Okta Fixes Auth Bypass Bug After 3-Month Lull

/in

The bug affected accounts with 52-character user names, and had several pre-conditions that needed to be met in order to be exploited.

darkreading – ​Read More

Cisco notifies ‘limited set’ of customers after hacker accessed non-public files

/in

The company has said it didn’t suffer a breach, but announced a threat actor downloaded data on a public-facing DevHub environment.

The Record from Recorded Future News – ​Read More

UC San Diego, Tsinghua University researchers just made AI way better at knowing when to ask for help

/in

Credit: VentureBeat made with Midjourney

UC San Diego and Tsinghua University researchers develop breakthrough AI method that teaches small language models when to use tools versus internal knowledge, achieving 28% better accuracy while using fewer resources than larger models like GPT-4.Read More

Security News | VentureBeat – ​Read More

OWASP Beefs Up GenAI Security Guidance Amid Growing Deepfakes

/in

As businesses worry over deepfake scams and other AI attacks, organizations are adding guidance for cybersecurity teams on how to detect, and respond to, next-generation threats. That includes Exabeam, which was recently targeted by a deepfaked job candidate.

darkreading – ​Read More

Software Makers Encouraged to Stop Using C/C++ by 2026

/in

The Cybersecurity and Infrastructure Security Agency and the Federal Bureau of Investigation assert that C, C++, and other memory-unsafe languages contribute to potential security breaches.

Security | TechRepublic – ​Read More

Ohio’s capital says July ransomware attack leaked info of 500,000

/in

The city government of Columbus, Ohio, said a ransomware attack that stirred up a high-profile lawsuit had exposed the data of about 500,000 people.

The Record from Recorded Future News – ​Read More

How AI Is Changing the Cloud Security and Risk Equation

/in

Discover how AI amplifies cloud security risks and how to mitigate them, with insights from Tenable’s Liat Hayun on managing data sensitivity, misconfigurations, and over-privileged access.

Security | TechRepublic – ​Read More

Hackers Claim Access to Nokia Internal Data, Selling for $20,000

/in

Hackers claim to have breached Nokia through a third-party contractor, allegedly stealing SSH keys, source code, and internal…

Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – ​Read More

Name That Edge Toon: Aerialist’s Choice

/in

Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card.

darkreading – ​Read More

Google: Big Sleep AI Agent Puts SQLite Software Bug to Bed

/in

A research tool by the company found a vulnerability in the SQLite open source database, demonstrating the “defensive potential” for using LLMs to find vulnerabilities in applications before they’re publicly released.

darkreading – ​Read More