CU InfoSecurity
Unknown date
Hidden
Microsoft urges users to abandon NTLM authentication due to persistent security risks. Google has published rainbow tables for NTLMv1, potentially accelerating the transition away from this outdated protocol.
CU InfoSecurity
Unknown date
Hidden
• Open-source AI assistant 'OpenClaw' poses significant security risks including data theft and malicious code. • Users can add 'skills' that connect the assistant with various services, increasing vulnerability.
CU InfoSecurity
Unknown date
Enforcement|security
US sanctions U.K.-registered exchanges over Iran ties; Step Finance and CrossCurve experience hacks; Coinbase data breach and ad ban in the UK.
CU InfoSecurity
Unknown date
Hidden
Scalable AI requires robust observability; cost control and trust are critical for successful production deployment. Separating scalable AI from systems prone to failure involves effective monitoring and management.
CU InfoSecurity
Unknown date
Security
TRM Labs has raised $70 million in Series C funding for AI-driven investigations and compliance tools; the company aims to combat cybercrime using advanced AI technologies.
CU InfoSecurity
Unknown date
Hidden
• Southern Connecticut State University's CIO is focusing on modernizing legacy systems and adopting AI. • The article discusses the need for balancing research ambitions, student expectations, and operational efficiency in a complex risk...
CU InfoSecurity
Unknown date
Hidden
Semperis acquires MightyID to expand its identity security platform to include Okta and Ping; addresses customer demand for multi-identity provider protection, backup recovery, and migration.
CU InfoSecurity
Unknown date
Hidden
Harvard University has been victimized by the ShinyHunters group through a data leak; contact details for 'top donors' were included. The attack involved live phishing attempts targeting IT help desks.
CU InfoSecurity
Unknown date
Rules|guidance
Key points: Federal rules for the confidentiality of substance use disorder records under HIPAA are changing; critical questions remain unanswered regarding Part 2 programs; compliance deadline is approaching.
CU InfoSecurity
Unknown date
Hidden
The article discusses SolarWinds' Secure-by-Design principles for its Agentic AI platform; it emphasizes the importance of not crossing the line into fully autonomous remediation.
CU InfoSecurity
Unknown date
Security
Ransomware group Clop's initial 25% of victims paying ransoms dropped to zero by 2023; steal-and-leak campaigns are becoming less effective.
CU InfoSecurity
Unknown date
Hidden
RapidFort raises $42 million for expanding sales operations and building out its platform; focuses on reducing developer lift while addressing AI-enabled supply chain risks.
CU InfoSecurity
Unknown date
Hidden
• The White House rescinded two key software security policies for vendors, citing compliance burdens. • Analysts warn this could weaken federal software assurance standards without strong replacements.
CU InfoSecurity
Unknown date
Hidden
• Web-facing apps at a large U.S. hospital have security weaknesses that could expose IT systems and patient data to cyberattacks. • Similar issues are common across many healthcare entities, including those in the...
CU InfoSecurity
Unknown date
Hidden
The webinar focuses on machine identity and the use of 47-day certificates. Participants will learn how to secure digital identities in their systems.
CU InfoSecurity
Unknown date
Hidden
AI agents show a 24% success rate in enterprise pilots but require human oversight. Their effectiveness can improve with time and integration.
CU InfoSecurity
Unknown date
Hidden
The article emphasizes the need for a programmatic approach in cybersecurity programs (CPS) due to AI-era attacks. It highlights the importance of adapting CPS strategies to address evolving cyber threats.
CU InfoSecurity
Unknown date
Hidden
• Attackers exploited a vulnerability in Notepad++ to deliver a backdoor via redirected sites.
• The attack has been linked to Chinese nation-state actors and is part of a broader campaign.
CU InfoSecurity
Unknown date
Hidden
French authorities raided X's Paris office; British and Spanish regulators opened investigations into the company. These actions follow a criminal probe related to algorithmic manipulation and illegal content amplification.
CU InfoSecurity
Unknown date
Hidden
CyberFox raises nine-figure investment from Level Equity; plans AI development and acquisitions. No explicit mention of Texas or Texas-specific entities.
CU InfoSecurity
Unknown date
Hidden
- NSA guidance mandates continuous access checks and real-time assessment of user behavior and app-layer activity.
- The focus is on closing post-authentication abuse gaps to enhance federal defenses against modern threats.
CU InfoSecurity
Unknown date
Security
• 2025 saw a record 3,322 U.S. data breaches with only 30% of breach notices providing actionable details. • James Lee from ITRC warns that the lack of transparency in these notices increases risk...
CU InfoSecurity
Unknown date
Enforcement
- Capital Health agreed to pay $4.5 million in settlement for a 2023 ransomware attack affecting over 500,000 patients and employees.
- The breach involved data theft by the LockBit group.
CU InfoSecurity
Unknown date
Hidden
Linwei Ding was convicted of stealing thousands of pages of confidential AI data from Google and transferring it to Chinese technology companies; he faces decades in prison for economic espionage and trade secret theft.
CU InfoSecurity
Unknown date
Hidden
The article discusses strategies for building customer trust in the use of AI technologies within financial services. It highlights the importance of transparency, clear communication, and addressing privacy concerns.