The North Korean hacking group ScarCruft launched a large-scale attack in May that leveraged an Internet Explorer zero-day flaw to infect targets with the RokRAT malware and exfiltrate data. […]
FIDO Alliance Drafts New Protocol to Simplify Passkey Transfers Across Different Platforms
The FIDO Alliance said it’s working to make passkeys and other credentials more easier to export across different providers and improve credential provider interoperability, as more than 12 billion online accounts become accessible with the passwordless sign-in method.
To that end, the alliance said it has published a draft for a new set of specifications for secure credential exchange,
To that end, the alliance said it has published a draft for a new set of specifications for secure credential exchange,
OT Risk Management Firm DeNexus Raises $17.5 Million
DeRisk is an AI and ML-driven data analytics platform that focuses on managing the cyber risk to the underserved operational technology of critical industries.
The post OT Risk Management Firm DeNexus Raises $17.5 Million appeared first on SecurityWeek.
Varsity Brands Data Breach Impacts 65,000 People
Apparel giant Varsity Brands has disclosed some information about a data breach impacting more than 65,000 individuals.
The post Varsity Brands Data Breach Impacts 65,000 People appeared first on SecurityWeek.
Microsoft Patches Vulnerabilities in Power Platform, Imagine Cup Site
Microsoft has patched ‘critical’ privilege escalation and information disclosure vulnerabilities in Power Platform, Dataverse and the Imagine Cup website.
The post Microsoft Patches Vulnerabilities in Power Platform, Imagine Cup Site appeared first on SecurityWeek.
Dane Stuckey Joins OpenAI as CISO
Former Palantir CISO joins ChatGPT maker OpenAI to lead cybersecurity efforts.
The post Dane Stuckey Joins OpenAI as CISO appeared first on SecurityWeek.
CISA and FBI Release Product Security Bad Practices for Public Comment
From Misuse to Abuse: AI Risks and Attacks
AI from the attacker’s perspective: See how cybercriminals are leveraging AI and exploiting its vulnerabilities to compromise systems, users, and even other AI applications
Cybercriminals and AI: The Reality vs. Hype
“AI will not replace humans in the near future. But humans who know how to use AI are going to replace those humans who don’t know how to use AI,” says Etay Maor, Chief Security
Cybercriminals and AI: The Reality vs. Hype
“AI will not replace humans in the near future. But humans who know how to use AI are going to replace those humans who don’t know how to use AI,” says Etay Maor, Chief Security
Google Pays Out $36,000 for Severe Chrome Vulnerability
Google has released Chrome 130 in the stable channel to resolve 17 vulnerabilities, including 13 reported by external researchers.
The post Google Pays Out $36,000 for Severe Chrome Vulnerability appeared first on SecurityWeek.
AI Models in Cybersecurity: From Misuse to Abuse
Exploring differences in AI models on security measures and unveiling threat actor tactics.
The post AI Models in Cybersecurity: From Misuse to Abuse appeared first on SecurityWeek.