Researchers have warned that powerful AI models could be used to supercharge online disinformation, cyberattacks or creation of bioweapons.
Hackers launched a cyberattack on an Irish water utility, causing disruption and leaving people without water for two days.
Security features that major CPU vendors plan on integrating into their future products can increase the surface for certain types of attacks.
Organizations need to listen to their CISOs and start turning to cybersecurity automation for the qualitative benefits of employee satisfaction and well-being.
AI-powered attacks will become progressively more common, and a well-rounded security approach involves more than simply managing incidents effectively.
While applications and cloud infrastructure present different risk profiles and require different security assessments, they must not be viewed separately with regards to enterprise defense.
Cybersecurity predictions for 2024 to help security professionals in prioritizing efforts to navigate the ever-changing threat landscape.
When too much subjectivity is mixed into risk assessment, it can produce a risk picture that is not an accurate representation of reality.
CISOs and risk management leaders must understand clearly the role of cyber insurance in a robust security program, ongoing changes to premiums and policy pricing, the errors that could deny coverage and how it all fits into global incident response planning.
SecurityWeek’s inaugural Cyber AI & Automation Summit pushes the boundaries of security discussions by exploring the implications and applications of predictive AI, machine learning, and automation in modern cybersecurity programs.
Designed for senior level cybersecurity leaders to discuss, share and learn innovative information security and risk management strategies, SecurityWeek’s CISO Forum, will take place in 2023 as a virtual event. (June 13-14, 2023)
As CISOs and corporate defenders grapple with the intricacies of securing sensitive data passing through multi-cloud deployments and APIs, the importance of frameworks, tools, controls and design models have surfaced to the front burner. (July 19, 2023)
-
WordPress 6.4.2 patches a flaw that could be chained with another vulnerability to execute arbitrary code.
-
Russian threat actor APT28 has been exploiting a no-interaction Outlook vulnerability in attacks against 14 countries.
-
Atlassian has released patches for critical-severity remote code execution flaws in Confluence and other products.
-
LogoFAIL is an UEFI image parser attack allowing hackers to compromise consumer and enterprise devices using malicious logo images.
-
Noteworthy stories that might have slipped under the radar: fake Lockdown Mode, a new Linux RAT, jailbreaking AI, and an entire country’s DNS hijacked.
-
The US and UK announce charges and sanctions against two hackers working with Russia’s FSB security service.
-
Nissan Oceania says it has been working on restoring its systems after falling victim to a cyberattack.
-
BlackBerry attributes cyberattack against an aerospace organization in the US to a new threat actor named AeroBlade.
