Technology

Using AI to Build Apps & Automations: Top Cybersecurity Concerns

May 18, 2024 By Andrew Silberman In Zenity

With the democratization of application development, users can now quickly create powerful applications without deep coding skills using AI copilots and low-code/no-code development tools. However, this ease of use can also introduce vulnerabilities, especially since many new developers aren’t well-versed in low-code application security best practices.

Read Post

Zenity

Read more about Using AI to Build Apps & Automations: Top Cybersecurity Concerns

The Dell API Breach: It could have been prevented

May 17, 2024 By Hadar Freehling In Salt Security

As you may have seen in the news, a hacker stole 49 million customer records from Dell. The attack wasn’t novel or sophisticated. Instead, the attacker used a business logic flaw and an API to scrape 49 million records from Dell. How did they do it? Here is the attack flow. The attacker registered for an account within the Dell ecosystem to be a reseller/partner. They weren’t going to be. But Dell didn’t perform any checks, and within 48 hours, the attacker had a valid account.

Read Post

Salt Security

Read more about The Dell API Breach: It could have been prevented

Two new checks for the ChatGPT macOS app

May 17, 2024 By Fritz Ifert-Miller In 1Password

With the recent announcement of OpenAI’s ChatGPT desktop application for macOS, users gain access to LLM workflows outside of their browser. ChatGPT’s broad adoption by employees across industries, and around the world, has put employers, compliance, and security teams into high gear as they seek to balance the gains made in productivity with the potential risks of how these tools are being used.

Read Post

1Password

Read more about Two new checks for the ChatGPT macOS app

Unlocking AI Ethics: The Brivo Approach to Transparency and Safety

May 17, 2024 By Brivo In Brivo

In today's rapidly evolving digital landscape, the integration of artificial intelligence (AI) into our daily lives and businesses is inevitable. At Brivo, we're at the forefront of marrying technology with ethics, ensuring that our smart spaces and access control solutions are not just innovative but also transparent and safe. In this video, we dive deep into the importance of transparency in AI usage, highlighting how it forms the backbone of ethical AI practices.

View Video

Brivo

Read more about Unlocking AI Ethics: The Brivo Approach to Transparency and Safety

How to Protect Your Cloud Assets from Being Cryptojacked

May 17, 2024 By Panoptica In Panoptica

Cryptojacking attacks have become the most prevalent type of attack on cloud native infrastructures. For example, in 2022, there were 139M cryptojacking attacks, but the following year there were over 1 billion! That translates to nearly 3M cryptojacking attacks every day, on average in 2023.

View Video

Panoptica

Read more about How to Protect Your Cloud Assets from Being Cryptojacked

Smartphones: The Usual Suspects in Car Accident Cases

May 17, 2024 By SecuritySenses In SecuritySenses

Smartphones have become such an integral part of our way of life that we cannot seem to do anything without them. We're always chatting, answering calls, going through social media, etc., and the most dangerous part is that we even do these things while driving. Such an action can be categorized as distracted driving, which is engaging in other activities as a driver that distract you from paying attention to the road.

Read Post

SecuritySenses

Read more about Smartphones: The Usual Suspects in Car Accident Cases

How to Protect Your Business From API Data Leaks

May 16, 2024 By Panoptica In Panoptica

Application Programming Interfaces (APIs) are rapidly becoming the primary attack vector for cloud native applications. In fact, according to one study, 92% of organizations have already experienced a security incident resulting from insecure APIs. This is because loosely coupled microservices predominantly intercommunicate via APIs. In this video, we will analyze a ‘ripped from the headlines’ case-study example of data leakage via insecure APIs. Then we will examine various API vulnerabilities that can be exploited by attackers to enable data leaks, including Broken User Authentication (BUA), Broken Object Level Authentication (BOLA), and Broken Function-Level Authentication (BFLA).

View Video

Panoptica

Read more about How to Protect Your Business From API Data Leaks

Cyber Threat Intelligence News: Data Breach, Ransomware Trends, and Emerging AI Threats

May 16, 2024 By CYJAX In CYJAX

View Video

CYJAX

Read more about Cyber Threat Intelligence News: Data Breach, Ransomware Trends, and Emerging AI Threats

Vanta's approach to AI Risk & Secure Code Training

May 16, 2024 By Vanta In Vanta

We’re excited to share that we've expanded Vanta’s security and privacy training library with additional training modules, including AI Risk, Secure Coding, Insider Threat, and Social Engineering.

Read Post

Vanta

Read more about Vanta's approach to AI Risk & Secure Code Training

Cloud Security and Compliance: A Smarter Approach to Keeping Your Head Above Water

May 16, 2024 By Rayna Stamboliyska In Sysdig

When it comes to cloud security and compliance, it’s easy to feel like you’re drowning in a sea of regulations and requirements. But don’t worry; we’re all in the same boat! That’s why we’re thrilled to share our latest point-of-view (POV) paper, “Practical Cloud Security in the Era of Cybersecurity Regulation,” which is crafted with our deep industry expertise and experience.

Read Post