]></category> <category><![CDATA[DOJ]]></category> <category><![CDATA[enterprise]]></category> <category><![CDATA[North Korea]]></category> <category><![CDATA[tips]]></category> <category><![CDATA[USA]]></category> <guid isPermaLink="false">https://www.helpnetsecurity.com/?p=301683</guid> <description><![CDATA[<p>The US Justice Department had unsealed charges against a US woman and an Ukranian man who, along with three unidentified foreign nationals, have allegedly helped North Korean IT workers work remotely for US companies under assumed US identities and thus evade sanctions. At the same time, the US State Department has announced that its Rewards for Justice (RFJ) program is offering “a reward of up to $5 million for information that leads to the disruption … <a href="https://www.helpnetsecurity.com/2024/05/17/north-korean-it-workers/" rel="nofollow">More <span class="meta-nav">→</span></a></p><p>The post <a href="https://www.helpnetsecurity.com/2024/05/17/north-korean-it-workers/">US exposes scheme enabling North Korean IT workers to bypass sanctions</a> appeared first on <a href="https://www.helpnetsecurity.com">Help Net Security</a>.</p>]]></description> </item> <item> <title>The importance of access controls in incident response</title> <link>https://www.helpnetsecurity.com/2024/05/17/incident-response-access-controls/</link> <dc:creator><![CDATA[Help Net Security]]></dc:creator> <pubDate>Fri, 17 May 2024 09:30:12 +0000</pubDate> <category><![CDATA[Don't miss]]></category> <category><![CDATA[Expert analysis]]></category> <category><![CDATA[Expert corner]]></category> <category><![CDATA[Hot stuff]]></category> <category><![CDATA[News]]></category> <category><![CDATA[access control]]></category> <category><![CDATA[authentication]]></category> <category><![CDATA[cybersecurity]]></category> <category><![CDATA[identity]]></category> <category><![CDATA[incident response]]></category> <category><![CDATA[opinion]]></category> <category><![CDATA[Rootly]]></category> <guid isPermaLink="false">https://www.helpnetsecurity.com/?p=301640</guid> <description><![CDATA[<p>The worst time to find out your company doesn’t have adequate access controls is when everything is on fire. The worst thing that can happen during an incident is that your development and operations teams are blocked from solving the problem. That’s why having adequate identity access management (IAM) policies in place – which include both authorization (AuthZ) and authentication (AuthN) – is especially critical when it comes to your incident management tooling. The difference … <a href="https://www.helpnetsecurity.com/2024/05/17/incident-response-access-controls/" rel="nofollow">More <span class="meta-nav">→</span></a></p><p>The post <a href="https://www.helpnetsecurity.com/2024/05/17/incident-response-access-controls/">The importance of access controls in incident response</a> appeared first on <a href="https://www.helpnetsecurity.com">Help Net Security</a>.</p>]]></description> </item> <item> <title>Kroll expands its document review capabilities to accelerate incident response</title> <link>https://www.helpnetsecurity.com/2024/05/17/kroll-document-review-capabilities/</link> <dc:creator><![CDATA[Industry News]]></dc:creator> <pubDate>Fri, 17 May 2024 08:00:09 +0000</pubDate> <category><![CDATA[Industry news]]></category> <guid isPermaLink="false">https://www.helpnetsecurity.com/?p=301623</guid> <description><![CDATA[<p>Kroll expands its document review capabilities with DataminerAI to immediately pinpoint where sensitive data is located, providing faster, more efficient and affordable data mining. The technology optimizes incident response investigations and is available to all insurance carriers, law firms, and incident response providers seeking more efficient document review. Kroll partnered with eDiscovery services provider, Dauntless Discovery, to develop DataminerAI. It leverages large language models (LLM) to rapidly analyze data sets of all sizes to find … <a href="https://www.helpnetsecurity.com/2024/05/17/kroll-document-review-capabilities/" rel="nofollow">More <span class="meta-nav">→</span></a></p><p>The post <a href="https://www.helpnetsecurity.com/2024/05/17/kroll-document-review-capabilities/">Kroll expands its document review capabilities to accelerate incident response</a> appeared first on <a href="https://www.helpnetsecurity.com">Help Net Security</a>.</p>]]></description> </item> <item> <title>GitLab unveils AI capabilities to help organizations better secure their software</title> <link>https://www.helpnetsecurity.com/2024/05/17/gitlab-duo-enterprise/</link> <dc:creator><![CDATA[Industry News]]></dc:creator> <pubDate>Fri, 17 May 2024 07:00:36 +0000</pubDate> <category><![CDATA[Industry news]]></category> <category><![CDATA[GitLab]]></category> <guid isPermaLink="false">https://www.helpnetsecurity.com/?p=301617</guid> <description><![CDATA[<p>GitLab announced new innovations across the platform to streamline how organizations build, test, secure, and deploy software. Introducing GitLab Duo Enterprise GitLab Duo Enterprise, a new end-to-end AI add-on, combines the developer-focused AI capabilities of GitLab Duo Pro—organizational privacy controls, code suggestions, and chat—with enterprise-focused AI capabilities to help organizations proactively detect and fix security vulnerabilities, summarize issue discussions and merge requests, resolve CI/CD bottlenecks and failures, and enhance team collaboration. A new AI impact … <a href="https://www.helpnetsecurity.com/2024/05/17/gitlab-duo-enterprise/" rel="nofollow">More <span class="meta-nav">→</span></a></p><p>The post <a href="https://www.helpnetsecurity.com/2024/05/17/gitlab-duo-enterprise/">GitLab unveils AI capabilities to help organizations better secure their software</a> appeared first on <a href="https://www.helpnetsecurity.com">Help Net Security</a>.</p>]]></description> </item> <item> <title>The IT skills shortage situation is not expected to get any better</title> <link>https://www.helpnetsecurity.com/2024/05/17/it-skills-shortage-in-organizations/</link> <dc:creator><![CDATA[Help Net Security]]></dc:creator> <pubDate>Fri, 17 May 2024 04:30:22 +0000</pubDate> <category><![CDATA[News]]></category> <category><![CDATA[cybersecurity]]></category> <category><![CDATA[IDC]]></category> <category><![CDATA[report]]></category> <category><![CDATA[skill development]]></category> <category><![CDATA[survey]]></category> <guid isPermaLink="false">https://www.helpnetsecurity.com/?p=301356</guid> <description><![CDATA[<p>A growing IT skills shortage is impacting organizations in all industries and across all regions, according to IDC. In a recent IDC survey of North American IT leaders, nearly two thirds said that a lack of skills has resulted in missed revenue growth objectives, quality problems, and a decline in customer satisfaction. And the situation is not expected to get any better. AI skills are currently most in-demand IDC predicts that by 2026, more than … <a href="https://www.helpnetsecurity.com/2024/05/17/it-skills-shortage-in-organizations/" rel="nofollow">More <span class="meta-nav">→</span></a></p><p>The post <a href="https://www.helpnetsecurity.com/2024/05/17/it-skills-shortage-in-organizations/">The IT skills shortage situation is not expected to get any better</a> appeared first on <a href="https://www.helpnetsecurity.com">Help Net Security</a>.</p>]]></description> </item> <item> <title>Organizations struggle to defend against ransomware</title> <link>https://www.helpnetsecurity.com/2024/05/17/ransomware-incidents-surge-video/</link> <dc:creator><![CDATA[Help Net Security]]></dc:creator> <pubDate>Fri, 17 May 2024 04:00:48 +0000</pubDate> <category><![CDATA[Don't miss]]></category> <category><![CDATA[Hot stuff]]></category> <category><![CDATA[Video]]></category> <category><![CDATA[critical infrastructure]]></category> <category><![CDATA[cybersecurity]]></category> <category><![CDATA[exploit]]></category> <category><![CDATA[extortion]]></category> <category><![CDATA[NTT Security]]></category> <category><![CDATA[ransomware]]></category> <category><![CDATA[supply chain]]></category> <category><![CDATA[video]]></category> <guid isPermaLink="false">https://www.helpnetsecurity.com/?p=300832</guid> <description><![CDATA[<p>In this Help Net Security video, Jeremy Nichols, Director, Global Threat Intelligence Center at NTT Security Holdings, discusses a recent surge in ransomware incidents. After a down year in 2022, ransomware and extortion incidents increased in 2023. More than 5,000 ransomware victims were detected or posted across multiple social channels up from approximately 3,000 in 2022, according to the 2024 Global Threat Intelligence Report by NTT Security Holdings. Other key findings: Critical infrastructure, supply chain, … <a href="https://www.helpnetsecurity.com/2024/05/17/ransomware-incidents-surge-video/" rel="nofollow">More <span class="meta-nav">→</span></a></p><p>The post <a href="https://www.helpnetsecurity.com/2024/05/17/ransomware-incidents-surge-video/">Organizations struggle to defend against ransomware</a> appeared first on <a href="https://www.helpnetsecurity.com">Help Net Security</a>.</p>]]></description> </item> <item> <title>Too many ICS assets are exposed to the public internet</title> <link>https://www.helpnetsecurity.com/2024/05/17/organizations-expanding-attack-surface/</link> <dc:creator><![CDATA[Help Net Security]]></dc:creator> <pubDate>Fri, 17 May 2024 03:30:09 +0000</pubDate> <category><![CDATA[News]]></category> <category><![CDATA[cybersecurity]]></category> <category><![CDATA[networks]]></category> <category><![CDATA[report]]></category> <category><![CDATA[runZero]]></category> <category><![CDATA[survey]]></category> <guid isPermaLink="false">https://www.helpnetsecurity.com/?p=301209</guid> <description><![CDATA[<p>The enterprise attack surface is expanding in multiple ways, becoming more numerous and more specific, according to runZero. “Our research reveals alarming gaps and unexpected trends in enterprise infrastructure, including the decay of network segmentation, persistent challenges in attack surface management, and the increasing volume of dark matter on modern networks,” said HD Moore, CEO. IT and OT are converging, expanding the attack surface of organizations and requiring new techniques to discover and manage assets. … <a href="https://www.helpnetsecurity.com/2024/05/17/organizations-expanding-attack-surface/" rel="nofollow">More <span class="meta-nav">→</span></a></p><p>The post <a href="https://www.helpnetsecurity.com/2024/05/17/organizations-expanding-attack-surface/">Too many ICS assets are exposed to the public internet</a> appeared first on <a href="https://www.helpnetsecurity.com">Help Net Security</a>.</p>]]></description> </item> <item> <title>New infosec products of the week: May 17, 2024</title> <link>https://www.helpnetsecurity.com/2024/05/17/new-infosec-products-of-the-week-may-17-2024/</link> <dc:creator><![CDATA[Help Net Security]]></dc:creator> <pubDate>Fri, 17 May 2024 03:00:17 +0000</pubDate> <category><![CDATA[News]]></category> <category><![CDATA[Calix]]></category> <category><![CDATA[FireMon]]></category> <category><![CDATA[ManageEngine]]></category> <category><![CDATA[OWASP]]></category> <guid isPermaLink="false">https://www.helpnetsecurity.com/?p=301512</guid> <description><![CDATA[<p>Here’s a look at the most interesting products from the past week, featuring releases from Calix, FireMon, ManageEngine, and OWASP Foundation. Calix strengthens SmartBiz security with automated alerts and anti-spam compliance tools Calix unveiled updates to SmartBiz, a purpose-built small business solution for broadband service providers (BSPs), that expand an existing set of security capabilities. These enhancements help BSPs ensure the safety, security, and compliance of critical small business online activities at scale. Updates include … <a href="https://www.helpnetsecurity.com/2024/05/17/new-infosec-products-of-the-week-may-17-2024/" rel="nofollow">More <span class="meta-nav">→</span></a></p><p>The post <a href="https://www.helpnetsecurity.com/2024/05/17/new-infosec-products-of-the-week-may-17-2024/">New infosec products of the week: May 17, 2024</a> appeared first on <a href="https://www.helpnetsecurity.com">Help Net Security</a>.</p>]]></description> </item> <item> <title>Critical Git vulnerability allows RCE when cloning repositories with submodules (CVE-2024-32002)</title> <link>https://www.helpnetsecurity.com/2024/05/16/git-cve-2024-32002/</link> <dc:creator><![CDATA[Zeljka Zorz]]></dc:creator> <pubDate>Thu, 16 May 2024 11:14:57 +0000</pubDate> <category><![CDATA[Don't miss]]></category> <category><![CDATA[Hot stuff]]></category> <category><![CDATA[News]]></category> <category><![CDATA[DevOps]]></category> <category><![CDATA[Git]]></category> <category><![CDATA[GitHub]]></category> <category><![CDATA[open source]]></category> <category><![CDATA[security update]]></category> <category><![CDATA[vulnerability]]></category> <guid isPermaLink="false">https://www.helpnetsecurity.com/?p=301563</guid> <description><![CDATA[<p>New versions of Git are out, with fixes for five vulnerabilities, the most critical (CVE-2024-32002) of which can be used by attackers to remotely execute code during a “clone” operation. About Git Git is a widely-popular distributed version control system for collaborative software development. It can be installed on machines running Windows, macOS, Linux, and various *BSD distributions. Web-based software development platforms GitHub and GitLab are based on Git. Visual Studio, Microsoft’s integrated development environment, … <a href="https://www.helpnetsecurity.com/2024/05/16/git-cve-2024-32002/" rel="nofollow">More <span class="meta-nav">→</span></a></p><p>The post <a href="https://www.helpnetsecurity.com/2024/05/16/git-cve-2024-32002/">Critical Git vulnerability allows RCE when cloning repositories with submodules (CVE-2024-32002)</a> appeared first on <a href="https://www.helpnetsecurity.com">Help Net Security</a>.</p>]]></description> </item> <item> <title>Google fixes third exploited Chrome zero-day in a week (CVE-2024-4947)</title> <link>https://www.helpnetsecurity.com/2024/05/16/cve-2024-4947/</link> <dc:creator><![CDATA[Zeljka Zorz]]></dc:creator> <pubDate>Thu, 16 May 2024 08:49:39 +0000</pubDate> <category><![CDATA[Don't miss]]></category> <category><![CDATA[Hot stuff]]></category> <category><![CDATA[News]]></category> <category><![CDATA[0-day]]></category> <category><![CDATA[Chrome]]></category> <category><![CDATA[exploit]]></category> <category><![CDATA[Kaspersky]]></category> <category><![CDATA[security update]]></category> <guid isPermaLink="false">https://www.helpnetsecurity.com/?p=301533</guid> <description><![CDATA[<p>For the third time in the last seven days, Google has fixed a Chrome zero-day vulnerability (CVE-2024-4947) for which an exploit exists in the wild. About CVE-2024-4947 CVE-2024-4947 is a type confusion vulnerability in V8, Chrome’s JavaScript and WebAssembly engine. And while the two Chrome zero days fixed in the past few days have been attributed to an anonymous researcher, this time around the reporters are known: Kaspersky threat researchers Vasiliy Berdnikov and Boris Larin. … <a href="https://www.helpnetsecurity.com/2024/05/16/cve-2024-4947/" rel="nofollow">More <span class="meta-nav">→</span></a></p><p>The post <a href="https://www.helpnetsecurity.com/2024/05/16/cve-2024-4947/">Google fixes third exploited Chrome zero-day in a week (CVE-2024-4947)</a> appeared first on <a href="https://www.helpnetsecurity.com">Help Net Security</a>.</p>]]></description> </item> </channel></rss> If you would like to create a banner that links to this page (i.e. this validation result), do the following:
Download the "valid RSS" banner.
Upload the image to your own server. (This step is important. Please do not link directly to the image on this server.)
Add this HTML to your page (change the image src attribute if necessary):
If you would like to create a text link instead, here is the URL you can use:
http://www.feedvalidator.org/check.cgi?url=http%3A//feeds.feedburner.com/HelpNetSecurity
