Google Chrome Extension is Intercepting Millions of Users’ AI Chats
A Chrome extension that promises security and privacy, has received good ratings from users and a “Featured” badge from Google,...
Spotlight
Veza Extends Reach to Secure and Govern AI Agents
Veza has added a platform to its portfolio that is specifically designed to secure and govern artificial intelligence (AI) agents...
Can a Transparent Piece of Plastic Win the Invisible War on Your Identity?
Identity systems hold modern life together, yet we barely notice them until they fail. Every time someone starts a new...
Hackers Steal Personal Data in 700Credit Breach Affecting 5.6 Million
A data breach at a company that offers credit reports, identity verification, and other services for about 18,000 auto dealerships...
OWASP Project Publishes List of Top Ten AI Agent Threats
The OWASP GenAI Security Project today published a top 10 list of the potential security threats that organizations are likely...
Nudge Security Extends Ability to Secure Data in the AI Era
Nudge Security today extended the scope of its namesake security and governance platform to monitor sensitive data shared via uploads...
Cloudflare Forces Widespread Outage to Mitigate Exploitation of Maximum Severity Vulnerability in React2Shell
Just hours after a maximum severity vulnerability in React2Shell was disclosed on December 3, Amazon threat intelligence teams observed active exploitation...
ShadyPanda Takes its Time to Weaponize Legitimate Extensions
ShadyPanda has been playing the long game. Over the last seven years, the group has been uploading malicious extensions on...
CrowdStrike Extends Scope of AWS Cybersecurity Alliance
CrowdStrike this week extended its alliance with Amazon Web Services (AWS) to automate configuration of its Falcon security information event...
AWS Adds Bevy of Tools and Capilities to Improve Cloud Security
Amazon Web Services (AWS) this week made an AWS Security Hub for analyzing cybersecurity data in near real time generally...
ShadyPanda’s Years-Long Browser Hack Infected 4.3 Million Users
A threat group dubbed ShadyPanda spent seven years uploading seemingly legitimate extensions into browser marketplaces, building trust among its growing...
ServiceNow to Acquire Identity Security Firm Veza
ServiceNow Inc. announced on Tuesday plans to acquire Veza in a move aimed at fortifying security for identity and access...
Cybersecurity Coalition to Government: Shutdown is Over, Get to Work
A cybersecurity industry group comprising almost two dozen tech heavyweights – including Google, Cisco, CrowdStrike, and Microsoft – are...
Radware Adds Firewall for LLMs to Security Portfolio
Radware has developed a firewall for large language models (LLMs) that ensures governance and security policies are enforced in...
Salesforce: Some Customer Data Accessed via Gainsight Breach
The highly publicized data breaches earlier this fall of Salesforce customers that was linked to Salesloft’s Drift application is...
