Privacy & Security Concerns With AI Meeting Tools

July 10, 2024 at 10:04AM AI-powered meeting assistants promise increased productivity by recording video, transcribing audio, and providing analytics. However, businesses must consider the privacy and security risks of allowing AI assistants to eavesdrop on conversations and collect sensitive data. Legal requirements for consent vary, and proactive steps are necessary to mitigate risks and maintain … Read more

Microsoft Research chief scientist has no issue with Windows Recall

June 6, 2024 at 03:30AM Jaime Teevan, chief scientist at Microsoft Research, discussed the data privacy implications of Microsoft’s Recall tool at the Institute for Human-Centered Artificial Intelligence’s conference. She emphasized the importance of rethinking data usage in the context of generative AI. Teevan reassured that Recall stores data locally and prioritizes data protection, despite … Read more

Microsoft’s Windows Recall: Cutting-Edge Search Tech or Creepy Overreach?

May 30, 2024 at 01:21PM Microsoft introduces Windows Recall, using AI to create a searchable digital memory of every activity on a Windows computer. The feature has raised privacy concerns with its frequent screen snapshots and local storage of user data. While Microsoft emphasizes local processing and encryption, security experts and privacy advocates remain wary … Read more

The Fall of the National Vulnerability Database

May 16, 2024 at 10:10AM The National Vulnerability Database (NVD) initially created by NIST to centralize cybersecurity vulnerability intelligence is now struggling due to various factors. Increased accessibility led to a surge in low-quality reports, with inexperienced researchers seeking recognition and monetary incentives. As a result, the NVD has not updated vulnerabilities since February, highlighting … Read more

13.4M Kaiser Insurance Members Affected by Data Leak to Online Advertisers

April 29, 2024 at 04:09PM Kaiser Permanente reported a data breach affecting 13.4 million insurance members. Improperly implemented tracking code on their websites and mobile apps shared personal data with third-party advertisers such as Google and Microsoft. While not a hacking event, this breach raises security concerns, according to Narayana Pappu, CEO at Zendata, due … Read more

Kenya to TikTok: Prove Compliance With Our Privacy Laws

March 22, 2024 at 09:28AM The Kenyan government is examining the beleaguered social media platform for potential cybersecurity and data privacy issues. It appears that the beleaguered social media platform is now under scrutiny by the Kenyan government regarding cybersecurity and data privacy. Full Article

iPhone, Android Ambient Light Sensors Allow Stealthy Spying

January 19, 2024 at 11:46AM Researchers at MIT have discovered that ambient light sensors in smart devices, usually used for adjusting screen brightness, can covertly capture images of user gestures without requiring permission, posing a privacy threat. The team highlighted the potential risk and suggested measures like restricting information rates and adding permission controls to … Read more

Mandiant’s X (Twitter) Account Hacked to Promote Crypto Scam

January 4, 2024 at 12:22PM Google’s cybersecurity firm Mandiant regained control of its Twitter account after falling victim to a cryptocurrency scam hack. This incident came amidst growing concerns over security on the platform, echoing past high-profile account takeovers. The security of high-profile accounts on Twitter remains an ongoing concern as the platform is targeted … Read more

Patch Now: Exploit Activity Mounts for Dangerous Apache Struts 2 Bug

December 15, 2023 at 04:21PM A critical remote code execution (RCE) vulnerability in Apache Struts 2 has raised significant concern due to active exploitation, affecting widely used Java applications and systems. The flaw poses a significant security risk to organizations worldwide. Recommendations include immediate software updates, as no mitigations are available. While complexities make widespread … Read more

Guide: How vCISOs, MSPs and MSSPs Can Keep their Customers Safe from Gen AI Risks

November 8, 2023 at 06:15AM “ChatGPT is experiencing a high volume of usage, with many organizations utilizing it for various functions. However, the use of generative AI poses security risks such as data breaches, compromised identities, and intellectual property loss. It is crucial for MSPs, MSSPs, and vCISOs to address these concerns and educate their … Read more