Author: nlqip

A group of suspected Chinese cyberespionage actors named ‘Velvet Ant’ are deploying custom malware on F5 BIG-IP appliances to gain a persistent connection to the internal network and steal data. According to a Sygnia report who discovered the intrusion after they were called in to investigate the cyberattack, Velvet Ant established multiple footholds using various…

Read More

Now entering its sixth year, the CSO Hall of Fame spotlights outstanding leaders who have significantly contributed to the practice of information risk management and security. The CSO Hall of Fame honors executives who have spent at least 10 years in a CSO, CISO or other C-level security position, advancing the CSO role while demonstrating…

Read More

For more than a decade, the CSO Awards have recognized security projects that demonstrate outstanding thought leadership and business value.  The award is an acknowledged mark of cybersecurity excellence. Winners will be recognized in-person at the CSO Conference + Awards at the We-Ko-Pa Casino Resort, Fort McDowell, AZ October 21-23, 2024. Over the course of the event, attendees…

Read More

‘We both need to succeed together for Databricks to succeed,’ says Databricks co-founder and CEO Ali Ghodsi at the company’s Data+AI Summit. Databricks is “doubling down” on working with its systems integrator partners, with co-founder and CEO Ali Ghodsi viewing services partners as an important part of the vendor’s go-to-market and widespread adoption of artificial…

Read More

3uu–Shariff Wrapper  The Shariff Wrapper plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin’s ‘shariff’ shortcode in all versions up to, and including, 4.6.13 due to insufficient input sanitization and output escaping on user supplied attributes such as ‘borderradius’ and ‘timestamp’. This makes it possible for authenticated attackers, with contributor-level access and…

Read More

AWS, Nvidia and Intel veteran Bratin Saha—who helped build AWS AI products like Amazon Bedrock and Amazon Q—has left to join DigitalOcean as its new chief product and technology officer. DigitalOcean has nabbed Amazon Web Services’ AI general manager, Bratin Saha, as its new chief product and technology officer, a move the company said will…

Read More

Executives from major cybersecurity vendors such as Palo Alto Networks and Proofpoint see the arrival of GenAI as a different story from prior technology shifts — with the need for having massive customer data being paramount. The history of technology shifts in recent decades has tended to center around scrappy upstarts, which burst onto the…

Read More

The fact that now both Nvidia and AMD have significantly sped up development and plan to release data center accelerator chips every one year instead of every two years is creating double the trouble for Intel, which is trying to catch up with its Gaudi AI chips but remains behind the performance curve. If Nvidia’s…

Read More

Jun 17, 2024NewsroomRouter Security / Vulnerability ASUS has shipped software updates to address a critical security flaw impacting its routers that could be exploited by malicious actors to bypass authentication. Tracked as CVE-2024-3080, the vulnerability carries a CVSS score of 9.8 out of a maximum of 10.0. “Certain ASUS router models have authentication bypass vulnerability,…

Read More

A 22-year-old British national allegedly linked to the Scattered Spider hacking group and responsible for attacks on 45 U.S. companies has been arrested in Palma de Mallorca, Spain. The suspect is suspected of being a leader of a cybercrime gang dedicated to stealing data and cryptocurrencies from organizations and then extorting them for not publishing…

Read More