Personnalisez votre veille

Inscrivez-vous gratuitement.

Espace publicitaire · 728×90

Node.js Updated HackerOne Program to Require a Signal of 1.0 or Higher to Submit Vulnerability Reports

IT Security News - infosec - IT Security News • Publié le 23 janvier 2026

Node.js has updated its HackerOne vulnerability disclosure program to require a minimum Signal score of 1.0, aiming to reduce low-quality submissions and improve processing efficiency. Node.js has implemented a new threshold for vulnerability report submissions through its HackerOne program, mandating…

The post Node.js Updated HackerOne Program to Require a Signal of 1.0 or Higher to Submit Vulnerability Reports appeared first on IT Security News.

Espace publicitaire · 300×250

Mass Data, Mass Surveillance, and the Erosion of Particularity: The Fourth Amendment in the Age of Geofence Warrants and Artificial Intelligence

The Supreme Court’s review of United States v. Chatrie puts geofence warrants and mass digital data seizures under Fourth Amendment scrutiny, raising urgent questions about particularity, AI-driven searches, and constitutional limits in…

itsecuritynews.info•

🇬🇧 → 🇫🇷

The 2025 Phishing Surge Proved One Thing: Chasing Doesn’t Work

Let’s get something out of the way: retrospectives can feel a bit like mandatory fun. Someone gathers up the year’s events, packages them into neat categories, and delivers “key takeaways” that land somewhere…

itsecuritynews.info•

🇬🇧 → 🇫🇷

Why AI Is Making Attack Surface Management Mandatory

Amit Sheps, head of product marketing at CyCognito, discusses the growing challenges cybersecurity teams face as artificial intelligence accelerates the expansion of enterprise attack surfaces. He explains why visibility, continuous…

itsecuritynews.info•

🇬🇧 → 🇫🇷

Analysis of Single Sign-On Abuse on FortiOS

Fortinet is proactively communicating to customers to share analysis regarding single sign-on (SSO) abuse on FortiOS.     This article has been indexed from PSIRT Blog Read the original article: Analysis of Single Sign-On…

itsecuritynews.info•

🇬🇧 → 🇫🇷

We’ve Reached the “Customers Want Security” Stage, and AI Is Listening

I’ve seen this movie before. That’s why a recent LinkedIn post by Ilya Kabanov stopped me mid-doomscroll. Kabanov described how frontier AI companies are quietly but decisively shifting into cybersecurity. They are not joining as partners…

itsecuritynews.info•

🇬🇧 → 🇫🇷

Targeted Cyberattack Foiled by Resecurity Honeypot

  There has been a targeted intrusion attempt against the internal environment of Resecurity in November 2025, which has been revealed in detail by the cyber security company. In order to expose the adversaries behind this attack, the…

itsecuritynews.info•

🇬🇧 → 🇫🇷

AI-Powered North Korean Konni Malware Targets Developers

Check Point Research is tracking an active phishing campaign involving KONNI, a North Korea-affiliated threat actor active since at least 2014. Historically, KONNI focused on South Korean diplomatic, academic, and government-linked…

itsecuritynews.info•

🇬🇧 → 🇫🇷

Attackers Continue to Target Trusted Collaboration Platforms: 12,000+ Emails Target Teams Users

Overview This report describes a phishing campaign in which attackers abuse Microsoft Teams functionality to distribute phishing content that appears to originate from legitimate Microsoft services. The attack leverages guest invitations…

itsecuritynews.info•

Personnalisez votre veille

Articles similaires

Mass Data, Mass Surveillance, and the Erosion of Particularity: The Fourth Amendment in the Age of Geofence Warrants and Artificial Intelligence

The 2025 Phishing Surge Proved One Thing: Chasing Doesn’t Work

Why AI Is Making Attack Surface Management Mandatory

Analysis of Single Sign-On Abuse on FortiOS

We’ve Reached the “Customers Want Security” Stage, and AI Is Listening

Targeted Cyberattack Foiled by Resecurity Honeypot

AI-Powered North Korean Konni Malware Targets Developers

Attackers Continue to Target Trusted Collaboration Platforms: 12,000+ Emails Target Teams Users