Tag: ai
-
Boards don’t need cyber metrics, they need risk signals
Tags: access, advisory, ai, attack, automation, awareness, business, ciso, control, cyber, cybersecurity, data, framework, governance, intelligence, metric, phishing, riskThe seduction of counting: Even when metrics are not too technical and align with business impact, another problem emerges: What gets counted can crowd out what matters.Wendy Nather, a longtime CISO who is now an advisor at EPSD, cautions against equating measurement with understanding. “When you are reporting to the board, there are some things…
-
Android RAT SURXRAT Grants Hackers Full Device Control and Data Exfiltration
SURXRAT is an actively developed Android Remote Access Trojan (RAT) sold as a commercial malware-as-a-service (MaaS) on Telegram, giving attackers full device control and powerful data”‘stealing capabilities. It combines large”‘scale affiliate distribution, cloud”‘hosted command”‘and”‘control, and even experimental AI modules, making it a serious and evolving threat for Android users. The Indonesian operator runs a channel…
-
Wie ‘Scam-Assembly-Lines” die Markenpiraterie industrialisieren
Kriminelle im Internet setzen zunehmend auf Künstliche Intelligenz (KI), um automatisch betrügerische Inhalte zu erstellen. Generative KI macht es ihnen leichter, Fälschungen zu produzieren, die von echten Inhalten kaum noch zu unterscheiden sind. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/scam-assembly-lines-markenpiraterie
-
Wachsende KI-Exposure-Lücke durch Supply-Chain-Risiken und fehlende Identitätskontrollen
Der Bericht von Tenable zeigt, dass 86 % aller Unternehmen Code-Pakete von Drittanbietern mit kritischen Sicherheitslücken installiert haben und 65 % wertvolle Assets durch vergessene Cloud-Anmeldedaten gefährden. Tenable, das Unternehmen für Exposure Management, veröffentlichte seinen Cloud and AI Security Risk Report 2026 [1]. Die Studie zeigt, dass Unternehmen vor einer kritischen KI-Exposure-Lücke ohne Fehlertoleranz… First…
-
Mozilla Firefox 148 – Browser erhält zentrale KI-Steuerung und KI-Deaktivierung
In Firefox 148 können ab sofort in den Einstellungen sämtliche Browser-internen KI-Funktionen verwaltet und bei Bedarf deaktiviert werden. First seen on computerbase.de Jump to article: www.computerbase.de/news/apps/mozilla-firefox-148-browser-erhaelt-zentrale-ki-steuerung-und-ki-deaktivierung.96290
-
Cyber valuations climb as capital concentrates, AI security expands
Venture funding in cybersecurity continued to concentrate in large private rounds at the end of 2025, driving valuations higher across stages. Data from DataTribe shows total … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/25/cybersecurity-venture-funding-ai-security-expands/
-
Creating unstructured data pipelines for retrieval augmented generation
Preparing the data for use with generative AI tools is a major impediment that affects time-to-value for enterprise AI use cases. We’ve expanded Tonic Textual’s functionality to take your unstructured data from raw to AI-ready in just a few minutes, while you ensure that sensitive data is protected. First seen on securityboulevard.com Jump to article:…
-
Anthropic Accuses China AI Firms of Model Mining
DeepSeek, MoonShot AI, MiniMax Used 24K Fake Accounts in Campaign. Anthropic has accused three Chinese AI firms of running coordinated, large-scale operations to steal capabilities from its Claude models. The U.S.-based company said DeepSeek, Moonshot AI and MiniMax are conducting industrial-scale campaigns using tens of thousands of fraudulent accounts. First seen on govinfosecurity.com Jump to…
-
Threat groups move at record speeds, as AI helps scale attacks
A report by CrowdStrike shows cybercrime groups are outpacing security teams and increasingly abusing legitimate tools. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/threat-groups-record-speeds-ai-attacks/812965/
-
Anthropic Claims Chinese AI Firms ‘Distilled’ Claude to Train Their Models
Anthropic claims Chinese AI firms distilled Claude to train rival AI models, raising concerns about model extraction, security risks, and AI distillation abuse. First seen on hackread.com Jump to article: hackread.com/anthropic-china-ai-firms-distilled-claude-train-models/
-
Microsoft adds Copilot data controls to all storage locations
Microsoft is expanding data loss prevention (DLP) controls to block the Microsoft 365 Copilot AI assistant from processing confidential Word, Excel, and PowerPoint documents, regardless of their location. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-adds-copilot-data-controls-to-all-storage-locations/
-
Agent Commander von Veeam bringt Transparenz, Schutz und Kontrolle von KI in Echtzeit
Mit Agent Commander macht Veeam den nächsten großen Schritt in Richtung sichere, skalierbare KI. Unternehmen erhalten eine Plattform, die Datenresilienz, Sicherheit und KI-Governance vereint und das in Echtzeit. So wird KI nicht nur leistungsfähiger, sondern auch vertrauenswürdiger und kontrollierbarer. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/agent-commander-von-veeam-bringt-transparenz-schutz-und-kontrolle-von-ki-in-echtzeit/a43811/
-
Deepwatch® Expands SIEM-Agnostic Guardian MDR Platform with Support for Securonix®
Deepwatch Operationalizes Securonix with NEXAAgentic AI and 24/7 Elite SOC Palo Alto, CA”, February 24, 2026″, Deepwatch, the leader in Precision MDR powered by AI + humans, today announced native support for Securonix, a six-time Leader in the Gartner® Magic Quadrant for SIEM, within the Deepwatch Guardian MDR Platform. The integration operationalizes Securonix’s Unified Defense…
-
The Coming Regulatory Wave for AI Agents Their APIs
Tags: access, ai, api, attack, ciso, compliance, control, corporate, data, endpoint, finance, framework, governance, guide, infrastructure, leak, monitoring, regulation, risk, toolFor the past two years, the adoption of Generative AI has felt like a gold rush. Organizations raced to integrate Large Language Models and build autonomous agents to assist employees. They often bypassed standard governance processes in the name of speed and innovation. That era of unrestricted experimentation is rapidly drawing to a close. A…
-
In the AI era, CISOs worry about data leaks and doubt tech will solve skills gaps
CISOs see AI as necessary but insufficient and fraught with risks, a new report found. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/in-the-ai-era-cisos-worry-about-data-leaks-and-doubt-tech-will-solve-skill/812964/
-
Threat groups moving at record speeds, as AI helps scale attacks
A report by CrowdStrike shows cybercrime groups are outpacing security teams and increasingly abusing legitimate tools. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/threat-groups-record-speeds-ai-attacks/812965/
-
Navigating the Frontier: A Guide to Establishing AI Governance
Navigating the Frontier: A Guide to Establishing AI Governance 1. Build a Cross-Functional Foundation The first step in any governance program is defining who is responsible for what actions. AI impacts every corner of the business, so a siloed approach will fail. Assemble a Cross-Functional Team: Bring together stakeholders from Marketing, Product Development, Finance, HR,…The…
-
Autonomer KI-Agent für das Human-Risk-Management
KnowBe4 führt AIDA-Orchestration ein. Dabei handelt es sich um den achten KI-gestützten Agenten in der KnowBe4-Suite, bekannt als AIDA (Artificial-Intelligence-Defense-Agents). Der AIDA-Orchestration-Agent ist ein autonomes, KI-gestütztes System für das Human-Risk-Management. Er erstellt, plant und verwaltet unabhängig personalisierte Phishing-Sicherheitstests und Security-Awareness-Trainings auf Benutzerebene, die sich dynamisch an das Risikoprofil jeder Person anpassen. Dadurch entfallen manuelle Kampagnen,…
-
Veeam lanciert mit Agent-Commander die erste Lösung gegen agentenbasierte KI-Risiken in Unternehmen
Veeam Software, das Unternehmen für Daten- und KI-Sicherheit, hat Agent-Commander vorgestellt, die erste einheitliche Lösung, mit der Unternehmen KI-Risiken sicher erkennen, KI-Systeme schützen und KI-Fehler rückgängig machen können. So können Sicherheitsverantwortliche proaktiv auf Risiken im Zusammenhang mit KI reagieren und Agenten überall sicher skalieren. Agent-Commander ist die erste Integration seit der erfolgreichen Übernahme von Securiti…
-
Amazon: Low-Skill Hacker Used AI Tools to Breach FortiGate Devices Globally
Amazon says a Russian speaking low-skill hacker used AI tools to breach hundreds of FortiGate devices worldwide, showing how AI can scale cyberattacks with basic methods. First seen on hackread.com Jump to article: hackread.com/amazon-hacker-ai-tools-breach-fortigate-devices/
-
Forescout Launches VistaroAI to Help Security Teams Cut Through AI Hype and Act Faster on Real Threats
Forescout Technologies has today introduced Forescout VistaroAI, a new agentic AI capability designed to help security teams prioritize risks, reduce investigation time, and respond faster to cyber threats. Unlike traditional AI assistants that rely on prompts or chatbot interfaces, VistaroAI is built around pre-programmed security skills and role-based workflows. The system continuously analyzes changes across…
-
Identity-First AI Security: Why CISOs Must Add Intent to the Equation
AI agents now provision infrastructure and approve actions, but many inherit over-scoped privileges without proper governance. Token Security explains why CISOs must treat agents as identities and add intent-based controls so access is granted only when purpose and context align. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/identity-first-ai-security-why-cisos-must-add-intent-to-the-equation/
-
Microsoft expands Sovereign Cloud security with governance, local productivity and AI
Microsoft expands Microsoft Sovereign Cloud with new disconnected and AI capabilities that help organizations run critical infrastructure, productivity services and large AI … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/24/microsoft-sovereign-cloud-updates-ai-capabilities/
-
Threat Actors Exploit Weaponized AI to Seize Full Domain Access in Under 30 Minutes
Threat actors are rapidly weaponizing artificial intelligence to move from initial access to full domain compromise in under half an hour, leaving defenders with almost no room for error or delay. As enterprises adopt AI across development, identity, and cloud workflows, adversaries are abusing the same tools to script lateral movement, automate reconnaissance, and scale…
-
As Cybersecurity Firms Chase AI, VC Market Skyrockets
Investments in cybersecurity startups took off in 2025, as venture capital firms focused not just on AI-native tech, but talent as well. First seen on darkreading.com Jump to article: www.darkreading.com/cybersecurity-analytics/cybersecurity-firms-chase-ai-vc-market-skyrockets
-
More Than Dashboards: AI Decisions Must Be Provable
Tags: aiAI systems have to be able to show a record of what happened and how. First seen on darkreading.com Jump to article: www.darkreading.com/cyber-risk/more-dashboards-ai-decisions-provable
-
AI Accelerates Attacker Breakout Time to Just Four Minutes
Tags: aiReliaQuest claims AI has reduced breakout and exfiltration time to under 10 minutes First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/ai-accelerates-attack-breakout/
-
Shai-Hulud-style NPM worm hits CI pipelines and AI coding tools
Poisoning the AI developer interface: The campaign was specifically flagged for its direct targeting of AI coding assistants. The malware deploys a malicious Model Context Protocol (MCP) server and injects it into configurations of popular AI tools, embedding itself as a trusted component in the assistant’s environment.Once this is achieved, prompt-injection techniques can trick the…
-
Is AI Good for Democracy?
Politicians fixate on the global race for technological supremacy between US and China. They debate geopolitical implications of chip exports, latest model releases from each country, and military applications of AI. Someday, they believe, we might see advancements in AI tip the scales in a superpower conflict. But the most important arms race of the…