1+ day, 19+ hour ago  (1777+ words) You are a security leader at a small or medium-sized business (SMB), and your organization has decided to adopt Claude. If you are like me, after the initial "surprise" wears off, you probably want to quickly get your arms around…...

19+ hour, 1+ min ago  (572+ words) A simple framework has always governed security operations that I call the SOC Triangle. It is a balance between quality, consistency and cost efficiency. For years, the SOC Triangle has shaped how security teams are built and how they perform....

19+ hour, 1+ min ago  (410+ words) Microsoft is warning of a novel remote code execution (RCE) path possible through web-enabled AI agents, demonstrating the technique against Auto Gen Studio, its open-source interface for building and testing multi-agent applications. The demonstration showed that a malicious webpage rendered…...

1+ day, 2+ hour ago  (624+ words) A recent proof-of-concept attack against Microsoft's M365 Copilot Enterprise highlights what could be a much broader prompt injection threat based on a common way many AI-enhanced web services operate. Dubbed Search Leak, the attack hinged on a typical malicious objective: to…...

1+ day, 15+ hour ago  (732+ words) The Oracle Critical Security Patch update (CSPU) released this week contains 245 newly-announced fixes for supported on-premises software, some of which impact multiple products. It is in reaction to an industry trend to announce and fix security holes much more quickly,…...

1+ day, 16+ hour ago  (583+ words) Threat actors are abusing trusted platforms, including Google Ads, Git Lab pages, and Claude's shared chat feature, to trick users into executing malicious commands on their systems. Disguised as popular AI developer tools, the threat actors used Click Fix social…...

1+ day, 19+ hour ago  (448+ words) A massive credential-compromise campaign dubbed "Fortibleed" has been found to expose tens of thousands of Fortinet devices worldwide, with researchers warning of persistent attacker access to affected enterprise environments. Further details came from SOCRadar after its team independently discovered an…...

2+ day, 19+ hour ago  (277+ words) The upper ranks of corporate security are seeing a high rate of change as companies try to adapt to the evolving threat landscape. Many companies are hiring a chief security officer (CSO) or chief information security officer (CISO) for the…...

1+ day, 19+ hour ago  (644+ words) For years we've heard the frightening prediction that AI will take jobs away from people. It will and it already is, but that doesn't mean it won't also create new jobs and skills demands " like every other labor trend driven…...

2+ day, 13+ hour ago  (1384+ words) Every major technology shift changes cybersecurity. I've spent much of my career working through major technology transitions, from the rise of the commercial internet to mobile and cloud computing. Each shift created new opportunities for innovation, but it also created…...