Security Bulletin

The secret use of other people's generative AI platforms, wherein hijackers gain unauthorized access to an LLM while someone else foots the bill, is getting quicker and stealthier by the month.

Five years after a Russian APT infiltrated a software update to gain access to thousands of SolarWinds customers, the board has voted unanimously to sell at a top valuation and plans for uninterrupted operations.

Developers are pulling in publicly available ASP.NET keys into their environments, without realizing that cyberattackers can use them for clandestine code injection.

Microsoft worries the leaked keys could be pushed into development code without modification, leaving it open to security issues.

To address these threats artificial intelligence-powered tools have been developed to enhance threat detection and response, while zero-trust architecture has become a widely accepted framework for cloud security thanks to its strict identity...

The growth is being driven by cloud-first security approaches, hybrid work models, and artificial intelligence-powered solutions, according to the report, which pointed to cloud security as the greatest driver.

Google Cloud's Threat Horizons report found weak or absent passwords leading as the access method most commonly exploited by threat actors, accounting for 46% of initial breaches.

Oligo’s platform provides deep application inspection at runtime, allowing security teams to identify flaws in code at the library and function levels and address them before they could be exploited.

CYE said it plans to integrate Solvo’s technology into its Hyber platform to improve the solution's cloud security posture management and cloud infrastructure entitlement management capabilities.

According to security researchers at web security firm c/side, the attack is widespread, with over 10,000 websites reportedly compromised.

Eight of the 19 states with consumer privacy data laws that were evaluated by the two organizations were deemed ineffective.

Introducing Rev Up to Recert: AI, featuring 34 hours of free learning, earning active Cisco certification holders up to 34 Continuing Education credits—for free.