February 23, 2024 at 07:21AM Microsoft has unveiled PyRIT, an open-access automation framework, to proactively identify risks in generative AI systems. The tool aims to assess robustness, security, and privacy harms, offering various interfaces and scoring options. Though it complements manual red teaming, it highlights risk areas and prompts further investigation. This development coincides with … Read more
February 21, 2024 at 09:58AM The cyber-threat landscape is rapidly evolving, posing challenges for businesses of all sizes. Data breach incidents and costs are increasing, especially for small businesses, forcing compliance and security expenditures. Executives face the dilemma of balancing business growth with cybersecurity amidst a complex threat environment. Strategic cybersecurity investments, aligned with business … Read more
February 21, 2024 at 09:07AM Businesses face significant complexity in transitioning to cloud-native applications and multi-cloud architectures, placing cloud teams at the forefront of implementing security policies. Palo Alto Networks’ Prisma® Cloud offers “code-to-cloud” security, utilizing advanced automation to streamline security monitoring and management across cloud infrastructures. Join the webinar on 26 February to discover … Read more
February 21, 2024 at 04:18AM The SANS 2023 SOC report offers data-driven insights and emerging trends shaping the future of cybersecurity operations. Key findings include budget allocation, metrics usage, calculating SOC value, staffing dynamics, and major challenges such as lack of context, automation and orchestration, blind spots, and shortage of skilled staff. Strategic implications include … Read more
February 21, 2024 at 01:40AM Large language models (LLMs) show potential in speeding up software development by detecting and addressing common bugs. Google’s Gemini LLM can fix 15% of bugs found using dynamic application security testing (DAST), helping prioritize vulnerabilities often overlooked by developers. AI-powered bug-fixing systems are crucial as machine learning models produce more … Read more
February 6, 2024 at 09:19AM GenAI can revolutionize enterprise operational workflows by automating processes. It democratizes knowledge across the security team and enables analysts to ask questions and receive answers through natural language processing. Despite this, it should complement human expertise, not replace it. Transparency and ethical principles are crucial in deploying GenAI effectively in … Read more
January 29, 2024 at 03:12PM Schneider Electric was hit by a Cactus ransomware attack, compromising its Sustainability Business division and leading to data theft. The attack also disrupted its Resource Advisor cloud platform. The stolen data may include sensitive information about customers’ power utilization and compliance with environmental regulations. Schneider Electric is currently working on … Read more
January 23, 2024 at 09:12AM San Francisco startup Doppel secured $14 million in early funding led by Andreesen Horowitz. The investment included contributions from Strategic Cyber Ventures, Script Capital, South Park Commons, and SVAngel. Doppel aims to use AI to detect and combat digital risks, including disinformation campaigns. Their ambition is to develop AI-powered technology … Read more
January 8, 2024 at 08:36AM Security professionals are prioritizing use cases such as incident response, alert triage, vulnerability management, spear phishing, and threat intelligence for technology investments. Automation adoption is driven by the need for efficiency, with top use cases varying by industry. A standardized, data-driven and extensible platform is key for successful security automation … Read more
December 14, 2023 at 08:48AM The security operations center serves as the first line of defense against active attacks, but is often underfunded and understaffed. Dark Reading’s special report “Key Elements Enterprises Needs to Include in Modern SecOps” details the challenges facing modern enterprise security operations centers and suggests strategies for investing in tools, automation, … Read more