#cybersecurity-risk

[ follow ]
#credential-revocation #workplace-layoffs #unauthorized-access #database-security #ai-safety-testing
fromArs Technica
7 hours ago

Twin brothers wipe 96 gov't databases minutes after being fired

In the US, fired and laid-off workers often have their digital credentials deactivated before they learn about the loss of their jobs; indeed, the inability to log in to a corporate system may be the first an employee knows of the situation. Though not a generous or humane approach to staff reduction, it does follow from the simple fact that a fired employee with access to company systems is a security risk.
Privacy professionals
Information security
fromtheregister
13 hours ago

Frontier AI safety tests may be creating the very risks they're meant to stop

Third-party AI evaluations require outsider access, but inconsistent standards and weak controls create new risks of theft, tampering, espionage, and abuse.
Information security
fromZDNET
1 day ago

Linux is getting a security wake-up call - why it was inevitable and I'm not worried

Linux security is no longer guaranteed as vulnerabilities rise, but kernel development is responding to reduce risk for users and organizations.
Information security
fromThe Verge
5 days ago

A hacker ran me over with a robot lawn mower

Yarbo's $5,000 robot lawn mowers contain critical security vulnerabilities allowing remote hackers to hijack thousands of devices worldwide and override safety features including emergency stop buttons.
Information security
fromZDNET
1 month ago

As AI agents spread, 1Password's new tool tackles a rising security threat

AI agents require credentials to access systems, creating enterprise security risks similar to managing human employee access, necessitating unified credential management solutions.
fromTechzine Global
2 months ago

Dutch Tax Authority hands US software company control over VAT system

With 1.5 billion euros per week in VAT revenue at stake, there are now serious concerns about digital sovereignty. If that revenue of €1.5B a week disappears, the state will have to quickly borrow more on the international capital market. In theory, America could stop this process in the Netherlands thanks to a new tender.
EU data protection
fromFortune
2 months ago

OpenAI appears to have violated California's AI safety law with GPT-5.3-Codex release, watchdog group says | Fortune

OpenAI may have violated California's new AI safety law with the release of its latest coding model, according to allegations from an AI watchdog group.A violation would potentially expose the company to millions of dollars in fines, and the case may become a precedent-setting first test of the new law's provisions.
Artificial intelligence
Artificial intelligence
fromZDNET
4 months ago

Weaponized AI risk is 'high,' warns OpenAI - here's the plan to stop it

Rapidly evolving AI cyber capabilities raise high cybersecurity risk, prompting proactive measures and frameworks to help defenders track and mitigate model-related security threats.
Information security
fromSecuritymagazine
5 months ago

Should Organizations Block AI Browsers? Security Leaders Discuss

Agentic AI browsers introduce novel, systemic cybersecurity risks that can compromise many users; CISOs should block them to minimize enterprise exposure.
fromSecuritymagazine
6 months ago

A Real-Life Horror Story: When AI Ghouls Move Faster Than Defenses Can React

In the past year, the rapid democratization of AI has opened the door for a new class of haunting threats. Malware creation, once a domain requiring deep expertise and significant time, can now be automated in mere seconds. It's no longer about who has the most sophisticated tools, but who can leverage AI the fastest - and the current advantage favors the bad actors. It's like a haunted house gone wrong, and the monsters are in control.
Information security
Information security
fromComputerworld
7 months ago

Leading the charge in cyber risk mitigation: From gut feeling to objective evaluation

Cybersecurity must be managed as a core business risk using objective, data-driven exposure management to detect hidden threats and prioritize remediation.
Information security
fromIT Pro
8 months ago

Windows 10 custom support costs could skyrocket to $7bn after end of life deadline

Extended Windows 10 support could cost enterprises over $7.3 billion globally and $61 per device initially, with rising risks and productivity losses if migrations are delayed.
[ Load more ]