Krebs on Security

JUNE 11, 2024

Microsoft today released updates to fix more than 50 security vulnerabilities in Windows and related software, a relatively light Patch Tuesday this month for Windows users. The software giant also responded to a torrent of negative feedback on a new feature of Redmond’s flagship operating system that constantly takes screenshots of whatever users are doing on their computers, saying the feature would no longer be enabled by default.

Mining 238

Mining Cybersecurity Security Access 238

Data Breach Today

JUNE 11, 2024

Researchers Expect an AI Training Data Drought in the Next 2 to 8 Years Artificial intelligence models consume training data faster than humans can produce it, and large language model researchers warn that the stocks of public text data are set to be exhausted as early as two years from now. They also say that bottlenecks aren't inevitable.

Artificial Intelligence 261

Artificial Intelligence IT 261

The Last Watchdog

JUNE 11, 2024

Companies that need to protect assets spread across hybrid cloud infrastructure face a huge challenge trying to mix and match disparate security tools. Related: Cyber help for hire Why not seek help from a specialist? At RSAC 2024 , I visited with Geoff Haydon , CEO, and Alex Berger , Head of Product Marketing, at Ontinue , a new player in the nascent Managed Extended Detection and Response ( MXDR ) space.

Marketing 130

Marketing Cloud Risk Security 130

Data Breach Today

JUNE 11, 2024

Payments Regulator Says Banks Should Prioritize Customer Protection Over Losses The U.K. Payments Systems Regulator has denied The Payment Association's request to delay the contentious APP fraud reimbursement plan by a year. The association, the largest community in payments, had warned that failing to delay the plan would permanently damage the payments industry.

246

246

Advertisement

Many software teams have migrated their testing and production workloads to the cloud, yet development environments often remain tied to outdated local setups, limiting efficiency and growth. This is where Coder comes in. In our 101 Coder webinar, you’ll explore how cloud-based development environments can unlock new levels of productivity. Discover how to transition from local setups to a secure, cloud-powered ecosystem with ease.

Cloud

Security Affairs

JUNE 11, 2024

Semiconductor and software design company Arm warns of an actively exploited zero-day vulnerability in Mali GPU Kernel Driver. Arm is warning of an actively exploited zero-day vulnerability, tracked as CVE-2024-4610, in Mali GPU Kernel Driver. The vulnerability is a use-after-free issue issue that impacts Bifrost GPU Kernel Driver (all versions from r34p0 to r40p0) and Valhall GPU Kernel Driver (all versions from r34p0 to r40p0). “A local non-privileged user can make improper GPU memory pr

Access 135

Access Information Security IT Security 135

Schneier on Security

JUNE 11, 2024

New research: “ Deception abilities emerged in large language models “: Abstract: Large language models (LLMs) are currently at the forefront of intertwining AI systems with human communication and everyday life. Thus, aligning them with human values is of great importance. However, given the steady increase in reasoning abilities, future LLMs are under suspicion of becoming able to deceive human operators and utilizing this ability to bypass monitoring efforts.

Communications 117

Communications Artificial Intelligence Paper 117

Data Breach Today

JUNE 11, 2024

Chinese Cyber Espionage Campiagn Is 'Much Larger Than Previously Known' Chinese hackers breached thousands of vulnerable Fortigate network security appliances in a cyber-espionage campaign "much larger than previously known," a Dutch cybersecurity agency warned Tuesday. Even fully patched FortiGate devices may still be infected.

Cybersecurity 182

Cybersecurity Security 182

KnowBe4

JUNE 11, 2024

Job seekers, beware - cybercriminals have a nasty new way to slide their malicious code on corporate networks. Researchers have uncovered a devious phishing campaign that's distributing the powerful More_eggs backdoor by disguising it as resume submissions for open roles.

Phishing 117

Phishing IT 117

Data Breach Today

JUNE 11, 2024

Empowering Industries with Secure AI Solutions for Enhanced Growth and Productivity How are multiple industries leveraging Microsoft Azure OpenAI and Copilot to drive growth and ensure robust data security?

Security 182

Security 182

Advertisement

Large enterprises face unique challenges in optimizing their Business Intelligence (BI) output due to the sheer scale and complexity of their operations. Unlike smaller organizations, where basic BI features and simple dashboards might suffice, enterprises must manage vast amounts of data from diverse sources. What are the top modern BI use cases for enterprise businesses to help you get a leg up on the competition?

Security Affairs

JUNE 11, 2024

Microsoft Patch Tuesday security updates for June 2024 addressed 49 vulnerabilities, only one of them is a publicly disclosed zero-day flaw. Microsoft Patch Tuesday security updates for June 2024 addressed 49 vulnerabilities in Windows and Windows Components; Office and Office Components; Azure; Dynamics Business Central; and Visual Studio. Eight of these bugs were reported through the ZDI program.

Security 125

Security Information Security IT 125

Data Breach Today

JUNE 11, 2024

Adams Street Partners, Khosla Ventures Lead Series C Funding for Data Security Firm Cyberhaven secured $88 million in a Series C round led by Adams Street Partners and Khosla Ventures. The company wants to bolster product development, expand AI detection capabilities and increase market reach in hope of becoming a leader in the fragmented data security market.

Security 173

Security Marketing 173

Security Affairs

JUNE 11, 2024

A proof-of-concept (PoC) exploit code for a Veeam Backup Enterprise Manager authentication bypass flaw CVE-2024-29849 is publicly available. Researcher Sina Kheirkha analyzed the Veeam Backup Enterprise Manager authentication bypass flaw CVE-2024-29849 and a proof of concept exploit for this issue. The flaw CVE-2024-29849 is a critical vulnerability (CVSS score: 9.8) in Veeam Backup Enterprise Manager that could allow attackers to bypass authentication.

Authentication 135

Authentication IT Access Security 135

Data Breach Today

JUNE 11, 2024

Cleveland Investigating Cyber Incident that Forced City to Shutdown IT Systems The city of Cleveland, Ohio is launching an investigation into an apparent cyber event that forced a shutdown of its information technology systems throughout the start of the week, officials said Tuesday, though additional details surrounding the incident remain unclear.

IT 173

IT 173

Advertisement

Cloud Development Environments (CDEs) are changing how software teams work by moving development to the cloud. Our Cloud Development Environment Adoption Report gathers insights from 223 developers and business leaders, uncovering key trends in CDE adoption. With 66% of large organizations already using CDEs, these platforms are quickly becoming essential to modern development practices.

Cloud

KnowBe4

JUNE 11, 2024

Just when you thought the disinformation landscape couldn't get any worse, an alarming new report from Democracy Reporting International reveals that popular AI chatbots have started intentionally spreading false information related to elections and the voting process.

Artificial Intelligence 106

Artificial Intelligence Security awareness Security 106

Data Breach Today

JUNE 11, 2024

Kaspersky Unveils 24 Flaws in ZKTeco Terminals A promise of better security through biometrics fell short after security researchers dismantled an access system manufactured by a Chinese manufacture, only to discover 24 vulnerabilities contained inside. ZKTeco specializes in hybrid biometric verification technology.

Access 173

Access Manufacturing Security 173

KnowBe4

JUNE 11, 2024

Wow. It does not happen often that the godfather of infosec comes out this strong about phishing risks. He co-published new research in the Harvard Business Review May 30, 2024, which in turn links back to the actual study that was published at the IEEE. This is the best budget ammo I have seen in the last few years.

Phishing 92

Phishing Risk IT Artificial Intelligence 92

OpenText Information Management

JUNE 11, 2024

Nationwide isn’t like most other financial services organisations. Because we’re owned by our millions of members across the UK, we can invest everything back into the business. Our mission is to provide outstanding services that make life better for our members—and our product offering includes personal banking, credit cards, mortgages, and more. As the CIO for customer experience platforms, I’m responsible for everything relating to customer communications—from account statements to the latest

Communications 64

Communications Customer Experience Financial Services Paper 64

Advertisement

After a year of sporadic hiring and uncertain investment areas, tech leaders are scrambling to figure out what’s next. This whitepaper reveals how tech leaders are hiring and investing for the future. Download today to learn more!

IT

KnowBe4

JUNE 11, 2024

Analysis of this latest phishing campaign exposes exactly how the digital signature platform is misused to create a simple and easily avoidable.

Phishing 99

Phishing 99

IBM Big Data Hub

JUNE 11, 2024

The VMware® acquisition by Broadcom has changed VMware’s product and partner strategies. In November 2023, Broadcom finalized its acquisition (link resides outside ibm.com) of VMware for USD 69 billion, with an aim to enhance its multicloud strategy. Further to the acquisition, Broadcom decided to discontinue (link resides outside ibm.com) its AWS authorization to resell VMware Cloud on AWS as of 30 April 2024.

Cloud 66

Cloud Manufacturing Artificial Intelligence Compliance 66

KnowBe4

JUNE 11, 2024

A phishing campaign is spreading the DarkGate malware using new techniques to evade security filters, according to researchers at Cisco Talos.

Phishing 97

Phishing Security 97

Collaboration 2.0

JUNE 11, 2024

Lose your wallet often? ZDNET went hands-on with the best Apple AirTag wallets and accessories to help you keep track of your cards and cash.

75

75

Advertisement

Explore how enterprises can enhance developer productivity and onboarding by adopting self-hosted Cloud Development Environments (CDEs). This whitepaper highlights the simplicity and flexibility of cloud-based development over traditional setups, demonstrating how large teams can leverage economies of scale to boost efficiency and developer satisfaction.

Cloud

Reltio

JUNE 11, 2024

Imagine a skilled chef trying to cook a gourmet meal with rotten ingredients; the dish won’t turn out great. Similarly, for businesses using any AI, including machine learning and gen AI, to make decisions or automate processes, data quality is as crucial as the technology itself. Like a meal prepared with subpar ingredients, AI solutions won’t deliver the desired results when fueled with bad data, and those investments won’t pay off.

Data science 52

Data science Government Analytics MDM 52

Collaboration 2.0

JUNE 11, 2024

We tested the best security keys that combine safety and convenience to keep your online accounts safe from hackers and phishing attacks.

Security 76

Security Phishing 76

Collibra

JUNE 11, 2024

We’re thrilled to announce that Collibra has been recognized as the 2024 Databricks Data Governance Partner of the Year. This prestigious award is a testament to our unwavering commitment to excellence in data and AI governance. Join us as we celebrate this achievement and explore the transformative power of our partnership with Databricks. The time is now to do more with trusted data There has never been a more critical moment to invest your time into understanding how to do more with data, and

Government 52

Government Compliance Data Privacy Privacy 52

KnowBe4

JUNE 11, 2024

[NEW 2024 RESEARCH] Reveals that 34% of Green Users Will Fail a Phishing Test

Phishing 73

Phishing 73

Speaker: Anindo Banerjea, CTO at Civio & Tony Karrer, CTO at Aggregage

When developing a Gen AI application, one of the most significant challenges is improving accuracy. This can be especially difficult when working with a large data corpus, and as the complexity of the task increases. The number of use cases/corner cases that the system is expected to handle essentially explodes. 💥 Anindo Banerjea is here to showcase his significant experience building AI/ML SaaS applications as he walks us through the current problems his company, Civio, is solving.

Jamf

JUNE 11, 2024

Learn how integrating Jamf with 1GLOBAL mitigates security risks while automating eSIM deployment.

Risk 40

Risk Security 40

Data Breach Today

JUNE 11, 2024

6.9 Million Individuals' Genetic Details Stolen via 2023 Credential-Stuffing Attack Privacy regulators in the U.K. and Canada have launched a joint investigation into 23andMe following the direct-to-consumer genetic testing service suffering a massive data breach in October 2023 that led to the theft of 6.9 million individuals' ancestry details.

Privacy 189

Privacy Data breaches 189

The Guardian Data Protection

JUNE 11, 2024

Data watchdogs in UK and Canada to look at whether there were enough safeguards on personal information Business live – latest updates The California genetic testing company 23andMe faces investigations by the data watchdogs of the UK and Canada over a security breach affecting nearly 7 million people last October. Hackers who broke into the site gained access to personal information by using customers’ old passwords.

Passwords 83

Passwords Access Security 83