Security news aggregator

Latest coverage for Artificial Intelligence

Explore the intersection of AI and cybersecurity. Stay informed on AI-driven security trends, tools, and threats in the ever-evolving digital landscape.

23 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Artificial intelligence (AI) describes computer systems that perform tasks such as recognizing patterns, making predictions, understanding language, or generating content. In security reporting, the term commonly includes machine-learning models used for detection and analysis, as well as generative AI applications that produce text, code, images, or other outputs.

AI can help analyze security telemetry, prioritize vulnerabilities, and support investigations, but its outputs can be wrong or manipulated. Important attack surfaces include prompt injection that steers an application into unintended actions, sensitive data being exposed through prompts or model outputs, and excessive permissions granted to AI systems that use external tools. Models can also be degraded by poisoned training data or evaded with carefully crafted inputs. Practitioners should protect training and operational data, limit model access and tool permissions, test for adversarial behavior, and require appropriate human validation before high-impact decisions.

Showing 20 most recent headlines of 23 Filtered view
Bank Info Security 2 years, 3 months ago

UK Markets Authority Warns of AI Market Capture by Big Tech

CMA Says Market Is Becoming more Verticially IntegratedThe British antitrust authority warned Thursday that the market for foundational models is taking on "winner takes all" dynamics that could entrench a small number of providers. Firms with an outsize presence in offering compute or data resources could restrict access to critical inputs.

Bank Info Security 2 years, 3 months ago

Cloned Voice Tech Is Coming for Bank Accounts

Experts Warn AI Tools Can Now Compromise Voice Password Systems Used by Many BanksAt many financial institutions, your voice is your password. Tiny variations in pitch, tone and timbre make human voices an ideal method for authenticating customers - as long as computers can't be trained to synthesize those pitch, tone and timbre characteristics in real time. They can.

Bank Info Security 2 years, 3 months ago

ISMG Editors: Unpacking the Change Healthcare Attack Saga

Also: Positive Cyber Market Trends, AI Threats to Supply Chain SecurityIn the latest weekly update, four ISMG editors discussed the unending twists and turns in the Change Healthcare cyberattack, positive signs of economic recovery in the cybersecurity tech market, and how artificial intelligence is shaking up supply chain security.

Affected federal agencies must comb through mails, reset API keys and passwords The US Cybersecurity and Infrastructure Security Agency (CISA) warns that Russian spies who gained access to Microsoft's email system were able to steal sensitive data, including authentication details and that immediate remedial action is required by affected agencies.…

The Hacker News 2 years, 3 months ago

Code Keepers: Mastering Non-Human Identity Management

Identities now transcend human boundaries. Within each line of code and every API call lies a non-human identity. These entities act as programmatic access keys, enabling authentication and facilitating interactions among systems and services, which are essential for every API call, database query, or storage account access. As we depend on multi-factor authentication and passwords to safeguard

The Hacker News 2 years, 3 months ago

Python's PyPI Reveals Its Secrets

GitGuardian is famous for its annual State of Secrets Sprawl report. In their 2023 report, they found over 10 million exposed passwords, API keys, and other credentials exposed in public GitHub commits. The takeaways in their 2024 report did not just highlight 12.8 million new exposed secrets in GitHub, but a number in the popular Python package repository PyPI

The Hacker News 2 years, 3 months ago

Python's PyPI Reveals Its Secrets

GitGuardian is famous for its annual State of Secrets Sprawl report. In their 2023 report, they found over 10 million exposed passwords, API keys, and other credentials exposed in public GitHub commits. The takeaways in their 2024 report did not just highlight 12.8 million new exposed secrets in GitHub, but a number in the popular Python package repository PyPI

Bank Info Security 2 years, 3 months ago

Cybercrime Group Uses Likely AI Script to Load Info Stealer

Proofpoint Spots Novel Threat Against German OrganizationsA financially motivated threat group used a script apparently coded by artificial intelligence to download an info stealer onto victim computers. The script, used to load the Rhadamanthys info stealer, contains "grammatically correct and hyper specific comments above each component of the script."

Bank Info Security 2 years, 3 months ago

Should We Just Accept the Lies We Get From AI Chatbots?

NYC's New Chatbot, Hallucinating LLMs Just Can't Be Fixed, Says Linguistics ExpertEmployers can now fire an employee who complains about sexual harassment, take a cut of their workers' tips and serve customers cheese nibbled on by rats: at least according to advice doled out by New York City's AI chatbot meant to help small business owners navigate the city's bureaucratic maze.

The Hacker News 2 years, 3 months ago

Hands-on Review: Cynomi AI-powered vCISO Platform

The need for vCISO services is growing. SMBs and SMEs are dealing with more third-party risks, tightening regulatory demands and stringent cyber insurance requirements than ever before. However, they often lack the resources and expertise to hire an in-house security executive team. By outsourcing security and compliance leadership to a vCISO, these organizations can more easily obtain

Bank Info Security 2 years, 3 months ago

Cyera Gets $300M at $1.4B Valuation to Fuel Safe AI Adoption

Series C Funding Round Aims to Transform Data Protection, Empower Safe Use of AICyera completed a $300 million funding round led by Coatue to fortify data security and facilitate safer AI adoption across enterprises. By consolidating data protection measures, Cyera hopes to address the critical need for a unified data security platform in the era of generative AI.

Bank Info Security 2 years, 3 months ago

What Cisco's Purchase of Splunk Means for Cybersecurity, AI

Jeetu Patel on How Buying Splunk Will Fortify Cisco's Security, AI and Data MuscleExecutive Vice President and General Manager Jeetu Patel explains how Cisco's $28 billion acquisition of Splunk will transform the company's security practice to bring in advanced AI, improve data analysis and streamline operations for a stronger defense against cyberthreats.

Bank Info Security 2 years, 3 months ago

Hugging Face Vulnerabilities Highlight AI-as-a-Service Risks

Researchers Say Illegal Access to Private AI models Can Enable Cross-Tenant AttacksSecurity researchers have discovered two critical vulnerabilities in the Hugging Face AI platform that exposed potential gaps for attackers seeking unauthorized access and manipulation of customer data and models. The risks highlight the security concerns about AI-as-a-service offerings.

Loading more headlines...