Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

AI Strategy: Building a Future-Proof Framework

Artificial intelligence (AI) adoption is fast becoming a strategic necessity for modern businesses. With adoption continuing at pace, a carefully considered strategy is essential for gaining or maintaining a competitive advantage, managing downside risk and addressing the continued regulatory, legal, ethical and operational complexities presented by AI.

Accelerated Response to a High-Profile Data Breach

A leading insurance and asset management company was hit by a large-scale data breach, impacting more than four million customer and employee records and resulting in widespread media attention. Through an accelerated response with emergency call center support, a dedicated support website and expedited notice mailing, Kroll’s Breach Notification services ensured the business was able to take quick and decisive action following this globally significant security event.

Continuous Penetration Testing: How to Mature Your Approach to Assessments

As cyber threats grow more sophisticated and persistent, traditional penetration testing methods, often conducted quarterly or annually, can miss key vulnerabilities and lack coverage. Continuous penetration testing enables organizations to identify and remediate vulnerabilities in real time, providing product and software teams with up-to-date insight and evidence to advance security and enhance regulatory compliance.

Let Data Be Your Guide: The Value of Data Security Posture Management in the Zero Trust Journey

Which is the best aspect to focus on first: network or identity? That’s a question many organizations ask when planning their Zero Trust journey. While both are key pillars to address in a Zero Trust journey, the overarching approach should be to start with your data and let that data be your guide. Data Security Posture Management (DSPM) plays a unique role in enabling businesses to achieve this thanks to its capacity for identifying potentially insecure combinations of identity, access and data.

New AMOS Infection Vector Highlights Risks around AI Adoption

During a recent investigation into AMOS InfoStealer, Kroll Threat Intelligence Team has discovered a troubling new delivery vector that leverages the growing trust users place in AI tools. In this case, attackers leveraged ChatGPT as the source of guidance, tricking victims into initiating the infection, presenting it as a legitimate solution to a common technical problem. Victims were tricked into believing they were running a harmless command to fix a sound issue on their Mac device.