Aggregator

When the EU Cyber Resilience Act (CRA) was introduced into law in 2024, it represented one of the most significant regulatory shifts we've seen anywhere in the world with implications for how organizations build, ship, and maintain software. It establishes cybersecurity requirements for hardware and software products sold within the European Union or produced by organizations operating in the EU, and is among the first international legislation focused on cybersecurity requirements. It was also part of a wave of global regulations that put the security of software supply chains in the spotlight.

The post The Time Is Now to Prepare for CRA Enforcement appeared first on Security Boulevard.

Elastic has announced MCP Apps for Elastic, delivering agent-native UI experiences for security and observability workflows across third-party coding tools and chat clients. The new MCP Apps enable teams to investigate threats, diagnose system behavior, and act on data directly within the AI tools they already use, without switching tools or stitching together separate systems. Built on the Model Context Protocol (MCP) apps spec, the open standard co-authored by Anthropic and OpenAI, these apps allow … More →

The post Elastic MCP Apps bring security and observability workflows into AI tools appeared first on Help Net Security.

A newly identified backdoor called DinDoor is using the legitimate Deno JavaScript runtime and MSI installer files to quietly slip past security defenses and compromise targeted systems. The malware, tracked as a variant of the Tsundere Botnet, relies on trusted, signed runtime environments instead of deploying standard compiled implants. This makes detection far more difficult […]

The post New DinDoor Backdoor Abuses Deno Runtime and MSI Installers to Evade Detection appeared first on Cyber Security News.

You must login to view this content