Skip to main content

Tag: automation

247 articles

AI-driven social engineering: Must-Have Risk Fix

AI-driven social engineering: Must-Have Risk Fix

ISACA’s new survey sounds a wake-up call: only 1 in 10 cybersecurity pros feel “very prepared” as AI-powered social engineering tops the threat list for 2026, so organizations must sharpen playbooks, training, and verification now before attackers exploit the gap.

Analyst 207
100 trillion signals: Stunning Risk, Best Defense

100 trillion signals: Stunning Risk, Best Defense

Microsoft says its systems process over 100 trillion signals every day to spot threats — but AI-powered attackers are getting faster and craftier, so sheer volume alone won’t keep us safe. That reality means defenders must pair massive telemetry with smarter correlation, stronger identity protections and clearer policies to stay ahead.

Analyst 207
Tech Grad Hiring Crisis: Stunning 46% Plunge

Tech Grad Hiring Crisis: Stunning 46% Plunge

UK tech graduate hiring has collapsed 46% in a year, with another 53% drop forecast. GenAI is replacing routine junior roles, squeezing Gen Z out of entry-level jobs and threatening the talent pipeline unless employers and universities adapt.

Analyst 207
Agentic AI: Must-Have or Risky Revolution

Agentic AI: Must-Have or Risky Revolution

When software stops asking permission and starts setting its own goals, governments face a leap from helpful automation to powerful but risky agentic AI—promising faster services but raising urgent questions about accountability, oversight, and public trust.

Analyst 207
AI SOC: Must-Have Guide to Best (and Risky) Platforms

AI SOC: Must-Have Guide to Best (and Risky) Platforms

By 2026 SOCs will run as much on software agents as on analysts, with copilots, autonomous agents, and hybrid platforms transforming detection, response, and who holds decision authority. Pick tools that speed response but also deliver clear explainability, strong governance, and real adversarial testing so automation amplifies human wisdom instead of human error.

Analyst 207
AI browsers Risky: Stunning Security Wake-Up

AI browsers Risky: Stunning Security Wake-Up

A new SquareX Labs analysis warns that AI browsers—promising smarter, hands‑free browsing—may open fresh security gaps by blending models, plugins and persistent state, creating new attack surfaces for credential theft and model poisoning. Users and enterprises should treat AI-driven suggestions cautiously and push for stronger sandboxing, permission controls and oversight before convenience outpaces safety.

Analyst 207
Shattered laptop screen with cityscape background and faint image of masked figure lurking in shadows.

Digital fraud: Stunning Costly Threat to Revenue

Nearly one in every thirteen dollars disappears to digital fraud—TransUnion says it costs companies 7.7% of revenue (about $534 billion globally). That’s a hidden tax on growth, trust and margins that demands smarter defenses.

Analyst 207
Embed AI Now: Must-Have Fix to Reduce Risk

Embed AI Now: Must-Have Fix to Reduce Risk

AI can find vulnerabilities in seconds but also flood teams with noisy alerts — embedding AI thoughtfully with context-aware scoring, human-in-the-loop checks, and better telemetry turns automation into a force-multiplier that speeds remediation and reduces risk.

Analyst 207
malware development: Exclusive Risky AI Abuse Exposed

malware development: Exclusive Risky AI Abuse Exposed

OpenAI says it disrupted three groups misusing ChatGPT to develop malware — from a Russian actor refining a RAT and credential‑stealer to activity tied to China and North Korea — highlighting how easily generative AI can be repurposed for harm. The takedown bought defenders time, but it also raises urgent questions about policing, policy and how to keep powerful tools useful without arming attackers.

Analyst 207
AIOps for Government: Must-Have Best-Practice Guide

AIOps for Government: Must-Have Best-Practice Guide

Government agencies can unlock new value from costly legacy systems by layering AIOps—AI-driven monitoring and predictive maintenance—that boosts resiliency, cuts downtime, and stretches IT dollars without risky rip-and-replace projects. Done right, AIOps becomes a secure, incremental bridge to modernization that protects services, reduces firefighting, and preserves public trust.

Analyst 207
Scattered Lapsus$ Hunters: Risky Stunning Extortion

Scattered Lapsus$ Hunters: Risky Stunning Extortion

Believe it or not, a loose group offering just $10 in Bitcoin is recruiting crowds to harass executives — a novel, low-cost form of extortion that trades big payouts for mass nuisance and could be dangerously scalable.

Analyst 207
Context wins: Must-Have Best AI Defense Tactics

Context wins: Must-Have Best AI Defense Tactics

Context wins — whoever understands systems fastest will shape the outcome of the AI-accelerated attack/defense race. Build inventories, sharpen telemetry, harden processes, and share actionable intelligence to tilt the balance back toward defenders.

Analyst 207
IT Modernization: Must-Have Strategies for Best Missions

IT Modernization: Must-Have Strategies for Best Missions

Federal IT modernization isn’t just about new tech—it’s a pragmatic playbook for delivering faster, more secure services using cloud, AI, automation and zero-trust practices while keeping critical missions running without disruption. Leaders shared phased approaches, shared platforms and workforce-first strategies that balance risk, procurement and policy to turn legacy systems into resilient, mission-ready capabilities.

Analyst 207
delivery of pentest results: Must-Have Best Practices

delivery of pentest results: Must-Have Best Practices

Penetration testing uncovers real attack paths, but static PDFs and emails let critical fixes stall — automating delivery into ticketing, CI/CD, and dashboards turns findings into fast, measurable remediation. Adopt continuous workflows to shrink exposure windows, boost collaboration, and make pen-test insights actually stick.

Analyst 207
detection gaps: Exclusive Best Practices to Stop Breaches

detection gaps: Exclusive Best Practices to Stop Breaches

Stop drowning in alert noise—prioritize the right telemetry, map gaps to MITRE ATT&CK, build chained detections and automated enrichment so analysts can find real threats faster. Start small, measure actionable alerts per analyst-hour, and invest in people and integration to close gaps before attackers exploit them.

Analyst 207
agentic AI Must-Have Defense: Risky Breach Guide

agentic AI Must-Have Defense: Risky Breach Guide

Forrester warns agentic AI could spark a major breach by 2026, so now’s the time for boards and security teams to treat agentic risk as design — not a checkbox — by locking down privileges, boosting observability, and baking in human-in-the-loop controls before autonomous agents can act maliciously at scale.

Analyst 207
Autonomous AI: Exclusive Must-Have Safety After Risky Stall

Autonomous AI: Exclusive Must-Have Safety After Risky Stall

Gartner’s latest research shows enterprises are hitting the brakes on autonomous AI—only a tiny fraction plan to deploy agents—making this a crucial moment to prioritize safety, governance and human oversight. It’s an opportunity to build systems that are not just smart, but trustworthy and secure before handing them more control.

Analyst 207
AI security Must-Have: Best Defense Tactics

AI security Must-Have: Best Defense Tactics

PwC finds organizations are now prioritizing AI security over cloud and network defenses, reallocating budgets to protect models, training data and inference pipelines from novel attacks. That shift means stronger governance, adversarial testing and monitoring are needed to make AI a strategic asset rather than a new liability.

Analyst 207
indirect prompt injection: Stunning Risk Exposed

indirect prompt injection: Stunning Risk Exposed

A trio of vulnerabilities in Google’s Gemini shows how indirect prompt injection—hiding instructions in files, metadata or chained APIs—can trick AI into leaking data or taking unintended actions, proving that securing models means vetting every input source, not just user prompts.

Analyst 207
Sentinel data lake: Must-Have Boost or Risky Move

Sentinel data lake: Must-Have Boost or Risky Move

Microsoft’s new Sentinel data lake, paired with graph-aware tools and a model context protocol, promises faster detection and richer, automated responses by letting agents reason across unified security signals. It’s an exciting leap toward smarter defenses—if teams can balance the efficiency gains with strong governance, oversight, and safeguards against manipulation.

Analyst 207
mission success: Must-Have Infrastructure for Best Defense

mission success: Must-Have Infrastructure for Best Defense

When mission needs outpace aging IT and cloud, cyber, and AI demands collide, infrastructure becomes the strategic foundation for federal success—enabling agility, security, and trustworthy AI. Cloud Exchange 2025 made clear: treating infrastructure as a mission enabler, not a cost center, is the only way agencies can modernize, defend assets, and deliver better services.

Analyst 207
cybersecurity staff Shortage: Must-Have Fixes for Risky Gap

cybersecurity staff Shortage: Must-Have Fixes for Risky Gap

Two-thirds of organizations lack dedicated cybersecurity staff, leaving networks and data more exposed as threats surge and hiring, burnout, and competition for talent bite. Fixing it means smarter hiring, hands-on training and public‑private action before the next big incident.

Analyst 207
AI and machine learning: Must-Have Best Efficiency Boost

AI and machine learning: Must-Have Best Efficiency Boost

From outdated systems to AI-powered workflows, federal agencies can speed services, cut backlogs, and predict risks to stretch scarce resources — but doing it right means modernizing data, upskilling staff, and baking in strong safeguards so innovation boosts efficiency without sacrificing accountability.

Analyst 207
prompt-injection vulnerability: Stunning Salesforce Risk

prompt-injection vulnerability: Stunning Salesforce Risk

Salesforce rushed out a patch after researchers uncovered ForcedLeak, a high‑severity prompt‑injection flaw that could trick Agentforce AI into leaking CRM data — a clear reminder that adding generative AI to business systems widens attack surfaces. Customers should apply the update, review integrations, and treat prompt handling as a core security control.

Analyst 207