Tag: risk
-
500GB Stolen From Namibia Airports A Wake Up Call for Aviation Security
Airports are critical infrastructure hubs that manage sensitive operational, passenger, and logistics data. A breach in such environments does not just impact data privacy. It can introduce broader risks to national security and operational continuity. New reporting from Africa Press reveals that hackers have claimed a 500GB data breach involving the Namibia Airports Company, raising…
-
UK cyber chief urges ‘full court press’ to counter rising cyber threats
In a keynote speech at the RSA Conference, National Cyber Security Centre (NCSC) CEO Richard Horne said cyber risks are now “of greater consequence than ever before.” First seen on therecord.media Jump to article: therecord.media/uk-cyber-chief-urges-full-court-press-to-counter-risks
-
KI-Agenten zur sicheren Validierung von Sicherheitslücken und autonomer Behebung
Qualys hat ‘Agent Val” als Teil von ‘Enterprise TruRisk Management” (ETM) eingeführt. Agent-Val ermöglicht dem Risk-Operations-Center (ROC) eine sichere, agentengesteuerte Exploit-Validierung und autonome Risikobehebung. Agent-Val steht für einen grundlegenden Wandel im Schwachstellen- und Risikomanagement: weg von einer auf Annahmen basierenden Priorisierung, hin zu einer evidenzbasierten Umsetzung. Dies beschleunigt die Reaktion, reduziert unnötigen Aufwand und führt…
-
FCC targets foreign router imports amid rising cybersecurity concerns
The FCC will ban new foreign-made routers in the U.S. over security risks, unless approved by DHS or defense authorities. The U.S. FCC announced a ban on importing new foreign-made consumer routers, citing unacceptable cyber and national security risks. The decision, backed by Executive Branch assessments, means such devices can no longer be sold or…
-
US targets foreign-made routers as security concerns rise, but experts warn risks go further
The US Federal Communications Commission (FCC) has expanded its “Covered List” to include certain foreign-made consumer routers, a move that will block new models from receiving equipment authorisation and prevent them from being imported or sold in the United States. The decision reflects growing concern around supply chain security and the potential for foreign state…
-
CSA Launches CSAI Foundation for AI Security
Cloud Security Alliance creates dedicated nonprofit to govern autonomous AI agent ecosystems through risk intelligence and certification First seen on darkreading.com Jump to article: www.darkreading.com/cloud-security/csa-launches-csai-ai-security
-
ClawHub Vulnerability Lets Attackers Manipulate Rankings to Become Top Skill
Silverfort researchers recently uncovered a critical security flaw in ClawHub, the main public registry for the OpenClaw agent ecosystem. This vulnerability allowed attackers to artificially boost download numbers, pushing malicious code to the top of the search results. This created a massive supply chain risk that could allow threat actors to run dangerous code on…
-
AI is breaking traditional security models, Here’s where they fail first
AI triage redefines the security team’s role : As AI systems increasingly triage vulnerabilities with high confidence, security teams face a subtle but consequential shift in responsibility. People no longer debate whether AI can reduce noise. It demonstrably can. The harder question is which responsibilities remain with security teams once triage is automated. Are they accountable for…
-
FCC Bans New Foreign-Made Routers Over Supply Chain and Cyber Risk Concerns
The U.S. Federal Communications Commission (FCC) said on Monday that it was banning the import of new, foreign-made consumer routers, citing “unacceptable” risks to cyber and national security.The action was designed to safeguard Americans and the underlying communications networks the country relies on, FCC Chairman Brendan Carr said in a post on X. The development…
-
78% Security Leaders Highlight the Urgent Need to Rethink Cyber Risk in an AI-Driven World
e=4>Learn how Unified Insights helps leaders move from reactive to predictive operations with continuous monitoring and smarter decision-making First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/78-security-leaders-highlight-urgent-need-to-rethink-cyber-risk-in-ai-driven-a-31165
-
FCC Blocks New Foreign Consumer Router Models Citing Serious Security Risks
On March 23, 2026, the Federal Communications Commission (FCC) officially updated its Covered List to ban all new consumer-grade routers produced in foreign countries from receiving equipment authorisation. This regulatory action, driven by a White House-convened Executive Branch interagency determination, aims to mitigate severe cybersecurity risks and supply chain vulnerabilities threatening U.S. critical infrastructure. The…
-
Aqua Security’s Trivy Scanner Hit by Supply Chain Attack, Threatening Software Integrity
Tags: attack, cyber, github, malicious, open-source, risk, software, supply-chain, threat, vulnerabilityA sophisticated supply chain attack compromised Aqua Security’s popular open-source Trivy vulnerability scanner. Threat actors successfully distributed malicious code through the project’s GitHub Actions, targeting deployment pipelines to silently exfiltrate sensitive credentials. While Aqua’s commercial products remain completely unaffected, the incident highlights the severe risks of using mutable version tags in deployment automation. The attack…
-
How Quantum Threats Drive Encryption Changes
Alex Doll of Ten Eleven Ventures on Q-Day Risk Considerations. Quantum computing advances push security teams to replace encryption keys faster and adopt quantum-resistant algorithms. Investors and enterprises now treat Q-Day as a near-term risk, forcing changes in key management, PKI and cryptographic standards, says Alex Doll of Ten Eleven Ventures. First seen on govinfosecurity.com…
-
How ‘Secure by Demand’ Can Reset Cybersecurity
Lauren Zabierek of CAS Strategies on Addressing Incentives, Risk Gaps. Software risk continues to outpace public understanding as insecure defaults persist. Lauren Zabierek of CAS Strategies and the Institute for Security and Technology explains what drives weak security outcomes and how a “secure by demand” approach can push markets toward safer products. First seen on…
-
Vibe coding could reshape SaaS industry and add security risks, warns UK cyber agency
Britain’s National Cyber Security Centre warned that a rise in so-called “vibe coding” could reshape the software-as-a-service industry while introducing new cybersecurity risks if organizations fail to adapt. First seen on therecord.media Jump to article: therecord.media/vibe-coding-uk-security-risk
-
AI Takes Center Stage at RSAC Conference 2026
Real-World Deployment Shift, Governance and AI Investment Pressures a Focus at RSAC. Artificial intelligence dominated Day 1 of RSAC 2026, as security leaders shifted from experimentation to the hard realities of deploying and scaling AI in real-time production environments, facing investment risk and agent setbacks along the way, reports ISMG editors Mathew Schwartz and Michael…
-
US Bans New Foreign-Made Routers, Citing ‘Unacceptable’ Security Risks
The FCC bans new foreign-made routers over national security risks, a move that could reshape the US tech supply chain and impact pricing and availability. The post US Bans New Foreign-Made Routers, Citing ‘Unacceptable’ Security Risks appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-fcc-bans-foreign-made-routers-national-security/
-
FCC bans new routers made outside the USA over security risks
The Federal Communications Commission has updated its Covered List to include all consumer routers made in foreign countries, banning the sale of new models in the U.S. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/fcc-bans-new-routers-made-outside-the-usa-over-security-risks/
-
FCC bans new routers made outside the USA over security risks
The Federal Communications Commission has updated its Covered List to include all consumer routers made in foreign countries, banning the sale of new models in the U.S. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/fcc-bans-new-routers-made-outside-the-usa-over-security-risks/
-
US FCC Targets Foreign Routers in Supply-Chain Crackdown
New Rule Blocks Approval of Foreign Routers Without Federal Clearance. The FCC acted on a White House security determination and announced a block on new foreign-made routers from entering U.S. markets – unless vendors meet strict national security reviews, citing their role in state-linked cyber campaigns and risks to U.S. network edge infrastructure. First seen…
-
AI and Medical Device Cybersecurity: The Good and Bad
Is AI Exposing a Growing Vulnerability Risk Mitigation Gap?. AI-fueled tools can help to identify medical device vulnerabilities much faster and at a higher volume than more traditional tools. But can device manufacturers and healthcare delivery organizations keep up with prioritizing and addressing a tidal wave of newly discovered flaws? First seen on govinfosecurity.com Jump…
-
Critics call FCC router rule a ‘big swing’ that could create more supply chain uncertainty
The choice to ban all foreign-made routers instead of targeting known risks could create legal and supply chain disruptions with unclear national security returns. First seen on cyberscoop.com Jump to article: cyberscoop.com/fcc-bans-foreign-routers-critics-warn-about-supply-chain/
-
New ‘DarkSword’ Leak Puts Millions of iPhones at Risk After Initial Attack
A newer DarkSword exploit leak makes hacking outdated iPhones easier, exposing hundreds of millions of devices to risk. The post New ‘DarkSword’ Leak Puts Millions of iPhones at Risk After Initial Attack appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-darksword-leak-iphone-exploit-risk-after-initial-attack/
-
FCC bans foreign-made routers from US market over ‘unacceptable risk’
The Federal Communications Commission has banned all consumer routers produced outside of the U.S. from being imported unless their manufacturers obtain an exemption due to what the agency called an “unacceptable risk” to national security. First seen on therecord.media Jump to article: therecord.media/fcc-routers-banned-security-china
-
US government bans imported routers, raising tough questions
The US communications regulator has enacted a ban on all router hardware made outside America citing security concerns, but experts say the move may risk creating more issues than it solves First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366640628/US-government-bans-imported-routers-raising-tough-questions
-
EU AI Act Compliance Guide for CISOs GRC Leaders – Kovrr
Articles related to cyber risk quantification, cyber risk management, and cyber resilience. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/03/eu-ai-act-compliance-guide-for-cisos-grc-leaders-kovrr/
-
News: AI-native Security Assurance leads the GRC Transformation
Enterprise CISOs are being asked to do more than ever. Their role is now two-fold: protector of the business and enabler of its growth. They need to reduce risk across a vast and changing digital environment, protect the business, satisfy customers, and meet compliance requirements. What’s more, they want to showcase the positive impacts of…The…
-
Treasury asks whether terrorism risk insurance program should bolster cyber coverage
A Federal Register notice seeks public comment on how cyber is covered within a 2002 law and program. First seen on cyberscoop.com Jump to article: cyberscoop.com/treasury-asks-whether-terrorism-risk-insurance-program-should-bolster-cyber-coverage/
-
Treasury asks whether terrorism risk insurance program should bolster cyber coverage
A Federal Register notice seeks public comment on how cyber is covered within a 2002 law and program. First seen on cyberscoop.com Jump to article: cyberscoop.com/treasury-asks-whether-terrorism-risk-insurance-program-should-bolster-cyber-coverage/
-
Treasury asks whether terrorism risk insurance program should bolster cyber coverage
A Federal Register notice seeks public comment on how cyber is covered within a 2002 law and program. First seen on cyberscoop.com Jump to article: cyberscoop.com/treasury-asks-whether-terrorism-risk-insurance-program-should-bolster-cyber-coverage/