Security news aggregator

Latest cybersecurity reporting from selected sources.

Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.

25 headlines in this view

Refine the feed

Search across headline titles and summaries.

Volume over time

Weekly headline count for the current query.

Showing 20 most recent headlines of 25 Filtered view
Microsoft Security Research 1 month, 1 week ago

Securing CI/CD in an agentic world: Claude Code Github action case

Microsoft Threat Intelligence identified a prompt injection pathway in Claude Code GitHub Action that allowed access to workflow secrets under specific conditions. This research examines the attack chain, responsible disclosure process, Anthropic's mitigation, and guidance for securing AI-powered CI/CD workflows. The post Securing CI/CD in an agentic world: Claude Code Github action case appeared first on Microsoft Security Blog.

A surge in real-world attacks against agentic AI systems is reshaping how we think about risk. Based on 12 months of red teaming, this update introduces seven new failure modes, from supply chain compromise to goal hijacking, and the practical mitigations teams need now. The post Updating the taxonomy of failure modes in agentic AI systems: What a year of red teaming taught us  appeared first on Microsoft Security Blog.

Bank Info Security 1 month, 2 weeks ago

AI-Driven Bug Tsunami Prompts Exploitability Questions

Severity and Reachability Metrics Also Essential for Mythos-Era Bug MitigationIf there's one thing artificial intelligence has done, it's multiply bugs, and the annual CVE Program count of new vulnerabilities is set to break records. Less apparent is how many of those AI-ferreted vulnerabilities can be turned into high-impact exploit chains - if they're exploitable at all.

Bank Info Security 3 months, 3 weeks ago

AI and Medical Device Cybersecurity: The Good and Bad

Is AI Exposing a Growing Vulnerability Risk Mitigation Gap?AI-fueled tools can help to identify medical device vulnerabilities much faster and at a higher volume than more traditional tools. But can device manufacturers and healthcare delivery organizations keep up with prioritizing and addressing a tidal wave of newly discovered flaws?

Bank Info Security 7 months ago

AI Governance Unlocks Speed, Not Bureaucracy

ServiceNow's Neeraj Jain on Risk Mitigation and Real-Time Data Access for AI AgentsEnterprises that embed governance from intake to deployment scale AI faster than those that bolt it on afterward. Clear frameworks mitigate risk, ensure compliance and increase operational efficiency, says Neeraj Jain, director of product management, hyperscalers and multi-cloud at ServiceNow.

Bank Info Security 8 months, 2 weeks ago

OpenAI Restructures, Nonprofit Foundation Retains Control

Nonprofit Foundation Holds Equity, Oversight Around $130B For-Profit CorporationThe nonprofit OpenAI Foundation now controls a $130 billion for-profit arm after a recapitalization process approved by attorneys general in California and Delaware. The nonprofit retains governance authority and will fund global health and AI risk mitigation programs, backed by regulatory approval.

Context-Driven Insights, Automation Fuel Faster, Clearer Decisions for Cyber TeamsWith its acquisition of San Francisco-based startup Fletch, F5 is embedding agentic AI into its security platform to automate threat detection and response. The technology provides real-time context, filters irrelevant alerts and helps security teams prioritize urgent risks and mitigation tasks.

Apex Security Detection Tools Help Tenable Spot Accidental and Malicious AI MisuseTenable is acquiring Israeli startup Apex Security to extend AI security features that go beyond asset discovery. With user-level controls and risk mitigation for AI usage, Tenable aims to accelerate its exposure management roadmap by integrating Apex into Tenable One later this year.

Series B Investment to Boost AI, Expand Coverage Across IaaS, PaaS, SaaS, On-PremData security startup Sentra has raised $50 million to expand its AI-powered classification, labeling and enforcement capabilities. With enterprise interest in secure AI adoption and risk mitigation rising, the firm will grow its team and expand support for cloud, SaaS and on-prem data governance.

Deal Adds Natural Language, Multi-Agent RAG Tech to Autonomous Security PlatformTorq’s acquisition of Revrod gives it a strategic leap in autonomous security operations. The startup's multi-agent retrieval-augmented generation engine enables smarter, faster threat detection, triage and mitigation without heavy manual workflows.

Max Payout for Bug Bounty Program Up From $20,000 to $100,000OpenAI announced a cybersecurity initiative that aims to improve the resilience of its artificial intelligence systems by rewarding the discovery of critical vulnerabilities and improving threat mitigation. OpenAI raised the maximum payout for its bug bounty program from $20,000 to $100,000.

Bank Info Security 1 year, 8 months ago

AI Boom Set to Dump a Mountain of E-Waste

E-waste From Gen AI Hardware May Equal 2.5M Tons Per Year by 2030The technology powering chatbots could increase electronic trash by a thousand times by the end of the decade, warn researchers. The researchers from the Cambridge University and the Chinese Academy of Sciences suggest mitigation methods that could cut the e-waste by up to 86%.

Bank Info Security 1 year, 9 months ago

New York Financial Regulator Publishes AI Safety Guidance

Agency Details AI Cybersecurity Risks, Prevention, Mitigation StrategiesFinancial regulators with the state of New York on Wednesday published guidance to help organizations identify and mitigate cybersecurity threats related to artificial intelligence. The New York State Department of Financial Services said it's not imposing new requirements.

Bank Info Security 1 year, 9 months ago

Regulating AI Catastophic Risk Isn't Easy

AI, Security Experts Discuss Who Defines the Risks, Mitigation EffortsAn attempt by the California statehouse to tame the potential of artificial intelligence catastrophic risks hit a roadblock when Governor Gavin Newsom vetoed the measure late last month. One obstacle is lack of a widely-accepted definition for "catastrophic" AI risks.

Bank Info Security 2 years, 1 month ago

AI vs AI: Fighting Deepfakes With Biometric Authentication

Experts Recommend Multimodal Biometrics as Mitigation Strategy for AI-Based AttacksWhile AI has spurred the growth of authentication controls, it has also enabled voice cloning and video deepfakes to become much more convincing. Fraud fighters are looking at adopting a multifactor authentication system using multimodal biometrics to fight against deepfakes.

Bank Info Security 2 years, 3 months ago

US and UK Partner to Align on AI Safety and Share Resources

Nations to Jointly Develop Evaluation Mechanisms and Risk Mitigation GuidesThe United States and the United Kingdom signed a landmark artificial intelligence agreement on Monday to work together to develop tests for the most advanced AI models and share research capabilities. The countries also committed to developing similar partnerships with other nations.

Loading more headlines...