Airlines Don’t Want You to Know They Sold Your Flight Data to DHS

/in

A contract obtained by 404 Media shows that an airline-owned data broker forbids the feds from revealing it sold them detailed passenger data.

Security Latest – ​Read More

Vanta’s AI agent wants to run your compliance program — and it just might

/in

Credit: VentureBeat made with Midjourney

Vanta launches autonomous AI agent that automates security compliance workflows, helping enterprises save 12+ hours weekly on policy management and audit preparation.Read More

Security News | VentureBeat – ​Read More

How Cisco plans to stop rogue AI agent attacks inside your network

/in

As AI agents grow more powerful and unpredictable, Cisco unveils tools to lock down networks, track agent behavior, and prevent chaos before it spreads through your infrastructure.

Latest stories for ZDNET in Security – ​Read More

The Hidden Threat in Your Stack: Why Non-Human Identity Management is the Next Cybersecurity Frontier

/in

Modern enterprise networks are highly complex environments that rely on hundreds of apps and infrastructure services. These systems need to interact securely and efficiently without constant human oversight, which is where non-human identities (NHIs) come in. NHIs — including application secrets, API keys, service accounts, and OAuth tokens — have exploded in recent years, thanks to an

The Hacker News – ​Read More

Five Zero-Days, 15 Misconfigurations Found in Salesforce Industry Cloud

/in

Security researchers uncover critical flaws and widespread misconfigurations in Salesforce’s industry-specific CRM solutions.

The post Five Zero-Days, 15 Misconfigurations Found in Salesforce Industry Cloud appeared first on SecurityWeek.

SecurityWeek – ​Read More

Sensitive Information Stolen in Sensata Ransomware Attack

/in

Sensor manufacturer Sensata said a ransomware group had access to its network for more than a week and stole personal information.

The post Sensitive Information Stolen in Sensata Ransomware Attack appeared first on SecurityWeek.

SecurityWeek – ​Read More

Getty Images Sues Stability AI for Using Its Photos to Train AI Models

/in

Getty Images accuses Stability AI of illegally using its content to train AI models in a high-stakes London…

Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – ​Read More

Critical Vulnerability Patched in SAP NetWeaver

/in

SAP has fixed a critical NetWeaver vulnerability allowing attackers to bypass authorization checks and escalate their privileges.

The post Critical Vulnerability Patched in SAP NetWeaver appeared first on SecurityWeek.

SecurityWeek – ​Read More

Exploited Vulnerability Impacts Over 80,000 Roundcube Servers

/in

Exploitation of a critical-severity RCE vulnerability in Roundcube started only days after a patch was released.

The post Exploited Vulnerability Impacts Over 80,000 Roundcube Servers appeared first on SecurityWeek.

SecurityWeek – ​Read More

Rare Werewolf APT Uses Legitimate Software in Attacks on Hundreds of Russian Enterprises

/in

The threat actor known as Rare Werewolf (formerly Rare Wolf) has been linked to a series of cyber attacks targeting Russia and the Commonwealth of Independent States (CIS) countries.
“A distinctive feature of this threat is that the attackers favor using legitimate third-party software over developing their own malicious binaries,” Kaspersky said. “The malicious functionality of the campaign

The Hacker News – ​Read More