Tag: ai
157 articles

Ransomware Operation Exploits AI to Automate Cyberattack
Meet JadePuffer, a notorious ransomware operation that's taking cyberattacks to the next level with the power of AI, automating attacks with ease. In a shocking example, JadePuffer used a large language model agent to encrypt a staggering 1,342 Nacos service configuration items.

AI Transforms Government Acquisition with Human-Centered Approach
Imagine revolutionizing government acquisition with a human-centered approach powered by AI - and starting with the requirements development phase, historically underserved by technology. By embedding AI here, the impact could be transformative, streamlining not just this phase but all downstream work that relies on it.

AI Exposes Thousands of Open-Source Vulnerabilities
This summer is shaping up to be a wild ride, with thousands of open-source vulnerabilities exposed and a new coalition, Athena, stepping in to save the day with AI-powered solutions. Led by Chainguard, Athena brings together over two dozen major companies to tackle the problem head-on.

AI Shifts Threat Management from Reactive to Proactive Stance
With a sprawling security stack of 40+ tools, enterprise teams are drowning in overlapping alerts and manual handoffs, leaving gaping holes for adversaries to exploit. This disjointed approach leaves teams scrambling to respond to threats, with attackers enjoying a lengthy 43-day window to wreak havoc.

Cybersecurity Teams Must Leverage AI to Counter Accelerating Threats
Relying on human-driven security processes is no longer enough to keep up with the rapidly evolving threat landscape. To stay ahead, cybersecurity teams must harness the power of AI to counter the accelerating threats that are now being fueled by artificial intelligence and machine learning.

AI Transforms SOCs, But Human Analysts Remain Vital
AI is revolutionizing Security Operations Centers, but not by replacing human analysts - instead, it's freeing them from tedious tasks to focus on high-stakes decision-making. By automating routine work, AI is augmenting human capabilities, not replacing them.

Cybersecurity Shifts from Risk to Acceleration, Connection
The World Economic Forum's 2025 survey reveals a stark reality: 72% of organizations are facing increased cyber risks, with ransomware remaining a top threat - forcing us to rethink how we keep information safe in an AI-driven world. It's time to shift from traditional risk management to practical, accelerated solutions.

Akamai Bolsters AI Browser Security with $205M LayerX Acquisition
Akamai is taking browser security to the next level with its $205 million acquisition of LayerX, a cutting-edge startup that's changing the game with its innovative approach to securing interactions between users and applications. By integrating LayerX's technology, Akamai is bolstering its security stack to protect the increasingly AI-driven and cloud-based world.

House Panel Scrutinizes Anthropic's Mythos Amid Cyber Risk Concerns
A recent closed-door briefing by Anthropic showed lawmakers firsthand how its advanced AI model, Mythos, can swiftly identify and reason through software vulnerabilities, highlighting the urgent need for federal agencies to access cutting-edge US models to stay ahead of cyber threats. This live demo reinforced the importance of responsible access to advanced AI for civilian cyber defenders to find and patch vulnerabilities before they can be exploited.

Cisco CEO Warns of Growing Risk from Unpatchable Technology
Cisco CEO Chuck Robbins warns that unpatchable technology poses a growing risk, and he's turning to AI tools like Anthropic's Claude Mythos to accelerate modernization and safeguard infrastructure. By leveraging Mythos, Cisco aims to not only boost productivity but also help customers replace outdated equipment that can no longer be patched.

AI Reshapes Cybersecurity With Faster Scaling, Higher Stakes
The RSA Conference this year was a testament to the seismic shift in cybersecurity: AI is revolutionizing the industry with unprecedented investment and innovation. Venture funding is now focused on a select few AI-powered startups that promise to deliver game-changing security outcomes.

FIS and Anthropic Unveil AI to Accelerate Money Laundering Probes
Imagine having an AI-powered ally that supercharges your money laundering investigations, automatically gathering evidence, detecting patterns, and prioritizing case files in minutes - not days. FIS and Anthropic have joined forces to bring you the Financial Crimes AI Agent, revolutionizing banking's most costly compliance challenge.

CISOs Confront Growing Skills Gap in Cybersecurity Teams
A growing concern for CISOs is the widening skills gap in their cybersecurity teams, with 60% citing a lack of skilled staff as a bigger challenge than filling vacant positions. The right people with the right skills are proving harder to find than more bodies to fill open roles.

Phishing campaigns increasingly harness AI to evade detection
Phishing campaigns are getting smarter by the minute, with a whopping 86% of recent attempts leveraging AI to sneak past detection. This marks a significant jump from just two years ago, when AI was used in 80% of phishing ops.

AI Drives Shift to Continuous Penetration Testing in Cloud Environments
The AI revolution is transforming technology like never before, and Evinova is at the forefront, shifting from annual penetration testing to continuous security validation to safeguard its cloud-native healthcare software. This bold move replaces traditional point-in-time assessments with ongoing validation, ensuring rock-solid security for its customers.

Vulnerability Discovery Outpaces Remediation Infrastructure
The latest AI-powered vulnerability discovery tool, Anthropic's Claude Mythos Preview, can identify a massive number of security risks at unprecedented speed, raising crucial questions about whether organizations can keep up with remediation. With AI outpacing human teams, the real challenge now is turning these findings into actionable fixes.

FTC Bolsters AI Efforts to Combat Deepfakes and Voice Scams
The Federal Trade Commission is stepping up its game against AI-powered scams, gearing up to enforce new laws targeting sexual deepfakes and exploring ways to shut down voice clone scams. It's a crucial move in the cat-and-mouse battle to stay ahead of tech-savvy scammers.

CrowdStrike Tests Anthropic's Claude Mythos for Accelerated Vulnerability Detection
Imagine slashing the time between discovering a software flaw and fixing it - a new breed of large language models, like Anthropic's Claude Mythos, may hold the key. Early tests with CrowdStrike suggest that AI-powered vulnerability detection can accelerate discovery and bring broader situational awareness to cybersecurity operations.

Researchers bypass Grafana AI with stealthy data exfiltration technique
Imagine a tool meant to reveal operational insights being turned into a stealthy spy, siphoning off sensitive corporate secrets - that's what happened when researchers exploited Grafana's AI with a cunning technique called indirect prompt injection. Dubbed GrafanaGhost, this attack bypasses Grafana's defenses, exfiltrating data without leaving a digital trail.

LiteLLM Supply-Chain Compromise Exposes Mercor Data
A single faulty AI dependency can become a backdoor for attackers - as seen in the recent LiteLLM supply-chain compromise that exposed sensitive data, source code, and internal credentials at Mercor. This alarming incident highlights the risks of relying on third-party dependencies and the importance of securing your supply chain.

Mercor AI Startup Discloses Data Breach Involving Open AI, Anthropic Partnerships
Mercor, an AI startup partnered with industry giants OpenAI and Anthropic, has confirmed a data breach - raising concerns about the potential impact on users and the company's ability to regain trust. The incident has left many questions unanswered, including what data was compromised and who might be affected.

Mercor Hit in Widespread LiteLLM Supply-Chain Attack
Thousands of companies, including AI hiring startup Mercor, have been hit by a widespread LiteLLM supply-chain attack, marking the first publicly disclosed downstream casualty of a software supply-chain intrusion. This incident raises a critical question: how can organizations trust their tech toolchains when the chain itself can be compromised?

AI Revamps SAST to Cut Noise, Boost AppSec Effectiveness
Tired of static application security testing (SAST) screaming false alarms, only to be ignored by your team? AI is revolutionizing SAST by cutting through the noise, helping you focus on real threats and making application security more effective.

Anthropic Exposes Closed-Source Code in NPM Package Leak
A single character typo in a package manifest led to a major oops for Anthropic, the creators of Claude AI, as they accidentally leaked the source code for their closed-source language model, Claude Code. Fortunately, the company quickly acknowledged the mistake and assured that no customer data or credentials were compromised.