Tag: business
-
OpenAI acquires Promptfoo to secure its AI agents
This deal underscores how frontier labs are scrambling to prove their technology can be used safely in critical business operations. First seen on techcrunch.com Jump to article: techcrunch.com/2026/03/09/openai-acquires-promptfoo-to-secure-its-ai-agents/
-
What is zero trust security in SaaS applications? A practical implementation guide
Zero trust used to sound like yet another security buzzword. In SaaS environments, it has turned into something far more practical: a way to keep your business moving fast without assuming that anything or anyone is safe just because they are “inside” your systems. Zero trust in SaaS is about treating every login, every device,…The…
-
OpenAI says Codex Security found 11,000 high-impact bugs in a month
From the ‘Aardvark’ experiment to an AI security researcher: Codex Security evolved from an earlier internal project called Aardvark, an AI-powered vulnerability research agent that OpenAI began testing with select users. The concept behind Aardvark was to have the AI agent read code, test possible exploit paths, and reason through how an attacker might compromise…
-
Can the Security Platform Finally Deliver for the Mid-Market?
Mid-market organizations are constantly striving to achieve security levels on a par with their enterprise peers. With heightened awareness of supply chain attacks, your customers and business partners are defining the security level you must meet.What if you could be the enabler for your organization to remain competitive, and help win business, by easily demonstrating…
-
More AI tools, more burnout! New research explains why
Workflows built around multiple AI agents and constant tool switching are adding cognitive strain across large enterprises. A recent Harvard Business Review analysis describes … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/03/09/harvard-business-review-ai-workplace-fatigue-report/
-
OpenAI Codex Security Scanned 1.2 Million Commits and Found 10,561 High-Severity Issues
OpenAI on Friday began rolling out Codex Security, an artificial intelligence (AI)-powered security agent that’s designed to find, validate, and propose fixes for vulnerabilities.The feature is available in a research preview to ChatGPT Pro, Enterprise, Business, and Edu customers via the Codex web with free usage for the next month.”It builds deep context about your…
-
AI Auditability: Why Leaders Must Prove How AI Makes Decisions
AI Auditability: Why Leaders Must Prove How AI Makes Decisions We’ve officially entered the “production phase” of Artificial Intelligence. In just a few short years, AI has moved from experimental pilots to being embedded in nearly every major business function”, by some estimates, used regularly by 88% of organizations. But there is a growing, uncomfortable…
-
AI Auditability: Why Leaders Must Prove How AI Makes Decisions
AI Auditability: Why Leaders Must Prove How AI Makes Decisions We’ve officially entered the “production phase” of Artificial Intelligence. In just a few short years, AI has moved from experimental pilots to being embedded in nearly every major business function”, by some estimates, used regularly by 88% of organizations. But there is a growing, uncomfortable…
-
Can AI-driven security solutions fit small business budgets
Are Non-Human Identities the Missing Piece in Your Cybersecurity Strategy? What Are Non-Human Identities, and Why Are They Important? Have you ever considered the security implications of the digital identities and credentials your machines hold? The rise of Non-Human Identities (NHIs) is reshaping cybersecurity. These machine identities serve as essential components for securing modern digital……
-
TDL – Defense Before Offense: Leadership, Risk, and the Cost of Bad Decisions – Steven Elliott
From the Battlefield to the Boardroom: Lessons in Defense In the latest episode of The Defender’s Log, host David Redekop sits down with Steven Elliott, CFO of Adam Networks, to explore the surprising parallels between military operations, financial management, and cybersecurity. A Journey of Unpredictable Paths Elliott’s background is anything but linear. From a small…
-
5 Actions Critical for Cybersecurity Leadership During International Conflicts
Tags: attack, backup, business, cloud, corporate, cyber, cybersecurity, data, exploit, government, incident response, infrastructure, international, iran, middle-east, military, network, resilience, risk, risk-assessment, russia, saas, service, supply-chain, technology, threat, ukraine, update, vulnerability, warfareThe recent military attacks involving Iran in the Middle East are a stark reminder that cybersecurity leadership must continually incorporate geopolitical risk into their enterprise cyber risk posture and preparedness. Every crisis that elevates to military engagements between cyber-active participants, changes the risk landscape of businesses, for people, operations, and data. This includes the…
-
Only 30 minutes per quarter on cyber risk: Why CISO-board conversations are falling short
Boards want more forward-looking insights: The report also suggests that board-CISO communication doesn’t dive as deeply into details as it should in these days of ever more sophisticated, AI-driven cyberattacks.The majority of board directors (82%) say their security leaders’ reporting on regulatory trends was satisfactory or excellent, and that they had strong visibility into program…
-
What is AI Security? Top Security Risks in LLM Applications
Artificial Intelligence is turning out to be the non-negotiable in everyday enterprise infrastructure AI chatbots in customer service, copilots assisting developers, and many more. LLMs, the abbreviated form of Large Language Models, are now embedded across business workflows. Organizations are using AI to simplify work by incorporating it in analyzing documents, automating communication, writing… First…
-
The MSP Guide to Using AI-Powered Risk Management to Scale Cybersecurity
Scaling cybersecurity services as an MSP or MSSP requires technical expertise and a business model that delivers measurable value at scale.Risk-based cybersecurity is the foundation of that model. When done right, it builds client trust, increases upsell opportunities, and drives recurring revenue. But to deliver this consistently and efficiently, you need the right technology and…
-
What is Managed PKI? Benefits of Managed PKI Services for Enterprises
It’s 3:00 AM on a Saturday. Your main customer channel, the one that brings 80 percent of the business, is dead. The routers are checked by the network team. Fine. The development team reverses the most recent code. Still down. Lastly, the sysadmin is a bleary-eyed individual who inspects his browser console and identifies theRead…
-
Ghanain man pleads guilty to role in $100 million fraud ring
A Ghanaian national pleaded guilty to his role in a massive fraud ring that stole over $100 million from victims across the United States through business email compromise attacks and romance scams. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/ghanain-man-pleads-guilty-to-role-in-100-million-fraud-ring/
-
Teenage hacker myth primed for a middle-age criminal makeover
Tags: access, breach, business, corporate, crypto, cyber, cybercrime, cybersecurity, data, detection, extortion, finance, group, hacker, hacking, infrastructure, jobs, malware, network, penetration-testing, programming, ransomware, service, skills, software, technology, threat, vulnerabilityCybercrime cartels: Dray Agha, senior security operations manager at managed detection and response services firm Huntress, said the analysis illustrates that the “Hollywood image of a teenage lone wolf hacking for bragging rights” is vastly outdated since the threat landscape is dominated by “highly organised, profit-driven syndicates.””While young people may still engage in digital vandalism…
-
Zero-day exploits hit enterprises faster and harder
Tags: access, apple, attack, backdoor, business, china, cisco, cve, data, detection, endpoint, espionage, exploit, firewall, flaw, fortinet, google, group, hacker, infrastructure, ivanti, least-privilege, mobile, network, oracle, radius, ransomware, risk, router, russia, service, software, technology, threat, update, vpn, vulnerability, zero-dayEnterprise environments under siege: Chinese threat actors continued to display a preference for targets that are difficult to monitor and allow persistent access to strategic networks. Notable examples include the groups that GTIG tracks as UNC5221, which exploited a flaw in Ivanti Connect Secure (CVE-2025-0282) and UNC3886, which exploited a vulnerability in Juniper routers (CVE-2025-21590).Another…
-
Backup strategies are working, and ransomware gangs are responding with data theft
Business email compromise (BEC) and funds transfer fraud combined for 58% of all cyber insurance claims filed in 2025, according to data from Coalition covering more than … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/03/06/cyber-claims-report-ransomware-gangs-data-theft/
-
Audit Readiness Assessments Demystified: Importance and Relevance for Your Business
Key Takeaways Organizations often think about audits only when a certification deadline approaches or when an auditor sends a long list of document requests. At that point, teams begin searching for policies, screenshots, and logs that prove controls are operating correctly. An audit readiness assessment changes that dynamic. Proactively, organizations evaluate their status ahead of……
-
Microsoft, Europol disrupt global phishing platform Tycoon 2FA
The service helped cybercriminals bypass multifactor authentication and led to business email compromise and ransomware. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/microsoft-europol-disrupt-phishing-tycoon-2fa/813904/
-
AI-Driven Insider Risk Now a “Critical Business Threat,” Report Warns
Malicious insiders are using misusing AI for nefarious gain, while employees cutting corners also creates risk, warns Mimecast First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/ai-insider-risk-critical-business/
-
Should Cloud Be Classed as Critical Infrastructure?
Tags: access, authentication, banking, breach, business, cloud, compliance, computing, container, control, cyber, cybersecurity, data, dora, encryption, fido, finance, framework, governance, Hardware, healthcare, identity, incident, infrastructure, mfa, network, nis-2, radius, regulation, resilience, risk, saas, service, strategy, supply-chain, technologyShould Cloud Be Classed as Critical Infrastructure? madhav Thu, 03/05/2026 – 09:53 Over the past few years, large-scale cloud outages have demonstrated just how deeply digital services are woven into the fabric of modern society. When widely used cloud platforms experience disruption, the impact extends far beyond individual applications; banking services stall, transport systems falter,…
-
Is investing in advanced AI cybersecurity justified
Are You Safeguarding Your Business With Non-Human Identities? Have you ever wondered how secure your organization’s systems are against non-human threats? Where the interaction between machines and systems is increasing, Non-Human Identities (NHIs) have become a critical focus for cybersecurity. These machine identities are pivotal in managing cybersecurity risks, especially where companies increasingly operate in……
-
Hiscout und Bearingpoint stärken gemeinsam die Resilienz der öffentlichen Verwaltung
Hiscout, ein führender Anbieter integrierter GRC-Softwarelösungen, baut sein Partnernetzwerk weiter aus und arbeitet ab sofort strategisch mit der Management- und Technologieberatung Bearingpoint zusammen. Ziel der Partnerschaft ist es, Organisationen der öffentlichen Hand bei Informationssicherheit, Business-Continuity-Management (BCM), Datenschutz und Compliance noch umfassender und praxisnaher zu unterstützen. Im Fokus der Zusammenarbeit steht die Weiterentwicklung und Stärkung der…
-
How to know you’re a real-deal CSO, and whether that job opening truly seeks one
Tags: access, ai, breach, business, communications, compliance, control, cyber, data, data-breach, finance, framework, governance, incident response, infosec, insurance, jobs, metric, privacy, radius, risk, skills, strategy, threat, training, vulnerabilityStriking the right balance of experience and responsibility: Mark G. McCreary, partner and chief AI and IT security officer at Boston-based legal firm Fox Rothschild LLP, has seen both extremes: security being completely sidelined and security professionals given excessive, unjustified authority.In some firms, a newly appointed CSO might be positioned as a gatekeeper without the…

