RSA Conference 2024: AI and the Future Of Security
RSA 2024 explored AI's impact on security, featuring sessions on AI governance, LLMs, cloud security, and CISO roles. Here are just a few of the expert insights shared.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Latest News
Two new checks for the ChatGPT macOS app
With the recent announcement of OpenAI’s ChatGPT desktop application for macOS, users gain access to LLM workflows outside of their browser. ChatGPT’s broad adoption by employees across industries, and around the world, has put employers, compliance, and security teams into high gear as they seek to balance the gains made in productivity with the potential risks of how these tools are being used.
The Dangers of Credit Cards That Many People Ignore
The rise of credit cards has undoubtedly made our lives easier in many ways. With just a swipe or tap, we can purchase goods and services without carrying around cash. However, there's always the risk of falling into credit card debt. In fact, according to a recent study, the average American household carries over $6,000 in credit card debt. In this article, we will discuss the dangers of credit cards that many people ignore. We will also discuss how a credit card debt defense attorney can assist in managing this type of debt.
Smartphones: The Usual Suspects in Car Accident Cases
Smartphones have become such an integral part of our way of life that we cannot seem to do anything without them. We're always chatting, answering calls, going through social media, etc., and the most dangerous part is that we even do these things while driving. Such an action can be categorized as distracted driving, which is engaging in other activities as a driver that distract you from paying attention to the road.
AWS WAF vs. AppTrana WAF
AWS WAF, a widely used security tool from Amazon Web Services, is a web application firewall designed to safeguard web application servers against various online threats. The tight integration of AWS WAF with key AWS services, including Amazon CloudFront CDN, Application Load Balancer (ALB), and Amazon API Gateway, ensures a comprehensive security approach. AWS WAF can also protect services offered by other providers as long as the content is delivered via the CloudFront distribution network.
What is a Third-Party Risk Assessment in Cybersecurity?
A third-party risk assessment pulls risk vendor risk data to help cybersecurity teams understand how to best mitigate supplier risks. Though the field of Third-Party Risk Management (TPRM) is evolving to prioritize compliance, security, and supply chain risk, third-party risk assessments could also be used to uncover an organization’s exposure to financial, operational, and reputational risks stemming from its third-party network. Learn how UpGuard streamlines Third-Party Risk Management >
Applying Zero Trust to Security Service Edge (SSE)
The current situation with legacy on-premises security defenses trying to support a hybrid work environment and zero trust principles is challenging for companies. Complications can include poor user experience, complexity of disjointed solutions, high cost of operations, and increased security risks with potential data exposure. Simple allow and deny controls lack an understanding of transactional risk to adapt policy controls and provide real-time coaching to users.
Vanta's approach to AI Risk & Secure Code Training
We’re excited to share that we've expanded Vanta’s security and privacy training library with additional training modules, including AI Risk, Secure Coding, Insider Threat, and Social Engineering.
Caught in the act: Ransomware attack sticks to our AI-created honeypot
Here is the story of how we caught a ransomware attack in our research honeypot. Ransomware attacks on enterprise organizations lead the news. See Change Healthcare and Ascension. Attackers spend their time on the victim’s network, exfiltrate gigabytes of sensitive data, then lock victim’s systems — and ask for millions of dollars in ransom payment. We also hear news about how AI is used maliciously.
How Do Cybercriminals Gather Personal Information About Their Targets?
Cybercriminals gather personal information about their targets by using social engineering techniques, looking at social media accounts and collecting data that gets leaked from public data breaches. The more personal information a cybercriminal can collect about their target, the easier it is for them to launch cyber attacks that their targets will easily fall for. Continue reading to learn more about how cybercriminals gather their target’s personal information and how you can keep your data safe.