Security Analytics

Analytics and Intelligence

Simultaneous Visions by Umberto Boccioni

Reasoning in the Age of Artificial Intelligence

| | AI Security, Application Security, Artificial Intelligence, Cyber Security, Cybersecurity, estrategias de mitigación, gestion de vulnerabilidades, large language model security, LLM, llm applications security, llm owasp, llm security, llm vulnerabilities, Machine Learning security, Mitigation Strategies, owasp, owasp for ia, owasp llm, owasp to 10 llm, OWASP Top 10, owasp top 10 for llm, OWASP Top 10 for LLM Applications, owasp top 10 para llm, owasp top ten llm, riesgos de seguridad, security risks, seguridad cibernetica, Seguridad de Aplicaciones, seguridad de aplicaciones llm, seguridad de aprendizaje automático, seguridad de modelos de lenguaje grande, seguridad ia, seguridad llm, Vulnerability Management
Lately, I often hear people asking: “Will Artificial Intelligence replace my job?” Perhaps you’ve had this thought too. More than just a matter of the job market or salary expectations, this question ...
MICROHACKERS
NIST CSF vulnerabilities ransomware backlog

NIST Deprioritizes Pre-2018 CVEs as Backlog Struggles Continue

| | app vulnerabilities, NIST, NIST CVE Backlog, security flaw
NIST, which for more than a year has been struggling to address a backlog of CVEs in its database following budget cuts, is now putting pre-2018 vulnerabilities on the back burner to ...
Security Boulevard
So, How is your LLM Today?

So, How is your LLM Today?

| | AI, Artificial Intelligence, cyber, Data center, security
So, How is your LLM Today?3 min read·17 hours ago--Got AI Governance?AI continues to become the gold rush of technology or a never-before-seen solution. A lot can be said for the world ...
Stories by John P. Gormally, SR on Medium
ransomware RaaS Columbus Rhysida

Hunters International Dumps Ransomware, Goes Full-on Extortion

| | data extortion, Group-IB, Hunters International, Ransomware-as-a-Service (RaaS)
Hunters International, the RaaS group that some believe evolved from Hive, appears to be rebranding and shifting operations, moving away from an unprofitable and risky ransomware business and focusing solely on exfiltrating ...
Security Boulevard
When AI Agents Start Whispering: The Double-Edged Sword of Autonomous Agent Communication

When AI Agents Start Whispering: The Double-Edged Sword of Autonomous Agent Communication

| | agentic, agents, AI (Artificial Intelligence), architecture, Artificial Intelligence, Awareness, data protection, security
AI agents develop their own communication channels beyond our monitoring frameworks, we face a pivotal challenge: harnessing their collaborative problem-solving potential while preventing security breaches and compliance violations that could arise when ...
Deepak Gupta | AI & Cybersecurity Innovation Leader | Founder's Journey from Code to Scale
domain Major DNS Threats: Preventing DNS Hijacking

Longtime ‘Fast Flux’ Evasion Technique Now a National Security Threat

| | DNS Attacks, fast flux, HIVE Ransomware, Russian hackers
CISA, the FBI, and NSA issued an advisory about the national security threat posed by "fast flux," a technique used by threat actors to evade detection of their C2 infrastructures that has ...
Security Boulevard
A PRC flag flies atop a metal flagpole

App Stores OK’ed VPNs Run by China PLA

| | 360 Security Technology, App Store, App Stores, Apple, CCP, china, china espionage, China-nexus cyber espionage, Chinese, Chinese Communists, Chinese cyber espionage, chinese government, free vpn app, google, Google Play Store, Peoples Republic of China, Privacy, Qihoo 360, SB Blogwatch, Signal Secure VPN, Snap VPN, Tech Transparency Project, Thunder VPN, TikTok, TikTok Ban, Turbo VPN, VPN, VPN Proxy Master
Bad Apple: Chinese firm banned by the U.S. is the shady entity behind a clutch of free VPN apps—with over a million downloads ...
Security Boulevard

AIs as Trusted Third Parties

| | academic papers, AI, cryptography, machine learning, Trust, Uncategorized
This is a truly fascinating paper: “Trusted Machine Learning Models Unlock Private Inference for Problems Currently Infeasible with Cryptography.” The basic idea is that AIs can act as trusted third parties: Abstract: ...
Schneier on Security
Yes, GitHub's Copilot can Leak (Real) Secrets

Yes, GitHub’s Copilot can Leak (Real) Secrets

| | Artificial Intelligence
Researchers successfully extracted valid hard-coded secrets from Copilot and CodeWhisperer, shedding light on a novel security risk associated with the proliferation of secrets ...
GitGuardian Blog - Take Control of Your Secrets Security
tool, atlantis, credentials, protecting data

Hackers Use Atlantis AIO Tool to Automate Account Takeover Attacks

| | , credential stuffing attack, email security
Atlantis AIO, a tool available to hackers on the dark web, gives threat actors an automated tool to rapidly test millions of stolen credentials against email, ecommerce, and other online accounts on ...
Security Boulevard
Load more