This blog is part of the ongoing “I&O Perspectives” series, which features insights from industry experts about the impact of current threats, networking, and other cybersecurity trends. In the first part of this blog series, we observed the inception of an internet-based model where corporate networks have no borders anymore, home is the office, applications are in the cloud. This paradigm shift makes connectivity ubiquitous. But security risks have dramatically increased.

I know when to log out Know when to log in Get things done In the spirit of David Bowie, let's explore how to navigate the labyrinth of privileged access management without getting "Under Pressure." No one wants to mistype a common command, copy their proprietary data to a public location, or delete their operating system. Having multiple accounts—one for regular activities and specific privileged accounts to do sensitive tasks—ought to focus effort and prevent mistakes.

The availability of deepfake technology has given threat actors a valuable tool for social engineering attacks, according to researchers at BlackBerry. “Typically, online scams prey on the presumed weaknesses and susceptibility of the targeted individual,” the researchers write.

Trustwave SpiderLabs is prepped to launch its newest threat intelligence research, the 2024 Trustwave Risk Radar Report: Financial Services Sector. The upcoming report, which is set to be released on September 10, promises to be an indispensable resource for cybersecurity professionals. This comprehensive report not only sheds light on the modus operandi of a dominant ransomware gang but also delves into the persistent use of phishing and brute-force attacks to compromise credentials.

Today’s social platforms are “public by default”, from Instagram and LinkedIn to Venmo and Strava.

Here are three examples that are worth your attention. Oh, what could have been avoided.

JFrog’s security research team continuously monitors open-source software registries, proactively identifying and addressing potential malware and vulnerability threats to foster a secure and reliable ecosystem for open-source software development and deployment. This blog details a PyPI supply chain attack technique the JFrog research team discovered had been recently exploited in the wild.

As Generative AI (GenAI) and Large Language Models (LLMs) become integral to modern apps, we face a critical challenge of protecting sensitive user data from inadvertent exposure. In this article, we’ll explore the importance of content filtering in LLM-powered apps, and provide strategies for its implementation. Looking for step-by-step tutorials on prompt sanitization for OpenAI, Langchain, Anthropic, and more? Skip down to the “Tutorials & further learning” section below.

According to the FBI, credit card skimming costs individuals and banks approximately $1 billion annually. You can spot a credit card skimmer by searching for a tampered security seal, checking for misalignments, wiggling the card reader or looking inside the card reader. Continue reading to learn more about credit card skimmers, how to spot them and what you can do if your card gets skimmed.

With the adoption of AI in almost every sphere of our lives and its unending advancement, cyberattacks are rapidly increasing. Threat actors with malicious intent use AI tools to create phishing emails and other AI-generated content to bypass traditional security measures. On the bright side, the security capabilities of AI are limitless. AI-enhanced attacks refer to cybersecurity events that use artificial intelligence to compromise individuals' and organizations' safety.