Technology

#198 - AI risk and safety with John Vaina, AI Researcher & Red Teamer

Mar 11, 2025 By LimaCharlie In LimaCharlie

On this episode of The Cybersecurity Defenders Podcast we talk with John Vaina, AI Researcher and Red Teamer, about AI risk and safety. John is an expert in AI risk, safety, and security. John currently works as an AI red team operator, tackling some of the most complex challenges in the field. His work spans traditional cybersecurity concerns, such as identifying vulnerabilities in AI systems, to cutting-edge tasks like testing for emergent behaviors and conducting AI alignment and safety audits.

View Video

LimaCharlie

Read more about #198 - AI risk and safety with John Vaina, AI Researcher & Red Teamer

AI Data Loops: Why Machines Are Eating Their Own Mistakes

Mar 11, 2025 By Razorthorn In Razorthorn

Bad data leads to bad AI. Discover how AI systems are feeding on flawed datasets, causing self-perpetuating errors and policy loopholes that force users into auto-opt-ins.

View Video

Razorthorn

AI
Security

Read more about AI Data Loops: Why Machines Are Eating Their Own Mistakes

AI Code Generation: Code Security & Quality, Benefits, Risks & Top Tools

Mar 11, 2025 By Stephen Thoemmes In Snyk

AI code generation is exactly what it sounds like — using artificial intelligence to write and improve code. Tools powered by large language models (LLMs) and specialized AI systems can help developers generate boilerplate code, fix bugs, and even refactor entire sections of an application. And developers are leaning in. According to a GitHub survey, 92% of developers have already used AI coding tools at work or on personal projects.

Read Post

Snyk

Read more about AI Code Generation: Code Security & Quality, Benefits, Risks & Top Tools

Bringing Shadow and Zombie APIs to Light

Mar 11, 2025 By Michael Callahan In Salt Security

Application Programming Interfaces (APIs) have revolutionized connectivity and data sharing, but their pervasiveness has also created a new set of cybersecurity challenges. As businesses continually expand and update their applications, they often overlook APIs left behind by developers — shadow and zombie APIs — that continue to operate undetected. These abandoned APIs become silent risks, operating in the background, unknown to most security teams, and they can pose serious security threats.

Read Post

Salt Security

Read more about Bringing Shadow and Zombie APIs to Light

Cato CTRL Threat Research: Ballista - New IoT Botnet Targeting Thousands of TP-Link Archer Routers

Mar 11, 2025 By Matan Mittelman In Cato Networks

Over the years, major IoT botnets like Mirai and Mozi have proven how easily routers can be exploited and threat actors have taken note. Two key issues have played in their favor: the fact that users rarely deploy new firmware to their routers, coupled with the lack of regard for security by router vendors. As a result, router vulnerabilities may persist in the wild for much longer than initially expected, even after patches are published publicly.

Read Post

Cato Networks

Read more about Cato CTRL Threat Research: Ballista - New IoT Botnet Targeting Thousands of TP-Link Archer Routers

Jit + Google Cloud: Strengthening Cloud Security with CSPM and Google Chronicle Integration

Mar 11, 2025 By Jit Team In Jit

We’re excited to announce our deepening partnership with Google Cloud, marked by two major milestones: Jit has received the “New Customer Acquisition” award from GCP Israel—recognizing our success in helping businesses enhance their cloud security on Google Cloud.

Read Post

Jit

Read more about Jit + Google Cloud: Strengthening Cloud Security with CSPM and Google Chronicle Integration

DANGER: Phishing messages

Mar 11, 2025 By Cloudflare In Cloudflare

DANGER: Phishing messages are easier than ever for someone to make and send, thanks to the likes of GenAI. That’s what Mostafa Hassanin, Group CISO at SMG, told our host Mark Dembo on this episode of The Connectivity Cloud Podcast. The pair, along with Cloudflare’s VP of Emerging Tech and Incubation, Sam Rhea, discussed the challenges of weaponized AI threats, alongside other real-life impacts of AI on enterprise security and operations.

View Video

Cloudflare

Read more about DANGER: Phishing messages

How to Protect Your Cloud from Costly Breaches?

Mar 10, 2025 By Fidelis Security In Fidelis Security

In 2024, businesses lost an average of $4.88 million per cloud breach. Are you prepared? Discover how Fidelis Halo, an all-in-one cloud security platform, helps protect your data, applications, and resources from evolving cyber threats. From preventing data leaks, locking down APIs, and blocking insider threats, Halo ensures your cloud infrastructure stays secure—without chaos. Complete CNAPP Solution (CWPP, CSPM, Container Security) Automated threat responses for instant protection Real-time monitoring to eliminate blind spots.

View Video

Fidelis Security

Read more about How to Protect Your Cloud from Costly Breaches?

API Security Failures: What Went Wrong at Dell & Twilio? #APIBreach #DataLeak #DellHack

Mar 10, 2025 By Wallarm In Wallarm

Major companies like Dell and Twilio suffered API breaches due to poor validation, broken access control, and missing rate limits. Dell’s 49M records were exposed at 5000 requests per minute, while Twilio’s API leak allowed attackers to validate accounts. Learn how insecure API views lead to massive data breaches—and how to protect your APIs.

View Video

Wallarm

API
Security

Read more about API Security Failures: What Went Wrong at Dell & Twilio? #APIBreach #DataLeak #DellHack

AI's Future: Can We Prevent Another Facebook Data Crisis?

Mar 10, 2025 By Razorthorn In Razorthorn

If we had fought for data rights 20 years ago, would AI be different today? Learn how current lawsuits and privacy debates are shaping the future of AI data ethics.

View Video