New Gift Card Scam Targets Retailers, Not Buyers, to Print Endless $$$
Microsoft researchers discover an old-timey scam with a facelift for the cloud era: hacking retailers' portals to make it rain…
May 2024
Critical Flaw in Replicate AI Platform Exposes Proprietary Data
The finding underscores the challenges of protecting data from multiple customers across AI-as-a-service solutions, especially in environments that run AI…
New Mindset Needed for Large Language Models
With the right mix of caution, creativity, and commitment, we can build a future where LLMs are not just powerful,…
China APT Stole Geopolitical Secrets From Middle East, Africa & Asia
One of China's biggest espionage operations owes its success to longstanding Microsoft Exchange bugs, open source tools, and old malware.
Persistent Burnout Is Still a Crisis in Cybersecurity
Burnout has been an oft-reported problem among security professionals for years. Are there any new ideas for supporting mental health…
US Pumps $50M Into Better Healthcare Cyber Resilience
Upgrade, an ARPA-H program, will focus on automating cybersecurity for healthcare institutions so that providers can focus on patient care.
GitHub Authentication Bypass Opens Enterprise Server to Attackers
The max-severity bug affects versions using the SAML single sign-on mechanism.
Trends at the 2024 RSA Startup Competition
Startups at Innovation Sandbox 2024 brought clarity to artificial intelligence, protecting data from AI, and accomplishing novel security solutions with…
Snowflake’s Anvilogic Investment Signals Changes in SIEM Market
Coming on the heels of Cisco buying Splunk, Palo Alto Networks acquiring IBM's QRadar, and LogRhythm merging with Exabeam, Snowflake's…
Novel EDR-Killing ‘GhostEngine’ Malware Is Built for Stealth
The previously unknown malware (aka Hidden Shovel) is a ghost in the machine: It silently attacks kernel drivers to shut…