Category: Spotlight

Auto Added by WPeMatico

attacks on online retailers, Cloud Security, Cybersecurity, Data Security, DragonForce, Featured, Global Security News, Incident Response, Industry Spotlight, malware, Network Security, News, Ransomware, Scattered Spider, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threat Intelligence, Threats & Breaches

Victoria’s Secret Hit By ‘Security Incident’ After Attacks on UK Retailers

May 29, 2025

Victoria’s Secret took down its U.S. website this week after an unspecified security incident that cybersecurity experts believe is related to similar attacks on UK retailers earlier this month by the high-profile threat group Scattered Spider, which appears to be deploying the DragonForce ransomware in the campaign. The post Victoria’s Secret Hit By ‘Security Incident’…

Survey Surfaces Scope of Identity and Access Management Challenges

May 29, 2025

A survey of 625 IT and IT security professionals in the U.S. published today finds only half (50%) consider the investments made in identity and access management (IAM) tools to be effective. Conducted by the Ponemon Institute on behalf of GuidePoint Security, a provider of cybersecurity services, the survey also finds only 44% have high..…

Scientists Use AI Chatbots to Carry Encrypted Messages Undetectable by Cybersecurity Systems

May 29, 2025

The world has a long history of hiding messages in plain sight. My own crude attempts as a kid included hours spent inserting code words and number sequences into notes and messages to avoid detection by parents, teachers and other kids. And occasionally whipping out my Batman decoder ring to figure out messages being hidden..…

Microsoft Opens Windows Update to 3rd-Party Apps

May 29, 2025

A breath of fresh air: Security fixes and other updates will be “orchestrated” by Redmond’s own update tool. The post Microsoft Opens Windows Update to 3rd-Party Apps appeared first on Security Boulevard.

AI is a Ticking Time Bomb for Your Data, Reveals New Report From Varonis

May 29, 2025

A new report from Varonis examines nearly 10 billion files and suggests that AI is a ticking time bomb for your data. The post AI is a Ticking Time Bomb for Your Data, Reveals New Report From Varonis appeared first on Security Boulevard.

FTC Orders GoDaddy to Bolster Its Security After Years of Attacks

May 28, 2025

Web hosting giant GoDaddy for years has mislead customers about the strength of its security program, but after a series of data breaches, the FTC is ordering the company to implements robust defenses and stop lying about its cybersecurity capabilities. The post FTC Orders GoDaddy to Bolster Its Security After Years of Attacks appeared first…

Mental Denial of Service: Narrative Malware and the Future of Resilience

May 28, 2025

Mental denial of service (DOS) is the manipulative content that hijacks the cognitive processing of individuals and institutions. The post Mental Denial of Service: Narrative Malware and the Future of Resilience appeared first on Security Boulevard.

RSA and Bitcoin at BIG Risk from Quantum Compute

May 27, 2025

PQC PDQ: Researchers find we’ll need 20 times fewer qubits to break conventional encryption than previously believed. The post RSA and Bitcoin at BIG Risk from Quantum Compute appeared first on Security Boulevard.

Unsophisticated Actors, Poor Hygiene Prompt CI Alert for Oil & Gas

May 27, 2025

An alert from CISA, FBI, EPA and DOE came after CISA observed attacks by “unsophisticated” cyber actors leveraging “basic and elementary intrusion techniques” against ICS/SCADA systems. The post Unsophisticated Actors, Poor Hygiene Prompt CI Alert for Oil & Gas appeared first on Security Boulevard.

U.S. Authorities Seize DanaBot Malware Operation, Indict 16

May 23, 2025

U.S. authorities seized the infrastructure of the DanaBot malware and charged 16 people in an action that is part of the larger Operation Endgame, a multinational initiative launched last year to disrupt and take apart global cybercriminals operations. The post U.S. Authorities Seize DanaBot Malware Operation, Indict 16 appeared first on Security Boulevard.

Survey Surfaces Limited Amount of Post Quantum Cryptography Progress

May 23, 2025

A survey of 1,042 senior cybersecurity managers in the U.S., the United Kingdom and Australia finds only 5% have implemented quantum-safe encryption, even though 69% recognize the risk quantum computing poses to legacy encryption technologies. The post Survey Surfaces Limited Amount of Post Quantum Cryptography Progress appeared first on Security Boulevard.

Signal Gives Microsoft a Clear Signal: Do NOT Recall This

May 22, 2025

Black screen of DRM: Privacy-first messenger blocks Microsoft Recall The post Signal Gives Microsoft a Clear Signal: Do NOT Recall This appeared first on Security Boulevard.

Law Enforcement, Microsoft Disrupt Operations of Popular Lumma Stealer

May 22, 2025

International law enforcement agencies and cybersecurity vendors seized thousands of domains used to run the MaaS operations of the widely popular Lumma Stealer malware, which was used to facilitate ransomware, malvertising, and phishing attacks around the globa. The post Law Enforcement, Microsoft Disrupt Operations of Popular Lumma Stealer appeared first on Security Boulevard.

Survey: Too Much Time Being Spent on Managing Cybersecurity Tools

May 21, 2025

A survey of 2,058 security leaders finds nearly half of respondents (46%) are spending more time maintaining tools than they do defending their organization from actual cyberattacks. The post Survey: Too Much Time Being Spent on Managing Cybersecurity Tools appeared first on Security Boulevard.

Tracking Accusations May Have Roblox Back in Court

May 19, 2025

Roblox is accused of secretly tracking the data of children without consent, an activity that the plaintiffs say violates their privacy under federal law. The post Tracking Accusations May Have Roblox Back in Court appeared first on Security Boulevard.

EU Stakes Out Digital Sovereignty With Vulnerability Database

May 19, 2025

Depending on who’s doing the talking, the new European Vulnerability Database (EUVD), set up by the European Union Agency for Cybersecurity (ENISA) and which recently went operational, is a much-needed alternative to EU dependency on MITRE. Or it’s one more vulnerability database to maintain. Or it’s both. The post EU Stakes Out Digital Sovereignty With…

Orca Security Acquires Opus to Gain AI Agent Orchestration Technology

May 16, 2025

Orca Security this week revealed it has acquired Opus to gain access to technologies capable of orchestrating artificial intelligence (AI) agents that are trained to automate a range of cybersecurity tasks. Opus previously has been employing that core capability to drive a vulnerability management platform that Orca Security now plans to sunset. Orca Security CEO..…

Linux Foundation Shares Framework for Building Effective Cybersecurity Teams

May 16, 2025

The Linux Foundation this week made available a customizable reference guide intended to help organizations identify critical cybersecurity skills requirements. The post Linux Foundation Shares Framework for Building Effective Cybersecurity Teams appeared first on Security Boulevard.

Coinbase Says Breach May Cost $400 Million, Issues $20 Million Bounty

May 16, 2025

The major data breach of cryptocurrency exchange Coinbase could cost the company as much as $400 million, it told the SEC. However, rather than pay the $20 million extortion demand, Coinbase issued a $20 million bounty on the hackers. The post Coinbase Says Breach May Cost $400 Million, Issues $20 Million Bounty appeared first on…

IBM Reasserts Its Identity: A Modern Security Partner Rooted in Experience

May 16, 2025

In an industry currently full of noise, new logos and two-letter slides, IBM is proving that real security transformation in the AI revolution takes more than a lofty latte imbued vision. The post IBM Reasserts Its Identity: A Modern Security Partner Rooted in Experience appeared first on Security Boulevard.

DHS Cancels $2.4 Billion Leidos Contract, Cites Changes at CISA

May 15, 2025

DHS cancelled a $2.4 billion contract to Leidos that was awarded last year for ACTS, a project aimed at supporting CISA. Rival Nightwing protested the award, but DHS said the contract was pulled in light of budgetary and mission changes at CISA since the Trump Administration assumed power in January. The post DHS Cancels $2.4…

As US CVE Database Fumbles, EU ‘Replacement’ Goes Live

May 14, 2025

Diesen Kuß der ganzen Welt! European Union Vulnerability Database (EUVD) launches this week. And not a moment too soon. The post As US CVE Database Fumbles, EU ‘Replacement’ Goes Live appeared first on Security Boulevard.

Apple Device Users Can File Claims in $95 Million Siri Spying Settlement

May 13, 2025

Apple earlier this year agreed to a $95 settlement to end a lawsuit filed in 2021 that claimed the company’s AI-powered assistant Siri recorded users’ conversations even when it wasn’t prompted to do so. Now anyone who feels their privacy was violated by Siri have until July 2 to file a claim for a piece…

GenAI’s New Attack Surface: Why MCP Agents Demand a Rethink in Cybersecurity Strategy

May 13, 2025

Anthropic’s Model Context Protocol (MCP) is a breakthrough standard that allows LLM models to interact with external tools and data systems with unprecedented flexibility. The post GenAI’s New Attack Surface: Why MCP Agents Demand a Rethink in Cybersecurity Strategy appeared first on Security Boulevard.

CISO Survey Surfaces Shift in Application Security Responsibilities

May 13, 2025

A global survey of 200 CISOs suggests responsibility for application security is shifting more toward the teams building and deploying software. The post CISO Survey Surfaces Shift in Application Security Responsibilities appeared first on Security Boulevard.

Futurum Group Research Sees Cybersecurity Spending Reaching $287.6B by 2029

May 13, 2025

An analysis of revenue growth forecasts by The Futurum Group sees cybersecurity spending reaching $287.6 billion by 2029. The post Futurum Group Research Sees Cybersecurity Spending Reaching $287.6B by 2029 appeared first on Security Boulevard.

Encrypt AI, Protect Your IP: DataKrypto Tackles the LLM Security Crisis While Redefining What Encryption Should Be!

May 12, 2025

Talking to Luigi Caramico, Founder, CTO, and Chairman of DataKrypto, a company that’s fundamentally reshaping how we think about encryption. The post Encrypt AI, Protect Your IP: DataKrypto Tackles the LLM Security Crisis While Redefining What Encryption Should Be! appeared first on Security Boulevard.

Security Gamechangers: CrowdStrike’s AI-Native SOC & Next Gen SIEM Take Center Stage at RSAC 2025

May 12, 2025

CrowdStrike introduced several enhancements to its Falcon cybersecurity platform and Falcon Next-Gen SIEM at the RSA Conference 2025, highlighting artificial intelligence, managed threat hunting and operational efficiencies aimed at transforming modern Security Operations Centers (SOC). The post Security Gamechangers: CrowdStrike’s AI-Native SOC & Next Gen SIEM Take Center Stage at RSAC 2025 appeared first on…

OpenText Report Shines Spotlight on Malware Infection Rates

May 9, 2025

A 2025 cybersecurity threat report based on analysis of data collected from tens of millions of endpoints by OpenText shows that the malware infection rate for business PCs now stands at 2.39%, with 87% of that malware being based on some type of variant that was specifically created to evade detection by cybersecurity tools. The…

SMBs Know They’re At Risk, but Most Aren’t Embracing AI

May 8, 2025

A survey by CrowdStrike finds the gap between SMB awareness of cyber threats and efforts by them to protect themselves is widening, with not enough of them spending the money needed on AI and other tools to defend against ransomware and other attacks. The post SMBs Know They’re At Risk, but Most Aren’t Embracing AI…

It’s a Mad, Mad World for DDoS; BGP Continues to Confound Security Teams

May 8, 2025

As the world roils in turmoil on numerous fronts, bad actors are seizing the moment by stepping up DDoS activity. The post It’s a Mad, Mad World for DDoS; BGP Continues to Confound Security Teams appeared first on Security Boulevard.

Do the Math: Prime Number Breakthrough Could Upend Encryption

May 8, 2025

When Way Kuo, a senior fellow at the Hong Kong Institute for Advanced Study, claimed in a working paper appearing in the SSRN Electronic Journal that his team had “devised a way to accurately and swiftly predict when prime numbers will appear,” it set off a bit of a tizzy. The post Do the Math:…

Breaking the Password Barrier: FIDO’s Path to Seamless Security

May 7, 2025

As the digital world rapidly expands, the need for secure, seamless authentication becomes more urgent. At the forefront of this evolution is FIDO (Fast Identity Online), promoting password-less authentication that combines convenience with strong security. But FIDO’s long-term success depends not only on its security capabilities but also on achieving true interoperability across platforms and..…

Trump Proposes Cutting CISA Budget by $491 Million

May 7, 2025

President Trump wants to cut CISA’s budget by $491 million, or 17%, to refocus it on its “core mission” and end what he said is censorship of him and his supporters. Critics of the cuts accusing the administration of politicizing cybersecurity and opening the door wider to adversaries like China and Russia. The post Trump…

U.S. Wins One, Maybe Two, Extradition Petitions in Unrelated Cases

May 5, 2025

In short order, U.S. prosecutors won an extradition case to bring a suspect in multiple ransomware cases to the United States and had another in England move in their favor when the British judge paved the way for an alleged hacker hired by a lobbyist firm to target climate change activists involved in lawsuits against…

IRONSCALES Extends Email Security Platform to Combat Deepfakes

May 5, 2025

IRONSCALES has extended the reach of the machine learning algorithms it uses to identify email anomalies to now include the video and audio files used to create deepfakes. The post IRONSCALES Extends Email Security Platform to Combat Deepfakes appeared first on Security Boulevard.

California Man Will Plead Guilty to Last Year’s Disney Hack

May 5, 2025

A 25-year-old California man will plead guilty to hacking into a Disney’s personal computer and using stolen credentials to break into thousands of Disney Slack channels. Ryan Mitchell Kramer, who claimed to be a member of the Russian group NullBulge, then leaked the data when the victim didn’t respond to his emails. The post California…

Treasury Moves to Ban Huione Group for Laundering $4 Billion

May 2, 2025

The Treasury Department is moving to cut off Huione Group, a Cambodian conglomerate, from the U.S. financial system, saying the firm and its multiple entities laundered billions of dollars for North Korea’s Lazarus Group and criminal gangs running pig-butchering scams from Southeast Asia. The post Treasury Moves to Ban Huione Group for Laundering $4 Billion…

Report Exposes Soft Security Underbelly of Mobile Computing

May 1, 2025

Zimperium, this week during the 2025 RSA Conference, shared an analysis of mobile computing environments that finds more than 60% of iOS and 34% of Android apps lack basic code protection, with nearly 60% of iOS and 43% of Android apps also vulnerable to leaking personally identifiable information (PII). The post Report Exposes Soft Security…

F5 Extends Security Reach to Large Language Models

April 30, 2025

F5 has extended and added support for web application scanning that is capable of identifying vulnerabilities in large language models (LLMs) to its application delivery and security platform (ADSP). The post F5 Extends Security Reach to Large Language Models appeared first on Security Boulevard.

Homeland Secretary Noem Vows to Put CISA ‘Back to Focusing on its Core Mission’

April 30, 2025

Homeland Security Secretary Kristi Noem vowed to refocus CISA, especially in defense of critical systems threats from China. The post Homeland Secretary Noem Vows to Put CISA ‘Back to Focusing on its Core Mission’ appeared first on Security Boulevard.

Salt Security Embraces MCP to Improve Cybersecurity in the Age of AI

April 30, 2025

Salt Security this week at the 2025 RSA Conference made available an early preview of an ability to secure Model Context Protocol (MCP) servers that are emerging as a de facto standard for integrating artificial intelligence (AI) models and agents. The post Salt Security Embraces MCP to Improve Cybersecurity in the Age of AI appeared…

Proofpoint Leverages AI to Extend Scope of Cybersecurity Reach

April 29, 2025

Proofpoint has expanded its ability to thwart multistage cyberattacks spanning multiple communications channels while at the same time extending its reach into data security posture management (DSPM). The post Proofpoint Leverages AI to Extend Scope of Cybersecurity Reach appeared first on Security Boulevard.

Are Puppies the New Booth Babes: What Do You Think?

April 29, 2025

Walking the floor of the RSA Conference (RSAC) this year, amid the sea of booths packed with flashing monitors, cybersecurity swag and endless sales pitches, one booth stood out — and not for its tech demos or zero-day revelations. Orca Security set up a puppy pen — a roped-off area where a collection of adorable..…

HPE Extends Scope of Cybersecurity Reach Across Multiple Platforms

April 29, 2025

Hewlett Packard Enterprise (HPE) at the 2025 RSA Conference today added a series of controls for users, devices and applications to its cloud-based network management platform that promise to make it simpler for organizations to enforce zero-trust cybersecurity policies. The post HPE Extends Scope of Cybersecurity Reach Across Multiple Platforms appeared first on Security Boulevard.

Desired Effect Marketplace: Researchers Get Their Due, Defenders Get Realtime Info on Zero Days

April 29, 2025

Desired Effect, if it operates as billed, opens up a world of cutting-edge research to defenders, including zero-day vulnerability data and tailored exploit products. The post Desired Effect Marketplace: Researchers Get Their Due, Defenders Get Realtime Info on Zero Days appeared first on Security Boulevard.

RSA Conference Dispatch: Mr. NHI – Leading the Movement to Expose Cybersecurity’s Biggest Blind Spot!

April 28, 2025

RSA Conference Dispatch: Beyond the Briefings. Beneath the Buzz. John Boyle Uncovers and Shares Gems from RSAC 2025 The post RSA Conference Dispatch: Mr. NHI – Leading the Movement to Expose Cybersecurity’s Biggest Blind Spot! appeared first on Security Boulevard.

Bugcrowd Launches Red Team Service to Test Cybersecurity Defenses

April 28, 2025

Bugcrowd today at the 2025 RSA Conference announced its intent to create a red team service to test cybersecurity defenses using a global network of ethical hackers. Alistair Greaves, director of red team operations for Bugcrowd, said via a Red Team-as-a-Service (RTaaS) offering that a global pool of experts vetted by Bugcrowd will employ the..…

Anthropic Outlines Bad Actors Abuse Its Claude AI Models

April 28, 2025

Anthropic shows how bad actors are using its Claude AI models for a range of campaigns that include influence-as-a-service, credential stuffing, and recruitment scams and becomes the latest AI company to push back at threat groups using their tools for malicious projects. The post Anthropic Outlines Bad Actors Abuse Its Claude AI Models appeared first…

Palo Alto Networks to Acquire Protect AI, Launches AI Security Platform

April 28, 2025

Accelerating its aggressive foray into artificial intelligence (AI) security, Palo Alto Networks Inc. on Monday said it has agreed to acquire cybersecurity startup Protect AI. Additionally, the company launched an ambitious AI security platform at the RSA Conference in San Francisco, as well as updates to two of its core products. The deal to buy..…

AppOmni Adds MCP Server to Platform for Protecting SaaS Applications

April 28, 2025

AppOmni at the 2025 RSA Conference today added a Model Context Protocol (MCP) server to its platform for protecting software-as-a-service (SaaS) applications. Originally developed by Anthropic, MCP is emerging as a de facto standard for integrating artificial intelligence (AI) agents and models. Melissa Ruzzi, director of AI for AppOmni, said it’s now only a matter..…

Wallarm Extends API Security Reach to AI Agents

April 28, 2025

Wallarm at the 2025 RSA Conference announced that, starting this summer, it will extend the reach of its platform for securing application programming interfaces (APIs) to include artificial intelligence (AI) agents. Tim Erlin, vice president of product for Wallarm, said the Agentic AI Protection capability added to the platform makes it possible to thwart attack..…

Cybersecurity CEO Charged with Installing Malware on Hospital Computers

April 28, 2025

Jeffrey Bowie, the CEO of cybersecurity company Veritaco, was seen on security camera footage walking into St. Anthony Hospital in Oklahoma City last year and installing malware on an employee computer. He was arrested this month for violating the state’s cybercrime statute. The post Cybersecurity CEO Charged with Installing Malware on Hospital Computers appeared first…

Cisco Unveils Open Source AI Reasoning Model for Cybersecurity Use Cases

April 28, 2025

Cisco today at the 2025 RSA Conference revealed it is making available an open-source generative artificial intelligence (AI) reasoning model specifically designed to automate cybersecurity analytics and workflows, along with a set of controls for securing AI artifacts in software supply chains. The post Cisco Unveils Open Source AI Reasoning Model for Cybersecurity Use Cases…

NetRise Adds Tool to Analyze Application Binaries for Security Flaws

April 28, 2025

NetRise today at the 2025 RSA Conference unveiled a binary composition analysis (BCA) tool that makes it possible to identify application security weaknesses in applications that have already been deployed. The post NetRise Adds Tool to Analyze Application Binaries for Security Flaws appeared first on Security Boulevard.

Qualys Adds Tool to Automate Audit Workflows

April 25, 2025

Qualys this week added a tool that makes it possible for organizations to continuously run audits in a way that promises to dramatically reduce failure rates. The post Qualys Adds Tool to Automate Audit Workflows appeared first on Security Boulevard.

North Korean Group Creates Fake Crypto Firms in Job Complex Scam

April 25, 2025

The North Korean hackers behind the Contagious Interview worker scam, which threat intelligence analysts have followed since late 2023, are now hiding behind three bogus crypto companies they created as fronts for their info- and crypto-stealing operations. The post North Korean Group Creates Fake Crypto Firms in Job Complex Scam appeared first on Security Boulevard.

HiddenLayer Researchers Surface Prompt Technique Bypassing All AI Guardrails

April 25, 2025

HiddenLayer this week disclosed its researchers have discovered a prompt injection technique that bypasses instruction hierarchy and safety guardrails across all the major foundational artificial intelligence (AI) models. The post HiddenLayer Researchers Surface Prompt Technique Bypassing All AI Guardrails appeared first on Security Boulevard.

200,000 Workers’ PII at Risk in WorkComposer S3 SNAFU

April 25, 2025

Don’t say ‘spyware’—21 million screenshots in one open bucket. The post 200,000 Workers’ PII at Risk in WorkComposer S3 SNAFU appeared first on Security Boulevard.

Bipartisanship Key to CISA Renewal

April 25, 2025

As fractious as Congress has been for the better part of a decade, it did manage to pass the Cybersecurity Information Sharing Act in 2015. And now that it’s up for renewal, it seems prudent—no, necessary—that Congress unite to okay it once again. The post Bipartisanship Key to CISA Renewal appeared first on Security Boulevard.

ARMO: io_uring Interface Creates Security ‘Blind Spot’ in Linux

April 24, 2025

Researchers from security firm ARMO developed a POC rootkit called Curing that showed how the io_uring interface in Linux could be exploited by bad actors to bypass system calls, creating what they calle a “massive security loophole” in the operating system’s runtime security. The post ARMO: io_uring Interface Creates Security ‘Blind Spot’ in Linux appeared…

Harness Adds Traceable WAAP to Secure Web Apps and APIs

April 24, 2025

Harness today unfurled a cloud web application and application programming interface (API) protection (WAAP) platform that makes it simpler for security operation (SecOps) teams to defend application environments. The post Harness Adds Traceable WAAP to Secure Web Apps and APIs appeared first on Security Boulevard.

HYCU Tackles SaaS Data Protection With New R-Shield Solution

April 24, 2025

HYCU introduces R-Shield to provide comprehensive cyber resilience across SaaS, cloud, and on-premises environments as organizations face growing supply chain attacks. The post HYCU Tackles SaaS Data Protection With New R-Shield Solution appeared first on Security Boulevard.

Asian Scam Farms: ‘Industrial Scale,’ Warns UN Report

April 23, 2025

Bacon Redux: Pig butchering and other serious scams still thriving, despite crackdowns in Dubai and Myanmar The post Asian Scam Farms: ‘Industrial Scale,’ Warns UN Report appeared first on Security Boulevard.

Delinea Adds Ability to Secure AI Agent Identities

April 23, 2025

Delinea today extended the reach of its platform for securing identities and credentials to now provide support for artificial intelligence (AI) agents. The post Delinea Adds Ability to Secure AI Agent Identities appeared first on Security Boulevard.

1Password Extends Reach of IAM Platform to AI Agents and Unmanaged Devices

April 22, 2025

1Password today extended the reach of its Extended Access Management (XAM) platform to include an ability to secure artificial intelligence (AI) agents. The post 1Password Extends Reach of IAM Platform to AI Agents and Unmanaged Devices appeared first on Security Boulevard.

Augmented, Not Replaced – Humans Outpace AI in Simbian’s SOC Hackathon Championship – Results and Winners Announced!

April 22, 2025

Simbian’s industry-first AI SOC Hackathon Championship has concluded, bringing with it an exciting glimpse into the future of cybersecurity operations. The post Augmented, Not Replaced – Humans Outpace AI in Simbian’s SOC Hackathon Championship – Results and Winners Announced! appeared first on Security Boulevard.

Survey Surfaces Challenges Securing SaaS Applications

April 22, 2025

A survey of 420 responses from IT and security professionals finds 86% now view securing software-as-a-service (SaaS) applications as a top priority, with more than three-quarters (76%) having increased budget allocations. The post Survey Surfaces Challenges Securing SaaS Applications appeared first on Security Boulevard.

COGNNA Adds AI Agents to SOC Platform

April 22, 2025

COGNNA today unveiled a security operations center (SOC) platform infused with artificial intelligence (AI) agents trained to detect, analyze and respond to threats in a way that promises to dramatically reduce alert fatigue. The post COGNNA Adds AI Agents to SOC Platform appeared first on Security Boulevard.

Upwind Adds Ability to Detect API Threats to Cloud Security Platform

April 21, 2025

Upwind has added an ability to detect threats to application programming interfaces (APIs) in real time to its cloud application detection and response (CADR) platform, based on machine learning algorithms. The post Upwind Adds Ability to Detect API Threats to Cloud Security Platform appeared first on Security Boulevard.

Krebs Steps Down from SentinelOne, Vows to Fight Trump Attack

April 18, 2025

Chris Kreb, the former CISA director who has come under fire from President Trump for refusing to support claims at the 2020 election was tampered with, resigned from his position with cybersecurity vendor SentinelOne, telling employees that “this is my fight, not the company’s.” The post Krebs Steps Down from SentinelOne, Vows to Fight Trump…

Whistleblower: Musk’s DOGE Stole Data, Caused Breach at U.S. Agency

April 16, 2025

A whistleblower in the NLRB said in sworn testimony that staffers within the Musk-led DOGE group breached agency systems, exfiltrated sensitive data, and used tools and techniques similar to those wielded by cybercriminals to hide their actions. The post Whistleblower: Musk’s DOGE Stole Data, Caused Breach at U.S. Agency appeared first on Security Boulevard.

MITRE Crisis: CVE Cash Ends TODAY — CISA says ‘No Lapse’

April 16, 2025

These are “interesting” times: U.S. government funding for the Common Vulnerabilities and Exposures program expires April 16. The post MITRE Crisis: CVE Cash Ends TODAY — CISA says ‘No Lapse’ appeared first on Security Boulevard.

Government Funding for CVE Program Ends, But a New Group Emerges

April 16, 2025

The Trump Administration is ending funding for MITRE’s crucial CVE database program, a move that promises to hobble cybersecurity efforts around the world. However, CVE Board members introduce a new nonprofit organizations free of government funding and oversight. The post Government Funding for CVE Program Ends, But a New Group Emerges appeared first on Security…

Public Support Emerges for Chris Krebs, SentinelOne After Trump Memo

April 15, 2025

The cybersecurity industry has been conspicuously quiet after President Trump targeted ex-CISA director Chris Krebs and SentinelOne for retribution. However, some voices have risen above the silence to urge support and the need for public pushback. The post Public Support Emerges for Chris Krebs, SentinelOne After Trump Memo appeared first on Security Boulevard.

Microsoft Moves Forward With Controversial Recall Feature

April 11, 2025

Microsoft a year ago was about to launch Recall, a Windows feature for Copilot+ PCs that takes regular screenshots of users’ systems and stores them so they can be searched for later. Privacy and security concerns forced the company to pull it back and rework it. Now it is in preview with Windows Insiders. The…

Trump Strips Security Clearances of Ex-CISA Head Krebs, SentinelOne

April 10, 2025

President Trump stripped former CISA head Chris Krebs of his security clearances, accusing him of disloyalty for claiming the 2020 election was safe and disagreeing with him regarding the pandemic. SentinelOne, where Krebs is an executive, also was targeted by Trump, who further ordered investigations of Krebs and CISA. The post Trump Strips Security Clearances…

Wyden to Hold Up Trump CISA Nominee Over Telecom ‘Cover Up’: Report

April 9, 2025

Senator Ron Wyden (D-OR) is demanding CISA release a three-year-old report critical of telecoms’ security in the wake of the expansive Salt Typhoon hacks before he lifts a hold on President Trump’s nomination of Sean Plankey as head of the agency. The post Wyden to Hold Up Trump CISA Nominee Over Telecom ‘Cover Up’: Report…

NIST Deprioritizes Pre-2018 CVEs as Backlog Struggles Continue

April 9, 2025

NIST, which for more than a year has been struggling to address a backlog of CVEs in its database following budget cuts, is now putting pre-2018 vulnerabilities on the back burner to give itself more time to address the rapidly growing number of new software security flaws. The post NIST Deprioritizes Pre-2018 CVEs as Backlog…

Solving the Identity Crisis: Okta Redefines Security in a Machine-Led World

April 9, 2025

Okta is stepping forward with its boldest platform evolution yet, aiming to unify identity across human and machine actors, and extend zero-trust all the way from cloud to on-premises. The post Solving the Identity Crisis: Okta Redefines Security in a Machine-Led World appeared first on Security Boulevard.

21 Countries Sign Onto Voluntary Pact to Stem the Proliferation of Spyware

April 8, 2025

Twenty-one countries signed onto the Pall Mall Process, an effort a year in the making that was created to develop a framework nations could adopt to address the proliferation and malicious use of spyware by governments that want it to track human rights workers, activists, journalists, and other such targets. The post 21 Countries Sign…

Qevlar Raises $14M to Lead the Agentic AI Revolution

April 8, 2025

Qevlar leads the agentic AI revolution and raises $14 million in total funding, including a fresh $10 million round led by EQT Ventures and Forgepoint Capital International. The post Qevlar Raises $14M to Lead the Agentic AI Revolution appeared first on Security Boulevard.

Qevlar Raises $14M to Lead the Agentic AI Revolution

April 8, 2025

Hunters International Dumps Ransomware, Goes Full-on Extortion

April 4, 2025

Hunters International, the RaaS group that some believe evolved from Hive, appears to be rebranding and shifting operations, moving away from an unprofitable and risky ransomware business and focusing solely on exfiltrating data and extorting victims, say Group-IB researchers. The post Hunters International Dumps Ransomware, Goes Full-on Extortion appeared first on Security Boulevard.

Oracle Hack: From ‘Deny-Deny-Deny’ to ‘Oops-Oops-Oops’

April 4, 2025

Classic “wordplay:” Larry’s PR angels desperately dance on the head of a pin. The post Oracle Hack: From ‘Deny-Deny-Deny’ to ‘Oops-Oops-Oops’ appeared first on Security Boulevard.

Longtime ‘Fast Flux’ Evasion Technique Now a National Security Threat

April 4, 2025

CISA, the FBI, and NSA issued an advisory about the national security threat posed by “fast flux,” a technique used by threat actors to evade detection of their C2 infrastructures that has been around for two decades but has seen a resurgence in use by ransomware gangs and nation-state bad actors. The post Longtime ‘Fast…

App Stores OK’ed VPNs Run by China PLA

April 3, 2025

Bad Apple: Chinese firm banned by the U.S. is the shady entity behind a clutch of free VPN apps—with over a million downloads. The post App Stores OK’ed VPNs Run by China PLA appeared first on Security Boulevard.

Google Makes Sending Encrypted Emails Easier for Gmail Users

April 3, 2025

Google is making it easier for Gmail users to send end-to-end encrypted (E2EE) emails to anyone by adopting a process that does away with complex options like S/MIME and instead uses encrypted keys that are controlled by the sender. The post Google Makes Sending Encrypted Emails Easier for Gmail Users appeared first on Security Boulevard.

When AI Fights Back: Simbian’s 2025 Hackathon Challenges Humans to Outsmart the Machines

April 1, 2025

Simbian, under the leadership of CEO Ambuj Kumar, is hosting an innovative AI Hackathon on April 8, 2025., and participation is limited. The post When AI Fights Back: Simbian’s 2025 Hackathon Challenges Humans to Outsmart the Machines appeared first on Security Boulevard.

Oracle Hack PR Drama: Deny, Deny, Deny — Despite Damning Data

March 28, 2025

OCI dokey then: Larry Ellison’s PR pukes desperately follow the script. The post Oracle Hack PR Drama: Deny, Deny, Deny — Despite Damning Data appeared first on Security Boulevard.

Broadcom Extends Scope of VMware vDefend Cybersecurity Platform

March 26, 2025

Broadcom today updated its VMware vDefend platform to add additional security intelligence capabilities along with a streamlined ability to micro-segment networks using code to programmatically deploy virtual firewalls. Additionally, Broadcom has made it simpler to deploy and scale out the Security Services Platform (SSP) it uses to provide a data lake for collecting telemetry data..…

Hackers Use Atlantis AIO Tool to Automate Account Takeover Attacks

March 26, 2025

Atlantis AIO, a tool available to hackers on the dark web, gives threat actors an automated tool to rapidly test millions of stolen credentials against email, ecommerce, and other online accounts on more than 140 email and other platforms in credential-stuffing attacks. The post Hackers Use Atlantis AIO Tool to Automate Account Takeover Attacks appeared…

Lasso Adds Automated Red Teaming Capability to Test LLMs

March 25, 2025

Lasso today added an ability to autonomously simulate real-world cyberattacks against large language models (LLMs) to enable organizations to improve the security of artificial intelligence (AI) applications. The post Lasso Adds Automated Red Teaming Capability to Test LLMs appeared first on Security Boulevard.

Run Security Leverages eBPF to Strengthen Application Security

March 25, 2025

Run Security today launched an application security platform that leverages extended Berkeley Packet Filtering (eBPF) to secure application runtime environments. The post Run Security Leverages eBPF to Strengthen Application Security appeared first on Security Boulevard.

The Illusion of Safety: BlackCloak’s DEP Security Framework Exposes the Devil’s Greatest Trick

March 25, 2025

On Tuesday, March 25, 2025, BlackCloak released a watershed asset in executive and public persona cybersecurity: The Digital Executive Protection (DEP) Framework & Assessment Methodology – a comprehensive standard designed to address the deeply human side of cybersecurity risk. The post The Illusion of Safety: BlackCloak’s DEP Security Framework Exposes the Devil’s Greatest Trick appeared…

Spit Happens: 23andMe is Bankrupt — Secure Your DNA Data NOW Already

March 24, 2025

Double hell-ix: Personal genomics firm tells customers your data is safe—but few will trust the loss-making biotech pioneer. The post Spit Happens: 23andMe is Bankrupt — Secure Your DNA Data NOW Already appeared first on Security Boulevard.

Cato Uses LLM-Developed Fictional World to Create Jailbreak Technique

March 24, 2025

A Cato Networks threat researcher with little coding experience was able to convince AI LLMs from DeepSeek, OpenAI, and Microsoft to bypass security guardrails and develop malware that could steal browser passwords from Google Chrome. The post Cato Uses LLM-Developed Fictional World to Create Jailbreak Technique appeared first on Security Boulevard.

Ex-Michigan, Ravens Football Coach Charged with Hacking Athlete Accounts

March 21, 2025

Matthew Weiss, former football coach for the University of Michigan and the Baltimore Ravens, for almost 10 years accessed the social media and other online accounts of thousands of student athletes and downloaded personal information and intimate images, said prosecutors who indicted for illegal computer access and identity theft. The post Ex-Michigan, Ravens Football Coach…

Report Surfaces Sharp Increase in Cyberattacks Aimed at Applications

March 21, 2025

An analysis of cyberattacks made against applications published this week by Digital.ai, a provider of a platform for securely delivering software, finds a 20% year over year increase, with 83% of applications tracked in January now under constant cyberattack compared to 65% a year ago. The post Report Surfaces Sharp Increase in Cyberattacks Aimed at…

Report: More Attacks Aimed at Android Devices Configured with Root Access

March 20, 2025

A report published today by Zimperium, a provider of a platform for securing mobile devices and applications, today finds devices running the Android operating system that have enabled root-level privileges are 3.5 times more likely to be attacked, resulting in 250 times more cybersecurity incidents. The post Report: More Attacks Aimed at Android Devices Configured…

AI, Cybersecurity, Featured, Global Security News, iam, Identity and Access Management, IT, Security Boulevard (Original), Social - X, Spotlight

AI, AI and ML in Security, chatbots, Cybersecurity, Global Security News, messages, Security, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight

cyberattacks, Cybersecurity, defenses, Global Security News, Mental denial of service, resilience, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threat Intelligence, Trust

CISA, critical infrastructure, Cybersecurity, Global Security News, OT attacks, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threats & Breaches

Botnet, Cloud Security, Cybersecurity, DanaBot, Data Privacy, Data Security, Endpoint, Featured, Global Security News, Identity & Access, malware, Network Security, News, Operation Endgame Cybercrime, Russia, Security Boulevard (Original), Spotlight, Threats & Breaches

Cybersecurity, encryption, Featured, Global Security News, News, Q-Day, Quantum, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight

Cybersecurity, Featured, Global Security News, News, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, survey, tools cybersecurity

Cybersecurity, Data Privacy, Gaming, Global Security News, online safety, personal information, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight

CISA, Cybersecurity, Data Privacy, ENISA, Europe, EUVD, Global Security News, MITRE, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, vulnerability database

agentic ai, AI, AI and Machine Learning in Security, Featured, Global Security News, Opus, Orca Security, Security Boulevard (Original), Social - X, Spotlight

cost, Cybersecurity, DevSecOps, Featured, Global Security News, News, Security Awareness, Security Boulevard (Original), Skills, Social - Facebook, Social - LinkedIn, Social - X, Spotlight

Application Security, Cybersecurity, Deployment Services, Featured, GenAI, Global Security News, HashiCorp, iam, IBM NHIs, Non-Human Identities, PAM, red hat, rsa, rsac, RSAC2025, Security, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, zero trust

Biden administration, CISA, Cyberlaw, Cybersecurity, DHS, Donald Trump, Featured, Global Security News, Governance, Risk & Compliance, Network Security, News, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight

AI and Privacy, Apple, class action lawsuit, Cloud Security, Cyberlaw, Cybersecurity, Data Privacy, Data Security, Featured, Global Security News, Governance, Risk & Compliance, Mobile Security, News, Security Boulevard (Original), siri, Social - Facebook, Social - LinkedIn, Social - X, Spotlight

Application Security, AppSec, Cybersecurity, DevSecOps, Featured, Global Security News, News, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, survey

analysis, Analytics & Intelligence, CAGR, costs, Cybersecurity, Featured, Global Security News, News, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, spending, Spotlight

AI, Cybersecurity, Data Security, DataKrypto, DevSecOps, encryption, Featured, FHEnom, Global Security News, LLM, MLSecOPS, rsac, RSAC2025, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight

AI, crowdstrike, Cybersecurity, Digital Supply Chain Security, Featured, Global Security News, NG-SIEM, rsac, RSAC2025, Security, Security Boulevard (Original), SOC, Social - Facebook, Social - LinkedIn, Social - X, Spotlight, zero trust

Cybersecurity, Data Security, Featured, Global Security News, malware, News, Ransomware, report, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight

Cybersecurity, DDoS, Featured, Global Security News, Security, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threats & Breaches, vulnerabilities

cryptography, Cybersecurity, encryption, Featured, Global Security News, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight

Authentication, Featured, FIDO, Global Security News, Identity & Access, passwords, Security, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Techstrong Council

Asia Pacific, budget cuts, CISA, Cloud Security, Cyberlaw, Cybersecurity, Data Security, Donald Trump, Featured, Global Security News, Mobile Security, Network Security, News, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight

AI and ML in Security, audio, Cybersecurity, Deep Fake and Other Social Engineering Tactics, deepfakes, email, Global Security News, ML, News, phishing, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threats & Breaches, Video, vulnerabilities

AI, Cybersecurity, Featured, Global Security News, malware, mobile apps, mobile devices, News, rsac, RSAC 2025, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight

AI and Machine Learning in Security, AI and ML in Security, Cybersecurity, Featured, Global Security News, LLMs. AI, News, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, vulnerabilities

2025 RSAC, Asia Pacific, china, CISA, Cybersecurity, DHS, Featured, Global Security News, News, rsac, Salt Typhoon, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Volt Typhoon

AI, AI agents, AI and ML in Security, Cybersecurity, Emerging Tech, Featured, Global Security News, mcp, News, rsa, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight

AI, AI and ML in Security, AI in Cybersecurity, AI-powered security, API security, Cybersecurity, DSPM, Featured, Global Security News, News, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight

Cybersecurity, Featured, Global Security News, Marketing, puppies, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, trade shows

2025 RSAC, Cloud Security, Cybersecurity, Featured, Global Security News, Network Security, network threats, News, rsac, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, zero trust

Cybersecurity, Exploits, Featured, Global Security News, rsa, RSAC 2025, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threats & Breaches, vulnerabilities, zero-day vulnerabilities

Cybersecurity, Featured, Global Security News, Identity & Access, identity security, Mr NHI, NHIs, RSA Conference, rsac, RSAC2025, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, zero trust

2025 RSA Conference, Bugcrowd, Cybersecurity, Featured, Global Security News, Red Team, rsac, Security Boulevard (Original), Social - X, Spotlight

2025 RSA Conference, AI agents, AI and ML in Security, Cybersecurity, DevOps, Featured, generative ai, Global Security News, machine learning, Mobile Security, Palo Alto Networks, Protect AI, rsa, rsac, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight