Tenable

MAY 14, 2024

1 Critical 57 Important 1 Moderate 0 Low Microsoft addresses 59 CVEs in its May 2024 Patch Tuesday release with one critical vulnerability and three zero-day vulnerabilities, two of which were exploited in the wild. A local attacker with a presence on a vulnerable system could exploit this vulnerability to gain SYSTEM privileges.

Windows 119

Windows Software Review Systems Review Malware 119

Tenable

SEPTEMBER 13, 2024

And get the latest on AI-model risk management and on cybersecurity understaffing! Cybersecurity and Infrastructure Security Agency (CISA). Plus, cyber scammers are having a field day with crypto fraud. Meanwhile, AI and cloud vendors face stricter reporting regulations in the U.S. Losses amounted to $5.6

Infrastructure 72

Infrastructure Technical Review Artificial Inteligence Recruiting 72

Palo Alto Networks

MARCH 12, 2024

Applied AI in cybersecurity has many unique challenges, and we will take a look into a few of them that we are considering the most important. One — Lack of Labeled Data Unlike many other fields, data and labels are scarce in the cybersecurity space and usually require highly skilled labor to generate. This is unique to cybersecurity.

Systems Review 106

Systems Review Training Study Malware 106

Tenable

SEPTEMBER 15, 2023

Tasked with securing your org’s new AI systems? Plus, open source security experts huddled at a conference this week – find out what they talked about. That’s the topic of the paper “ Securing AI: Similar or Different? published by Google’s Cybersecurity Action Team. ” published by Google’s Cybersecurity Action Team.

Open Source 113

Open Source Systems Review System Software Review 113

Tenable

AUGUST 23, 2024

And get the latest on ransomware trends, vulnerability management practices and election security! 1 - Guide outlines logging and threat detection best practices As attackers double down on the use of stealthy, hard-to-detect “living off the land” (LOTL) techniques, cybersecurity teams should improve how they log events and detect threats.

Security 74

Security Artificial Inteligence Azure Malware 74

Tenable

MAY 29, 2024

Amid warnings of threat actors targeting VPN devices, Check Point has identified a zero-day information disclosure vulnerability impacting Check Point Network Security gateways which has been exploited by malicious actors. Background On May 27, Check Point released a blog post with recommendations on security best practices.

Authentication 112

Authentication Software Review Scalability Systems Review 112

Tenable

JULY 12, 2024

Plus, the Linux Foundation and OpenSSF spotlight the lack of cybersecurity expertise among SW developers. Meanwhile, GenAI deployments have tech leaders worried about data privacy and data security. Cybersecurity and Infrastructure Security Agency (CISA) and the FBI in an alert published this week. “OS So said the U.S.

Technical Review 76

Technical Review Generative AI Software Review Development 76

Tenable

AUGUST 9, 2024

Critical vulnerability in Cisco Smart Software Manager On-Prem exposes systems to unauthorized password changes, exploit code now available. On August 7, 2024, Cisco updated their advisory to reflect that public proof-of-concept (PoC) exploit code was now available, heightening the urgency to patch.

Software Review 67

Software Review Software Weak Development Team Systems Review 67

Tenable

JUNE 14, 2024

Check out the NCSC’s call for software vendors to make their products more secure. And the latest on the cybersecurity skills gap in the U.S. 1 - NCSC issues “code of practice” for software makers Software vendors improve the security of their products. And much more! That’s the goal of the U.K. The document from the U.K.’s

Software Review 72

Software Review Artificial Inteligence Banking Artificial Intelligence 72

Tenable

APRIL 12, 2024

Background On April 12, Palo Alto Networks released a security advisory for a critical command injection vulnerability affecting PAN-OS, the custom operating system (OS) Palo Alto Networks (PAN) uses in their next-generation firewalls. Solution As of April 12, Palo Alto Networks has not provided patches for this vulnerability.

Network 119

Network Firewall Software Review Systems Review 119

Tenable

JANUARY 5, 2024

Want to learn more about protecting AI systems from malicious actors? Plus, new granular configuration recommendations for securing Microsoft 365 are out. 1 - NIST categorizes cyberattacks against AI systems Are you involved with securing the artificial intelligence (AI) tools and systems your organization uses?

Artificial Inteligence 71

Artificial Inteligence Systems Review System Generative AI 71

Tenable

MARCH 8, 2024

Plus, a survey shows how artificial intelligence is impacting cybersecurity jobs. Source: “2023 Internet Crime Report” from the FBI’s Internet Crime Complaint Center, March 2024) Overall, ransomware losses skyrocketed 74% to almost $60 million, as attackers employed new tactics, such as pelting victims with multiple ransomware variants.

Infrastructure 115

Infrastructure Report Software Review Artificial Intelligence 115

Tenable

APRIL 26, 2024

1 - New version of MITRE ATT&CK adds guidance on generative AI, cloud threats Information about malicious use of generative AI tools. Advice about securing cloud environments. Dive into six things that are top of mind for the week ending April 26. Recommendations for protecting software development pipelines.

Security 72

Security Cloud Artificial Inteligence Healthcare 72

Tenable

APRIL 19, 2024

Check out recommendations for securing AI systems from the Five Eyes cybersecurity agencies. Plus, Stanford University offers a comprehensive review of AI trends. Deploying AI systems securely requires careful setup and configuration that depends on the complexity of the AI system, the resources required (e.g.,

Artificial Inteligence 74

Artificial Inteligence Trends Technical Advisors Analysis 74

Tenable

MARCH 29, 2024

Plus, how to cut cyber risk when migrating SCADA systems to the cloud. The 52-page report, titled “ Managing Artificial Intelligence-Specific Cybersecurity Risks in the Financial Services Sector, ” touches on cybersecurity and fraud protection; fraud threats; the regulatory landscape; and major challenges and opportunities.

Systems Review 65

Systems Review Weak Development Team Banking System 65

Tenable

JULY 5, 2024

Fortra has released a new Cobalt Strike version with enhanced security features, according to the NCA. That’s according to a Bloomberg article published on June 27 that cites Microsoft officials and reports on email notifications reviewed by the news agency. government report sharply criticized Microsoft’s cybersecurity practices.

Insurance 72

Insurance Transportation Software Review Systems Review 72

Hacker Earth Developers Blog

MARCH 19, 2024

Integration : Seamless integration with other systems, such as Learning Management Systems (LMS) or Human Resource Information Systems (HRIS), can streamline workflows and enhance efficiency. Security: Robust security measures are essential to protect sensitive data and ensure compliance with privacy regulations.

Technical Review 130

Technical Review Recruiting Software Review Software 130

Hacker Earth Developers Blog

MARCH 19, 2024

Integration : Seamless integration with other systems, such as Learning Management Systems (LMS) or Human Resource Information Systems (HRIS), can streamline workflows and enhance efficiency. Security: Robust security measures are essential to protect sensitive data and ensure compliance with privacy regulations.

Technical Review 130

Technical Review Recruiting Software Review Software 130

Tenable

JANUARY 3, 2024

The Tribal Cybersecurity Grant Program (TCGP) is accepting applications through January 10, making $18.2 Tribal nations across the country are often a lucrative target for attackers due to their operations of both government entities and gaming enterprises. Implement security protections commensurate with risk.

Government 67

Government Systems Review Technical Review Programming 67

CIO

AUGUST 30, 2024

Enterprises as varied as Aflac, Atlantic Health System, Legendary Entertainment, and NASA’s Jet Propulsion Laboratory are among those already pursuing agentic AI. Live Proxies uses AI agents to detect and respond to cybersecurity threats. Another approach is to use another AI to check the agents’ work, Finely says.

Generative AI 347

Generative AI Technical Review Software Review Artificial Inteligence 347

Tenable

DECEMBER 22, 2023

As we bid adieu to 2023, we highlight major trends that impacted cybersecurity professionals in the past 12 months. Learn how the cyber world changed in areas including artificial intelligence, CNAPP, IAM security, government oversight and OT security. Cybersecurity teams were no exception.

Artificial Inteligence 76

Artificial Inteligence Technical Review Cloud Systems Review 76

Ivanti

APRIL 9, 2024

For the fourth Patch Tuesday of 2024 there is more to consider than just what is being released on Patch Tuesday. There are a number of vendors who have released security updates leading up to Patch Tuesday, and more to come in the following weeks. For more information on updates, see the blog update and security advisory.

Windows 98

Windows Azure Systems Review .Net 98

Palo Alto Networks

APRIL 19, 2024

On April 10, 2024 Palo Alto Networks Product Security Incident Response Team (PSIRT) learned of a suspicious exfiltration attempt at a customer site from Volexity's Steven Adair. The second bug (trusting that the files were system-generated) used the filenames as part of a command. How Was It Exploited?

Firewall 130

Firewall Systems Review Malware Software Review 130

Tenable

JULY 26, 2024

And a poll on water plant cybersecurity. Cybersecurity and Infrastructure Security Agency (CISA), the FBI and law enforcement agencies from the U.S., For more information about cyberthreats from North Korea: “ Exclusive: UN experts investigate 58 cyberattacks worth $3 bln by North Korea ” (Reuters) “ U.S. And much more!

Artificial Inteligence 67

Artificial Inteligence CTO Technical Review Healthcare 67

Tenable

DECEMBER 15, 2023

A group that includes the Cloud Security Alliance, CISA and Google is working to compile a comprehensive collection of best practices for secure AI use. Meanwhile, check out a draft of secure configuration recommendations for the Google Workspace suite. Dive into six things that are top of mind for the week ending December 15.

Groups 72

Groups Industry Hardware Software Review 72

Tenable

DECEMBER 29, 2023

As we reflect on the many accomplishments Tenable OT Security achieved in 2023, one thing is clear: we couldn’t have done it without the support and collaboration of our customers and partners. I can easily say 2023 was a good year for Tenable OT Security. We believe all cyber risk needs to be viewed, ultimately, as operational risk.

Systems Review 72

Systems Review Technical Review Software Review IoT 72

Tenable

JANUARY 19, 2024

Cybersecurity and Infrastructure Security (CISA) agency and the Federal Bureau of Investigation (FBI) said this week. To mitigate this risk, the agencies recommendations include: Using drones built with secure-by-design principles, such as those manufactured in the U.S.

Infrastructure 72

Infrastructure Malware Government Technical Review 72

Tenable

OCTOBER 27, 2023

Check out how organizations’ enthusiasm over generative AI is fueling artificial intelligence adoption for cybersecurity. Also, why boards of directors feel more comfortable with cybersecurity. business and IT pros involved in cybersecurity. business and IT pros involved in cybersecurity. And much more!

Artificial Inteligence 64

Artificial Inteligence Artificial Intelligence Technical Review Backup 64

Prisma Clud

JULY 3, 2024

Unveiling the Duality: Harnessing AI's Potential While Safeguarding Cloud-Native Security AI-generated code promises to reshape cloud-native application development practices, offering unparalleled efficiency gains and fostering innovation at unprecedented levels. But, admittedly, the path to this solution isn’t always straightforward.

Software Review 87

Software Review Cloud Report Systems Review 87

Palo Alto Networks

APRIL 2, 2024

Artificial intelligence (AI) plays a crucial role in both defending against and perpetrating cyberattacks, influencing the effectiveness of security measures and the evolving nature of threats in the digital landscape. As cybersecurity continuously evolves, so does the technology that powers it. staff researcher and Doren Rosen, Sr.

Artificial Inteligence 70

Artificial Inteligence Weak Development Team Artificial Intelligence Technical Advisors 70

Tenable

FEBRUARY 9, 2024

critical infrastructure IT and operational technology security teams, listen up. So said cybersecurity agencies from the U.S., Cybersecurity and Infrastructure Security Agency (CISA) said in a statement. government announced it had disrupted a botnet that Volt Typhoon was using to breach critical infrastructure systems.

Weak Development Team 67

Weak Development Team Infrastructure Generative AI Artificial Inteligence 67

Infinidat

JUNE 6, 2024

The Proverbial “Water Cooler” Discussions 2024: Key Topics that Drive Enterprise Storage Conversations (Part One) Adriana Andronescu Thu, 06/06/2024 - 09:19 Talk about storage – this is your opportunity to react to what is being discussed around the proverbial “water cooler” in enterprise storage industry circles, online, in-person, and otherwise.

Storage 69

Storage Enterprise Malware Systems Review 69

Palo Alto Networks

MARCH 20, 2024

For over 40 years, the President’s National Security Telecommunications Advisory Committee (NSTAC) has demonstrated a long track record of providing forward-looking private sector advice to the President of the United States on the most critical issues at the nexus of technology and national security.

Report 97

Report Artificial Intelligence Artificial Inteligence Telecommunications 97

CIO

JULY 23, 2024

US regulatory agencies are watching for exaggerated AI claims, with the US Securities and Exchange Commission announcing a settlement in March with two investment advisors. CIOs and other executives should also consider reviewing their AI capabilities before making claims, he adds.

Artificial Inteligence 321

Artificial Inteligence Technical Advisors Technical Review Generative AI 321

Tenable

SEPTEMBER 2, 2022

Securing machine learning systems. Shifting security left – meaning, starting security checks earlier in the software development process – has been widely hailed. Most companies expect developers to do security code reviews, but many don’t provide them with security training. And much more!

Security 52

Security Software Review Artificial Inteligence Technical Review 52

Tenable

JUNE 5, 2024

An advisory from Rockwell Automation reiterates the importance of disconnecting operational technology devices with public-facing internet access and patching and mitigating systems vulnerable to several flaws. This need also came at the cost of expanding the attack surface , which included the provisioning of OT systems for remote access.

Internet 67

Internet Software Review Systems Review Technical Review 67

Prisma Clud

SEPTEMBER 17, 2024

Discover best practices to help secure your Docker environment with Prisma Cloud. The Prisma Cloud Compliance Explorer showing Docker policy compliance and checks Prisma Cloud can help improve the security of your Docker environment. Here are five best practices to help you secure Docker environments with Prisma Cloud.

Cloud 52

Cloud Software Review Compliance Linux 52