Security Week
A Former OpenAI Leader Says Safety Has ‘Taken a Backseat to Shiny Products’ at the AI Company
Jan Leike, who ran OpenAI’s “Super Alignment” team believes there should be more focus on preparing for the next generation of AI models, including on things like safety
The post A Former OpenAI Leader Says Safety Has ‘Taken a Backseat to Shiny Products’ at the AI Company appeared first on SecurityWeek.
User Outcry as Slack Scrapes Customer Data for AI Model Training
Slack reveals it has been training AI/ML models on customer data, including messages, files and usage information. It's opt-in by default.
The post User Outcry as Slack Scrapes Customer Data for AI Model Training appeared first on SecurityWeek.
In Other News: MediSecure Hack, Scattered Spider Targeted by FBI, New Wi-Fi Attack
Noteworthy stories that might have slipped under the radar: FBI is targeting Scattered Spider, Australia’s MediSecure hacked, new Wi-Fi attack.
The post In Other News: MediSecure Hack, Scattered Spider Targeted by FBI, New Wi-Fi Attack appeared first on SecurityWeek.
CISA Warns of Exploited Vulnerabilities in EOL D-Link Products
CISA has added two vulnerabilities in discontinued D-Link products to its KEV catalog, including a decade-old flaw.
The post CISA Warns of Exploited Vulnerabilities in EOL D-Link Products appeared first on SecurityWeek.
Critical Flaw in AI Python Package Can Lead to System and Data Compromise
A critical vulnerability tracked as CVE-2024-34359 and dubbed Llama Drama can allow hackers to target AI product developers.
The post Critical Flaw in AI Python Package Can Lead to System and Data Compromise appeared first on SecurityWeek.
New ‘Antidot’ Android Trojan Allows Cybercriminals to Hack Devices, Steal Data
The Antidot Android banking trojan snoops on users and steals their credentials, contacts, and SMS messages.
The post New ‘Antidot’ Android Trojan Allows Cybercriminals to Hack Devices, Steal Data appeared first on SecurityWeek.
Microsoft Quick Assist Tool Abused for Ransomware Delivery
The Black Basta group abuses remote connection tool Quick Assist in vishing attacks leading to ransomware deployment.
The post Microsoft Quick Assist Tool Abused for Ransomware Delivery appeared first on SecurityWeek.
Woman Accused of Helping North Korean IT Workers Infiltrate Hundreds of US Firms
The US government has announced charges, seizures, arrests and rewards as part of an effort to disrupt a scheme that generates revenue for North Korea.
The post Woman Accused of Helping North Korean IT Workers Infiltrate Hundreds of US Firms appeared first on SecurityWeek.
C/side Emerges From Stealth Mode With $1.7 Million Investment
C/side has emerged from stealth mode with $1.7 million in pre-seed funding from Scribble Ventures and angel investors
The post C/side Emerges From Stealth Mode With $1.7 Million Investment appeared first on SecurityWeek.
Alkira Raises $100 Million for Secure Network Infrastructure Platform
Network infrastructure as-a-service Alkira has raised $100 million in a Series C funding round led by Tiger Global Management.
The post Alkira Raises $100 Million for Secure Network Infrastructure Platform appeared first on SecurityWeek.
Legacy of Wisdom: Security Lessons Inspired by My Father
Honoring my father by translating his timeless life lessons into practical wisdom for the cybersecurity profession.
The post Legacy of Wisdom: Security Lessons Inspired by My Father appeared first on SecurityWeek.
Nissan Data Breach Impacts 53,000 Employees
Nissan North America determined recently that a ransomware attack launched last year resulted in employee personal information compromise.
The post Nissan Data Breach Impacts 53,000 Employees appeared first on SecurityWeek.
Android 15 Brings Improved Fraud and Malware Protections
Google is boosting fraud and malware protections in Android 15 with live threat detection and expanded restricted settings.
The post Android 15 Brings Improved Fraud and Malware Protections appeared first on SecurityWeek.
Personal Information Stolen in City of Wichita Ransomware Attack
The City of Wichita says files containing personal information were exfiltrated in a recent ransomware attack.
The post Personal Information Stolen in City of Wichita Ransomware Attack appeared first on SecurityWeek.
Palo Alto Networks Teams Up With IBM, Acquires QRadar SaaS Assets
Palo Alto Networks and IBM have announced a significant partnership to jointly provide cybersecurity solutions.
The post Palo Alto Networks Teams Up With IBM, Acquires QRadar SaaS Assets appeared first on SecurityWeek.
Third Chrome Zero-Day Patched by Google Within One Week
Google releases Chrome 125 to the stable channel with patches for nine vulnerabilities, including a zero-day.
The post Third Chrome Zero-Day Patched by Google Within One Week appeared first on SecurityWeek.
BreachForums Shut Down in Apparent Law Enforcement Operation
The hacking forum BreachForums is displaying a notice claiming that the website is under the control of the FBI.
The post BreachForums Shut Down in Apparent Law Enforcement Operation appeared first on SecurityWeek.
In First AI Dialogue, US Cites ‘Misuse’ of AI by China, Beijing Protests Washington’s Restrictions
China advocates for the United Nations to take a leading role in the global governance of AI, a move that could sideline the U.S.
The post In First AI Dialogue, US Cites ‘Misuse’ of AI by China, Beijing Protests Washington’s Restrictions appeared first on SecurityWeek.
Thoma Bravo-owned LogRhythm Announces Merger with Rival Exabeam
Financial terms were not released but the price tag is expected to be hefty with Exabeam’s most recent valuation pegged at $2.5 billion.
The post Thoma Bravo-owned LogRhythm Announces Merger with Rival Exabeam appeared first on SecurityWeek.
Threat Actors Abuse GitHub to Distribute Multiple Information Stealers
Russian-speaking threat actors are caught abusing a GitHub profile to distribute information stealers posing as legitimate software.
The post Threat Actors Abuse GitHub to Distribute Multiple Information Stealers appeared first on SecurityWeek.