Security news aggregator

Latest coverage for Artificial Intelligence

Explore the intersection of AI and cybersecurity. Stay informed on AI-driven security trends, tools, and threats in the ever-evolving digital landscape.

18 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Artificial intelligence (AI) describes computer systems that perform tasks such as recognizing patterns, making predictions, understanding language, or generating content. In security reporting, the term commonly includes machine-learning models used for detection and analysis, as well as generative AI applications that produce text, code, images, or other outputs.

AI can help analyze security telemetry, prioritize vulnerabilities, and support investigations, but its outputs can be wrong or manipulated. Important attack surfaces include prompt injection that steers an application into unintended actions, sensitive data being exposed through prompts or model outputs, and excessive permissions granted to AI systems that use external tools. Models can also be degraded by poisoned training data or evaded with carefully crafted inputs. Practitioners should protect training and operational data, limit model access and tool permissions, test for adversarial behavior, and require appropriate human validation before high-impact decisions.

Showing 18 most recent headlines Filtered view
Bank Info Security 2 years ago

Apple to Delay AI Rollout in Europe

Smartphone Giant Fingers Regulation Meant to Restrain Big TechApple said it will delay the rollout of artificial intelligence-powered features on smartphones in Europe in a Friday statement citing European law meant to rein in the power of large tech companies. The smartphone giant said continental customers won't have access this year to Apple Intelligence.

Project Zero Framework Aims to Boost AI Bug Detection SkillsGoogle's team of zero-day hunters say artificial intelligence can lead to improved automated threat identification and analysis. Researchers say that a framework allows LLMs to mimic the iterative, hypothesis-driven approach of human security experts.

New Rule Would Restrict Americans From Investing in Chinese AI, SemiconductorsThe U.S. Treasury Department is proposing a new rule that would restrict Americans from investing in technology companies developing quantum information technology, semiconductors and certain AI systems in countries the White House previously identified as posing potential national security risks.

Australian telco Optus allegedly left redundant website with poor access controls online for years The data breach at Australian telco Optus, which saw over nine million customers' personal information exposed, has been blamed on a coding error that broke API access controls, and was left in place for years.…

DHS Calls for Public-Private Collaboration on Critical Infrastructure SecurityCritical infrastructure sectors face many potentially disruptive threats such as supply chain vulnerabilities and the growing dependency on space-based systems. But the top cyberthreats facing the U.S. are the People's Republic of China and emerging risks associated with AI and quantum computing.

OpenAI, Meta and 8 Other Chatbots Use Disinformation Network as SourcePopular artificial intelligence chatbots are rife with Russian disinformation, warns NewsGuard, the rating system for news and information websites. The chatbots failed to recognize that sites such as "The Boston Times" or "The Houston Post" are Russian propaganda fronts.

Amanda Finch, Dwan Jones on Skills Gap, Diverse Hiring, AI, CISO Criminal LiabilityThe cybersecurity skills gap has reached 4 million globally and only by taking a more innovative approach to identifying, recruiting and retaining candidates from the widest pools of talent can we meet the growing demand for cybersecurity professionals, says a new guide from ISC2 and CIISec.

We recently discovered a new threat actor group that we dubbed Void Arachne. This group targets Chinese-speaking users with malicious Windows Installer (MSI) files in a recent campaign. These MSI files contain legitimate software installer files for AI software and other popular software but are bundled with malicious Winos payloads.

Agency Suggests Taxing AI-Related Carbon Emissions, Excess ProfitsThe International Monetary Fund suggested that governments consider a fiscal approach to remedy the damages artificial intelligence has brought to the environment and the economy. The agency proposed imposing a green tax on AI-related carbon emissions and taxing excess profits.

US Cyber Defense Agency Developing AI Security Incident Collaboration PlaybookThe Cybersecurity and Infrastructure Security Agency is hosting a series of tabletop exercises through its flagship public-private collaborative while developing a new playbook for both sectors to better respond to emerging cybersecurity risks associated with artificial intelligence.

Bank Info Security 2 years, 1 month ago

Sleepy Pickle: Researchers Find a New Way to Poison ML

Hackers Can Use the Attack Method to Manipulate ML Model Output and Steal DataResearchers have found a new way of poisoning machine learning models that could allow hackers to steal data and manipulate the artificial intelligence unit's output. Using the Sleepy Pickle attack method, hackers can inject malicious code into the serialization process, said Trail of Bits.

Bank Info Security 2 years, 1 month ago

Getting a Firmer Grip on AI Privacy Concerns in Healthcare

Artificial intelligence technologies offer tremendous promise in healthcare, but it's crucial for organizations to carefully assess the complex data privacy concerns involved with different types of AI products and deployments, said Karen Habercoss, chief privacy officer at UChicago Medicine.