Ryan Naraine

Twine and its investors are betting on the idea of AI-powered “digital cyber employees” to handle mundane but critical security tasks.

Apple rushes out out major macOS and iOS security updates to cover a pair of vulnerabilities already being exploited in the wild.

The saga of VMWare’s critical CVE-2024-38812 vCenter Server bug has reached the “exploitation detected” stage.

Patch Tuesday: Microsoft patches 90 security flaws across the Windows ecosystem and warns of zero-day exploitation and code execution risks.

Adobe patches critical-severity bugs in multiple products, including the Adobe Commerce and Magento Open Source platforms.

North Korean cryptocurrency thieves caught targeting macOS with fake PDF applications, backdoors and new persistence tactics.

A stealthy network backdoor found on hacked Sophos XG firewall devices is programmed to work on a broader range of Linux-based devices.

GreyNoise Intelligence says an internal AI tool captured attempts to exploit critical vulnerabilities in commercial livestream IoT cameras.

British EDR vendor Sophos details a years-long “cat-and-mouse” tussle with sophisticated Chinese government-backed hackers.

Cupertino said the research lab and tooling offers “verifiable transparency” of its promises to secure AI-powered data on its platforms.

Fortinet confirms zero-day exploits hitting critical (CVSS severity score 9.8/10) remote code execution bug in the FortiManager platform.

Google has released new technology to embed watermarks and flag AI-generated content across text, images, audio, and video.

The SEC announces penalties against Unisys, Avaya, Check Point and Mimecast for downplaying the impact of the SolarWinds Orion hack.

Stream.Security (formerly Lightlytics) has raised a total of $55 million since launching in 2020 with a cloud data security product.

For the second time in as many months, VMware patches a remote code execution vulnerability first exploited at a Chinese hacking contest in June.

Sophos plans to integrate Secureworks Taegis XDR platform into its MDR services across small, mid-sized, and enterprise segments. 

Artificial intelligence tech giant Nvidia issues a warning for code execution and data tampering security problems in the NeMo platform.

VMware patches CVE-2024-38814 and warns that attackers with non-administrator privileges can execute remote code on the HCX manager.

Palo Alto warns that attackers can access usernames, cleartext passwords, device configurations, and device API keys of PAN-OS firewalls.

New York anti-bot firm says new investment will drive adoption of AI techniques and expand into digital account protection and media security.