Top LLM vulnerabilities and how to mitigate the associated risk
As large language models (LLMs) become more prevalent, a comprehensive understanding of the LLM threat landscape remains elusive. But this uncertainty doesn’t mean progress should grind to a halt: Exploring AI is essential to staying competitive, m.....»»
Expel partners with Wiz to enhance security for cloud environments
Expel announced a new strategic partnership with Wiz, a cloud-native application protection platform (CNAPP). The partnership provides an integration offering MDR for Wiz toxic risk combinations (including vulnerabilities, secrets, malware, and threa.....»»
Cybersecurity jobs available right now: August 28, 2024
Business Information Security Officer Toyota North America | USA | On-site – View job details Acting as an Information Security ambassador to the business, this role works with technology, data, risk, business, and the larger TFS Info.....»»
There’s a scary new way to undo Windows security patches
A security researcher has released a new tool that can unpatch your Windows computer and expose it to old vulnerabilities......»»
AI modeling can deliver more benefits, less risk for water partnerships
A Cornell-led research collaboration found that cooperative partnerships seeking to spread the cost burden of water infrastructure projects among regional stakeholders often end up forcing local partners to bear the brunt of underlying supply and fin.....»»
Study IDs best "red flags" auditors can use to spot financial fraud
A new analysis of the benchmarks that auditors use to identify financial statement fraud risk finds that the most commonly used benchmarks are less effective at identifying fraud than benchmarks that are less commonly used......»»
Adversaries love bots, short-lived IP addresses, out-of-band domains
Fastly found 91% of cyberattacks – up from 69% in 2023 – targeted multiple customers using mass scanning techniques to uncover and exploit software vulnerabilities, revealing an alarming trend in attacks spreading across a broader target base. In.....»»
Hotel room key cards everywhere could be at risk from RFID security flaw
Security researchers find flawed contactless cards dating back to late 2007, and urge users to be careful......»»
Drawbridge expands cyber risk assessment service
Drawbridge released its next generation cyber risk assessment service. Provided as a suite of modules, the solution combines a set of analytics with Drawbridge’s client service. Clients can now benchmark and score their cyber programs to prioritize.....»»
Vulnerability prioritization is only the beginning
To date, most technology solutions focused on vulnerability management have focused on the prioritization of risks. That usually took the shape of some risk-ranking structure displayed in a table with links out to the CVEs and other advisory or threa.....»»
AI exhibits racial bias in mortgage underwriting decisions, researchers find
Putting AI to use in mortgage lending decisions could lead to discrimination against Black applicants, according to new research. But researchers say there may be a surprisingly simple solution to mitigate this potential bias......»»
Study calls for locally inclusive public health adaptation strategies to climate change
Modern disaster risk reduction strategies must incorporate Indigenous knowledge and local cultural practices to be adoptable and sustainable, according to a descriptive phenomenological study carried out in Kenya by researchers from the University of.....»»
Deplatforming puts sex workers at risk, study says
A study published in Social Sciences by CUNY SPH alumna Melissa Ditmore and team suggests that laws criminalizing sex work don't prevent human trafficking and leave sex workers vulnerable to coercion and unsafe conditions......»»
HITRUST unveils AI Risk Management Assessment solution
HITRUST launched its AI Risk Management (AI RM) Assessment, a comprehensive assessment approach for AI risk management processes in an organization. The HITRUST AI Risk Management Assessment ensures that governance associated with implementing AI sol.....»»
New software tool aims to reduce reliance on animal testing
In recent years, machine learning models have become increasingly popular for risk assessment of chemical compounds. However, they are often considered "black boxes" due to their lack of transparency, leading to skepticism among toxicologists and reg.....»»
Vulnerabilities in Microsoft macOS apps may give attackers access to microphone, camera
Vulnerabilities in popular Microsoft apps for macOS can be abused by attackers to record video and audio clips, take pictures, access and exfiltrate data and send emails, Cisco Talos researchers have discovered. Library injection vulnerabilities in M.....»»
Organizations turn to biometrics to counter deepfakes
The risk of deepfakes is rising with 47% of organizations having encountered a deepfake and 70% of them believing deepfake attacks which are created using generative AI tools, will have a high impact on their organizations, according to iProov. Perce.....»»
Security flaws in Microsoft Mac apps could let attackers spy on users
Cisco Talos recently uncovered security vulnerabilities in several Microsoft apps for macOS that can potentially let attackers spy on your camera and other system components.Security flaws found in Microsoft apps for MacTalos claims to have found eig.....»»
Common API security issues: From exposed secrets to unauthorized access
Despite their role in connecting applications and driving innovation, APIs often suffer from serious security vulnerabilities. Recent investigations reveal that many organizations are struggling with exposed secrets such as passwords and API keys, wh.....»»
Evidence stacks up for poisonous books containing toxic dyes
If you come across brightly colored, cloth-bound books from the Victorian era, you might want to handle them gently, or even steer clear altogether. Some of their attractive hues come from dyes that could pose a health risk to readers, collectors or.....»»
Explosion of cicada-eating mites has the state of Illinois scratching
The good news: There's little risk beyond the rash. The bad: The rash is awful. Enlarge / A cicada from a 17-year cicada brood clings to a tree on May 29, 2024, in Park Ridge, Illinois. The state experienced an emergence of cicad.....»»