Technology

Building DLP for a ChatGPT World

Apr 17, 2025 By Chris Martinez In Nightfall

Generative AI has gone from a novelty to an essential part of daily workflows across all teams at an organization. Whether it’s ChatGPT, Microsoft Copilot, Claude, or Google Gemini, employees are using chatbots to copy, paste, summarize, and query data at a pace and scale we have never seen before. Unfortunately, data security has not been a fundamental feature of generative AI as the technology’s popularity and functionality has exploded.

Read Post

Nightfall

Read more about Building DLP for a ChatGPT World

Why You Can't Secure APIs You Don't Know Exist #APIsecurity #ShadowAPIs #Cybersecurity

Apr 17, 2025 By Wallarm In Wallarm

Most orgs don’t even know how many APIs they have. And if you can’t see them — you definitely can’t secure them. Wallarm shows why API visibility is the foundation of modern protection.

View Video

Wallarm

API
Security

Read more about Why You Can't Secure APIs You Don't Know Exist #APIsecurity #ShadowAPIs #Cybersecurity

Essential Features to Look for in a Shovel for Metal Detecting Success

Apr 17, 2025 By SecuritySenses In SecuritySenses

Unearthing treasures with a metal detector requires precision, patience, and the right equipment. A dependable shovel for metal detecting is more than a digging tool-it's a partner in preserving artifacts and maximizing efficiency. The perfect shovel enhances your ability to extract coins, relics, or jewelry without damage, whether you're sweeping beaches or old homesteads. With countless designs available, focusing on key features like blade strength, handle comfort, and portability ensures success.

Read Post

SecuritySenses

Read more about Essential Features to Look for in a Shovel for Metal Detecting Success

SOAR on Azure Now Available

Apr 16, 2025 By Jason Conger In Splunk

The market-leading momentum of our partnership and ongoing engineering roadmap with Microsoft continues! Splunk Security Orchestration, Automation and Response (SOAR) is now available as a native SaaS solution on Azure, enabling customers to even further improve their security posture and create greater digital resilience. Splunk SOAR on Azure acts as the efficiency engine for SOC analysts by connecting Azure services and third-party tools, automating workflows and tasks, and speeding response times.

Read Post

Splunk

Read more about SOAR on Azure Now Available

The Risk of Third-Party AI Trained on User Data

Apr 16, 2025 By Greg Pollock In UpGuard

One of the confidentiality concerns associated with AI is that third parties will use your data inputs to train their models. When companies use inputs for training, the inputs may later become or inform outputs, potentially exposing confidential information to other people.

Read Post

UpGuard

Read more about The Risk of Third-Party AI Trained on User Data

Vector and Embedding Weaknesses in AI Systems

Apr 16, 2025 By Bar-El Tayouri In Mend

AI security threats are evolving at roughly the same speed that AI itself is: extremely fast. One of the most recent—and least understood—vulnerabilities involves vector and embedding weaknesses. These issues have gained attention with their addition to the OWASP Top 10 for LLMs, and the risks are becoming more urgent as Retrieval-Augmented Generation (RAG) continues to dominate enterprise AI adoption.

Read Post

Mend

Read more about Vector and Embedding Weaknesses in AI Systems

Empowering US federal AI initiatives: How Elastic helps agencies comply with M-25-21 and M-25-22

Apr 16, 2025 By Eric Cobb, In Elastic

A practical guide for chief AI officers and technology leaders implementing federal AI governance The US Office of Management and Budget's recent memoranda — M-25-21, "Accelerating Federal Use of AI through Innovation, Governance, and Public Trust," and M-25-22, "Driving Efficient Acquisition of Artificial Intelligence in Government" — establish comprehensive frameworks for federal agencies that implement AI systems while maintaining appropriate safeguards.

Read Post

Elastic

Read more about Empowering US federal AI initiatives: How Elastic helps agencies comply with M-25-21 and M-25-22

CIEM and Secure Cloud Access: Best Practices From Wiz and CyberArk

Apr 16, 2025 By Sam Flaster and Shaked Rotlevi In CyberArk

Let’s cut the fluff out of cloud security. As you build and innovate in the cloud, you create a maze of roles, permissions and resources that you must secure thoughtfully. The dirty secret is that as organizations launch and build new infrastructure, they also create a labyrinth of permissions that attackers can exploit if they get their hands on a valid password or credential.

Read Post

CyberArk

Read more about CIEM and Secure Cloud Access: Best Practices From Wiz and CyberArk

Securing the AI-Driven Development Environment

Apr 16, 2025 By Natalie Tischler In Veracode

In 2025, AI is further transforming how software is built—accelerating code generation, testing, and deployment. But while it boosts speed and productivity, AI-driven development introduces new risks that developers and security teams can’t afford to ignore. To secure this next-gen development environment, organizations must understand the evolving threat landscape and adopt smarter, more integrated security strategies.

Read Post

Veracode

Read more about Securing the AI-Driven Development Environment

Reduce Server Failures with Cloudflare Load Balancing

Apr 16, 2025 By Cloudflare In Cloudflare

Want a faster, more reliable website? Learn how Cloudflare’s Load Balancing ensures optimal performance by distributing traffic across multiple servers worldwide. Discover how Global Server Load Balancing (GSLB) minimizes downtime and reduces latency by routing users to the nearest, healthiest server.

View Video