October 28, 2024 at 08:33AM Cybersecurity news reveals new threats including a critical Fortinet flaw under exploitation, severe cryptographic issues in cloud services, and North Korean Lazarus Group exploiting a Chrome vulnerability. Notably, Delta Air Lines sued CrowdStrike for a major outage, while CISA investigates unauthorized telecom access by Chinese threat actors. Stay informed and … Read more
October 18, 2024 at 01:40AM Intel has dismissed Chinese claims from the Cybersecurity Association of China that its chips contain NSA-directed security backdoors and have vulnerabilities. The allegations triggered calls for a cybersecurity review in China. The tensions between the US and China over cybersecurity are rising, with accusations from both sides intensifying. ### Meeting … Read more
October 17, 2024 at 01:03PM The rapid adoption of AI and machine learning raises concerns about zero-day vulnerabilities, unique to these technologies. Traditional security practices must adapt to address AI-specific threats, such as prompt injection and data leakage. Security teams are urged to integrate security throughout the AI lifecycle and conduct proactive audits to mitigate … Read more
October 16, 2024 at 05:23PM Bugcrowd’s 2024 report reveals significant insights from 1,300 ethical hackers on the rising influence of AI in cybersecurity. Key findings highlight that 82% view the AI threat landscape as rapidly evolving, while 93% believe AI tools create new attack vectors. The report also notes a growing interest in hardware hacking … Read more
October 16, 2024 at 07:45AM Cybercriminals are increasingly using AI to enhance their capabilities, although much of the hype surrounding AI in cybercrime lacks substance. Currently, AI is mainly applied to simple tasks like phishing and code generation. However, security risks exist, particularly with custom AI tools, raising concerns over sensitive data exposure. ### Meeting … Read more
October 9, 2024 at 05:14PM Pillar Security released groundbreaking research detailing real-world attacks on GenAI, revealing a 90% data theft success rate and a 20% bypass rate of security measures. The report emphasizes increasing attack frequency and complexity, urging organizations to adopt dynamic security solutions and tailored strategies to combat emerging threats in the evolving … Read more
October 9, 2024 at 02:11PM A significant skills gap in AI and cloud security exists, with 39% of security teams needing expertise in cloud computing and 34% lacking AI skills. Continuous upskilling is essential to tackle evolving cyber threats. Training, certifications, and experience can enhance competencies, while initiatives like MITRE’s AI Incident Sharing aim to … Read more
May 2, 2024 at 07:11AM The rise of Deepfakes and AI-driven disinformation poses a significant threat to elections, with the upcoming US presidential election at risk. The ease of access to AI technology allows for the spread of misinformation, making it challenging for citizens to discern real news. Vigilance and critical thinking are crucial in … Read more
April 29, 2024 at 01:59PM CISA, the US government cybersecurity agency, has released guidelines to enhance critical infrastructure security against AI-related threats. The guidelines identify three types of AI risks and advocate a four-part mitigation strategy, emphasizing a robust organizational culture focused on AI risk management. CISA also stresses the need for contextualized risk evaluation … Read more
March 27, 2024 at 04:16PM Organizations need to comprehend AI-based threats to counter the advantage they provide to wrongdoers. Understanding the nature of these threats is crucial in the current landscape. Based on the meeting notes, it’s essential for organizations to grasp the nature of AI-based threats and devise strategies to mitigate the advantage that … Read more