Tag: network
-
Palo Alto Networks CEO sees AI as demand driver, not a threat
During a quarterly investor call, Nikesh Arora addressed growing concerns in the investment community that AI could hurt demand for cybersecurity. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/palo-alto-networks-ceo-sees-ai-as-demand-driver-not-a-threat/812585/
-
Threat groups use AI to speed up and scale cyberattacks
A report from Palo Alto Networks finds hackers are increasingly using stolen identities and exploiting critical vulnerabilities within minutes of disclosure. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/threat-groups-ai-speed-scale-cyberattacks/812439/
-
NDSS 2025 Defending Against Backdoor Attacks On Graph Neural Networks Via Discrepancy Learning
Tags: attack, backdoor, conference, defense, framework, Internet, ml, network, risk, technology, threat, vulnerabilitySession 12D: ML Backdoors Authors, Creators & Presenters: Hao Yu (National University of Defense Technology), Chuan Ma (Chongqing University), Xinhang Wan (National University of Defense Technology), Jun Wang (National University of Defense Technology), Tao Xiang (Chongqing University), Meng Shen (Beijing Institute of Technology, Beijing, China), Xinwang Liu (National University of Defense Technology) PAPER DShield: Defending…
-
Analysis: Palo Alto Networks Vs. Everyone
Palo Alto Networks and CEO Nikesh Arora have not taken their foot off the gas on their bold ‘platformization’ strategy, which has reverberated around the industry since it was introduced two years ago. First seen on crn.com Jump to article: www.crn.com/news/security/2026/analysis-palo-alto-networks-vs-everyone
-
Six flaws found hiding in OpenClaw’s plumbing
Following the data revealed the danger: To overcome the limitations of “traditional static analysis” tools that reportedly struggle with modern software stacks where inputs pass through numerous transformations before reaching risky operations, Endor Labs implemented the AI SAST approach, which, it claimed, maintains context across these transformations.This helped the researchers understand “not only where dangerous…
-
Six flaws found hiding in OpenClaw’s plumbing
Following the data revealed the danger: To overcome the limitations of “traditional static analysis” tools that reportedly struggle with modern software stacks where inputs pass through numerous transformations before reaching risky operations, Endor Labs implemented the AI SAST approach, which, it claimed, maintains context across these transformations.This helped the researchers understand “not only where dangerous…
-
Bug in widely used VoIP phones allows stealthy network footholds, call interception (CVE-2026-2329)
A critical security vulnerability (CVE-2026-2329) in Grandstream VoIP phones could let hackers remotely take full control of the devices and even intercept calls, Rapid7 … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/19/grandstream-voip-phones-vulnerability-cve-2026-2329/
-
Hackers can turn Grok, Copilot into covert commandcontrol channels, researchers warn
Tags: ai, automation, awareness, cloud, control, detection, framework, governance, hacker, identity, monitoring, network, risk, saas, toolSteps to take: Security leaders should not respond by blocking AI outright, analysts said, but by applying the same governance discipline used for other high-risk SaaS platforms.Varkey recommended starting with a comprehensive inventory of all AI tools in use and establishing a clear policy framework for approving and enabling them.Organizations should also implement AI-specific traffic…
-
Public mobile networks are being weaponized for combat drone operations
On June 1, 2025, Ukraine launched a coordinated drone strike on five airfields inside Russia, disabling or destroying aircrafts. The attack involved more than 100 drones … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/19/enea-mobile-connected-drones-report/
-
Public mobile networks are being weaponized for combat drone operations
On June 1, 2025, Ukraine launched a coordinated drone strike on five airfields inside Russia, disabling or destroying aircrafts. The attack involved more than 100 drones … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/19/enea-mobile-connected-drones-report/
-
Advantest Cyberattack Triggers Ransomware Investigation Across Internal Network
Advantest Corporation has confirmed that it is responding to a cybersecurity incident First seen on thecyberexpress.com Jump to article: thecyberexpress.com/advantest-cyberattack-ransomware-investigation/
-
Nigerian man sentenced to 8 years in prison for running phony tax refund scheme
Tags: networkMatthew Akande was living in Mexico when he and at least four co-conspirators broke into the networks of tax preparation firms and filed more than 1,000 fraudulent tax returns seeking tax refunds. First seen on cyberscoop.com Jump to article: cyberscoop.com/nigerian-matthew-akande-tax-refund-fraud/
-
From Firewall Management to Adaptive Security: What IDC’s 2026 Report Means for Security Leaders
Last year, IDC called firewall policy management a foundation organizations could no longer ignore. This year, the message is more direct. In its 2026 report, Building on Enforcement: Network Security… First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/02/from-firewall-management-to-adaptive-security-what-idcs-2026-report-means-for-security-leaders/
-
Notepad++ author says fixes make update mechanism ‘effectively unexploitable’
Tags: access, attack, backdoor, china, control, credentials, dns, espionage, exploit, group, infrastructure, intelligence, malicious, monitoring, network, risk, risk-management, service, software, supply-chain, threat, ukraine, update, vulnerabilityCSOonline, Ho said that no system can ever be declared absolutely unbreakable, “but the new design dramatically raises the bar.”An attacker must now compromise both the hosting infrastructure and the signing keys, he explained, adding that the updater now validates both the manifest and the installer, each with independent cryptographic signatures. And any mismatch, missing…
-
Chronosphere Deal Signals Security-Observability Convergence
Founder, CEO Martin Mao: AI-Driven Remediation, Data Optimization at Core of Deal. Palo Alto Networks’ acquisition of Chronosphere will help unify observability and security operations. The integration with Cortex AgentiX and Cortex XSIAM aims to automate remediation, optimize telemetry pipelines and help enterprises manage soaring data volumes from cloud-native and AI workloads. First seen on…
-
Koi Purchase Bolsters Palo Alto’s AI Attack Surface Defense
$300M Acquisition Strengthens Palo Alto Networks’ XDR and AI Governance Platform. Palo Alto Networks plans to acquire Koi Security for $300 million to address growing AI-driven endpoint risks. The startup’s technology adds deep visibility into AI agents plug-ins and nonbinary code, enhancing Cortex XDR and Prisma AIRS as enterprises confront a growing unmanaged AI attack…
-
Chinese hackers exploited zero-day Dell RecoverPoint flaw for 1.5 years
Pivot techniques: In addition to the payloads themselves, the investigation also revealed new techniques. For example, the legitimate shell script convert_hosts.sh that exists on these appliances has been modified to include the path of the backdoors to achieve persistence.The SLAYSTYLE web shell, which is designed to receive commands over HTTP and execute them on the…
-
Palo Alto Networks Moves to Secure Agentic Endpoints with Koi Deal
Palo Alto Networks has agreed to acquire Israeli startup Koi Security, marking a timely strategic push to confront the risks of AI agents operating inside corporate systems with broad access to data yet limited oversight. Palo Alto Networks plans to integrate Koi’s technology, known as Agentic Endpoint Security, into its Prisma AIRS AI security platform..…
-
NDSS 2025 Try to Poison My Deep Learning Data? Nowhere To Hide Your Trajectory Spectrum!
Session 12D: ML Backdoors Authors, Creators & Presenters: Yansong Gao (The University of Western Australia), Huaibing Peng (Nanjing University of Science and Technology), Hua Ma (CSIRO’s Data61), Zhi Zhang (The University of Western Australia), Shuo Wang (Shanghai Jiao Tong University), Rayne Holland (CSIRO’s Data61), Anmin Fu (Nanjing University of Science and Technology), Minhui Xue (CSIRO’s…
-
Securing our Critical Infrastructure with Zero Trust
We are seeing a steady rise in cyberattacks against critical infrastructure and it’s not surprising. Many of these systems rely on legacy software riddled with known vulnerabilities. When these systems fail, the impact moves quickly from networks to operations, and from operations to public safety. There is still a dangerous misconception that operational technology (OT)……
-
NDSS 2025 CLIBE: Detecting Dynamic Backdoors In Transformer-based NLP Models
Session 12D: ML Backdoors Authors, Creators & Presenters: Rui Zeng (Zhejiang University), Xi Chen (Zhejiang University), Yuwen Pu (Zhejiang University), Xuhong Zhang (Zhejiang University), Tianyu Du (Zhejiang University), Shouling Ji (Zhejiang University) PAPER CLIBE: Detecting Dynamic Backdoors in Transformer-based NLP Models Backdoors can be injected into NLP models to induce misbehavior when the input text…
-
Threat groups using AI to speed up and scale cyberattacks
A report from Palo Alto Networks finds hackers are increasingly using stolen identities and exploiting critical vulnerabilities within minutes of disclosure. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/threat-groups-ai-speed-scale-cyberattacks/812439/
-
Palo Alto Networks CEO: AI Won’t Replace Security Tools ‘Any Time Soon’
Investor fears that AI poses more of a risk than an opportunity for cybersecurity vendors are unfounded, with LLMs unlikely to become capable of displacing security products in the foreseeable future, Palo Alto Networks CEO Nikesh Arora said Tuesday. First seen on crn.com Jump to article: www.crn.com/news/security/2026/palo-alto-networks-ceo-ai-won-t-replace-security-tools-any-time-soon
-
Poland bans Chinese-made cars from entering military sites
The instruction to commanders to keep affected cars outside of secured perimeters comes amid growing concerns over motor vehicle network equipment and supply chains that routinely record location and other data. First seen on therecord.media Jump to article: therecord.media/poland-bans-chinese-made-cars-from-military-sites
-
Keenadu: Android malware that comes preinstalled and can’t be removed by users
Embedded in core system apps: Keenadu can control legitimate system applications on affected devices. Kaspersky observed it inside critical components such as face unlock applications, raising the possibility that attackers could access biometric data. The malware was also found operating within the home screen app that controls the device’s primary interface.The researchers warned that the…
-
Critical Ivanti EPMM Zero-Day Vulnerabilities Exploited in the Wild, Targeting Corporate Networks
Tags: control, corporate, cve, cyber, data-breach, endpoint, exploit, ivanti, mobile, network, remote-code-execution, vulnerability, zero-dayTwo critical zero-day vulnerabilities in Ivanti Endpoint Manager Mobile (EPMM), tracked as CVE-2026-1281 and CVE-2026-1340, are being actively exploited to compromise enterprise mobile fleets and corporate networks. Both are remote code execution (RCE) vulnerabilities that allow unauthenticated attackers to run arbitrary commands on exposed EPMM servers, effectively giving them full control of the mobile device…
-
Top Security Incidents of 2025: Chrome Browser 0-Day Vulnerability Exploitation
Tags: apt, attack, browser, chrome, control, cyber, cybersecurity, exploit, google, group, network, security-incident, vulnerability, windows, zero-dayBackground In March 2025, cybersecurity researchers disclosed a highly sophisticated targeted attack campaign named “Operation ForumTroll.” Orchestrated by an unidentified state-sponsored APT group, the operation leveraged a Google Chrome 0-day vulnerability (CVE-2025-2783) as its core weapon. This vulnerability enabled sandbox escape, allowing arbitrary code execution on victims’ Windows systems and granting full control over the targeted…The…
-
A new approach for GenAI risk protection
Solution 1: GenAI enterprise model: Implement enterprise licenses for approved GenAI solutions (such as ChatGPT Enterprise or Microsoft CoPilot 365, which is integrated into existing O365 tenants). Enterprise GenAI solutions typically include a robust set of built-in security tools that allow organizations to secure their data and implement DLP controls within the enterprise GenAI solution…
-
Palo Alto Networks to Acquire Koi Security for Enhanced Agentic Endpoint Security
Palo Alto Networks announced on February 17, 2026, that it has entered a definitive agreement to acquire Koi Security, a pioneer in Agentic Endpoint Security. The acquisition aims to address a critical security gap created by AI agents and tools that operate with extensive permissions and data access while bypassing traditional security controls. AI agents…
-
China remains embedded in US energy networks ‘for the purpose of taking it down’
Plus 3 new goon squads targeted critical infrastructure last year First seen on theregister.com Jump to article: www.theregister.com/2026/02/17/volt_typhoon_dragos/