April 10, 2024 at 08:34AM Google has announced the integration of Mandiant’s security offerings into its AI platform, adding new security capabilities. This includes automated security agents using generative AI to detect, stop, and remediate cybersecurity attacks, and enhance speed of investigations. Additionally, the use of AI tools like Gemini and ChatGPT is seen as … Read more
April 9, 2024 at 01:59PM The security profession uses preventive and detective controls to reduce risk. Preventive controls aim to lessen potential threats, while detective controls identify security issues post-incident. However, the prevalence of DDoS attacks underscores the need for more emphasis on preventive controls. Steps to enhance DDoS protection include vulnerability checks, staying nondisruptive, … Read more
April 9, 2024 at 11:54AM Cyera, a data security company, raised $300 million in a Series C funding round, bringing its valuation to $1.4 billion. It previously raised $160 million and emerged from stealth mode in 2022 with $60 million in funding. The round was led by Coatue, with participation from several venture capital firms. … Read more
April 9, 2024 at 11:37AM Researchers at Varonis have uncovered two techniques for attackers to evade SharePoint audit logs when downloading files. By using the “Open in App” feature or spoofing the User-Agent string, they can generate less severe or misleading events. Microsoft has acknowledged these issues but rated them as moderate, so organizations are … Read more
April 8, 2024 at 09:54AM Researchers from ETH Zurich have unveiled new attack techniques called Ahoi attacks, targeting hardware-based trusted execution environments in cloud platforms using AMD’s SEV-SNP and Intel’s TDX technologies. The attacks allow malicious hypervisors to compromise confidential virtual machines and gain root access. The researchers have notified relevant companies, and relevant patches … Read more
April 5, 2024 at 10:39AM New research has revealed that AI-as-a-service providers, like Hugging Face, are vulnerable to threats allowing attackers to gain access to private AI models and apps. The findings highlight the risk of supply chain attacks on machine learning pipelines. Recommendations include using trusted AI models, enabling multi-factor authentication, and avoiding pickle … Read more
April 5, 2024 at 08:04AM Multicloud security presents complex challenges, demanding correlation of numerous daily security alerts across platforms. Prioritizing native solutions like cloud-native application protection platforms (CNAPPs), enables seamless integration and robust protection for cloud workloads. CNAPPs offer solutions for monitoring, detecting threats, scalable coverage, integrating with pipelines, and maintaining access-related risks, making them … Read more
April 4, 2024 at 08:30AM Permiso, a cloud identity tracking firm, has secured $18 million in Series A funding from Altimeter Capital and Point72 Ventures. The company creates ‘meta’ identities for authorized users in cloud networks, while also offering a detection platform to predict malicious behavior. With plans to expand their team and coverage, Permiso … Read more
April 4, 2024 at 06:18AM The US government criticized Microsoft’s cybersecurity practices and corporate culture, highlighting laxity and untruthfulness. The company prioritized commercial interests over cybersecurity, leading to avoidable security breaches. The government’s Cyber Safety Review Board called for fundamental reforms and more stringent security measures. The report emphasizes the critical role of Microsoft’s technologies … Read more
April 3, 2024 at 11:57AM The U.S. Cyber Safety Review Board criticized Microsoft for security lapses leading to breaches in Europe and the U.S. The DHS found the breach preventable and faulted Microsoft for operational and strategic decisions. The breach occurred due to a validation error in Microsoft’s source code. Recommendations include modern control mechanisms … Read more