Risk and Technology - Cyber Security Informer

The Independent Op-Ed: Australia’s social media ban won’t protect kids – it’ll put them more at risk

Joseph Steinberg

DECEMBER 21, 2024

Australia recently enacted legislation to ban children under 16 from using social media a policy that the Australian government plans to enforce through the use of untested age-verification technology.

Media

Media Risk Artificial Intelligence Government

AI Risks

Schneier on Security

OCTOBER 9, 2023

Reading the headlines, one would hope that the rapid gains in AI technology have also brought forth a unifying realization of the risks—and the steps we need to take to mitigate them. Some are concerned about far-future risks that sound like science fiction. AI could destroy humanity or pose a risk on par with nukes.

Risk

Risk Artificial Intelligence Technology Surveillance

On the Catastrophic Risk of AI

Schneier on Security

JUNE 1, 2023

Earlier this week, I signed on to a short group statement , coordinated by the Center for AI Safety: Mitigating the risk of extinction from AI should be a global priority alongside other societal-scale risks such as pandemics and nuclear war. Poses ‘Risk of Extinction,’ Industry Leaders Warn.”

Risk

Risk Artificial Intelligence Technology Internet

News Alert: Security Risk Advisors joins Microsoft Intelligent Security Association (MISA)

The Last Watchdog

JANUARY 7, 2025

Security Risk Advisors (SRA) is a leading cybersecurity firm dedicated to providing comprehensive security solutions to businesses worldwide. Security Risk Advisors SCALR XDR is both a platform, built on Microsoft Azure and a 247 monitoring service with Microsoft Sentinel. Philadelphia, Pa., Philadelphia, Pa., To learn more: [link].

Risk

Risk Penetration Testing Marketing Technology

News alert: Knocknoc raises seed funding to scale its just-in-time network access control technology

The Last Watchdog

MARCH 19, 2025

” Knocknoc orchestrates network infrastructure to remove risk exposure by tying users’ network access to their SSO authentication status. The post News alert: Knocknoc raises seed funding to scale its just-in-time network access control technology first appeared on The Last Watchdog.

Technology

Technology Media Telecommunications Authentication

From Risk Assessment to Action: Improving Your DLP Response

Security Affairs

OCTOBER 25, 2024

DLP is key in cybersecurity; a risk assessment identifies data risks, helping turn findings into real-world security improvements. So, how can you conduct a DLP risk assessment? What is a DLP Risk Assessment? Why Conduct a DLP Risk Assessment? Protecting sensitive data is what cybersecurity is all about.

Risk

Risk Cybersecurity Data breaches Cyber threats

See No Risk, Hear No Warning, Speak No Breach: The Cybersecurity Trap for Small Businesses

Jane Frankland

APRIL 10, 2025

Just like the three wise monkeys , some small business owners are unintentionally following a philosophy of see no risk, hear no warning, speak no threat when it comes to cybersecurity. Why Small Business Cybersecurity Matters More Than Ever In a supply chain world, your weakest link is someone elses risk exposure. Here’s how: 1.

Small Business

Small Business Risk Cybersecurity Cyber Risk

Massive Oracle Cloud Breach: 6M Records Exposed, 140k+ Tenants Risked

eSecurity Planet

MARCH 24, 2025

Expert analysis and the broader cybersecurity context Cybersecurity analysts have long warned that the rapid adoption of cloud technologies can outpace the implementation of necessary security frameworks. Beyond mass data exposure, there are heightened risks of credential compromise, corporate espionage, and potential extortion.

Risk

Risk Passwords Hacking Encryption

News alert: Aptori’s AI-driven platform reduces risk, ensures compliance — now on Google Marketplace

The Last Watchdog

MARCH 12, 2025

This new agentic AI solution leverages semantic reasoning to analyze application code and logic in real time, delivering deterministic vulnerability detection, contextual risk prioritization, and automated remediation. Aptoris AI-driven approach goes beyond traditional static analysis. Explore the details at the Aptori AI Security Center.

Risk

Risk Engineering Digital transformation Technology

Chinese-Made LiDAR Systems a National Security Risk, Think Tank Says

Security Boulevard

DECEMBER 4, 2024

China's growing presence in the global market for LiDAR, a remote sensing technology widely used in defense and commercial system, presents a national security risk for the United States, which already is dealing with intrusions into critical infrastructure networks by China-backed threat groups, according to a reporte.

Risk

Risk Marketing Technology Malware

DORA Compliance: A Practical Guide to Effective Third-Party Risk Management

Responsible Cyber

NOVEMBER 25, 2024

Effective from January 2025, DORA mandates that financial institutions implement robust measures to manage Information and Communication Technology (ICT) risks, with a significant emphasis on Third-Party Risk Management (TPRM).

Risk

Risk Cyber threats Technology Software

LW ROUNDTABLE: Wrist slap or cultural shift? SEC fines cyber firms for disclosure violations

The Last Watchdog

NOVEMBER 12, 2024

Related: Technology and justice systems The U.S. Avaya Holdings , Check Point Software Technologies , and Mimecast Limited each minimized or obscured the extent of security breaches linked to the SolarWinds Orion hack, impacting investor trust and highlighting the critical importance of clear, truthful communication.

CISO

CISO CSO Risk Cyber threats

Ted Chiang on the Risks of AI

Schneier on Security

MAY 12, 2023

as a broad set of technologies being marketed to companies to help them cut their costs, the question becomes: how do we keep those technologies from working as “capital’s willing executioners”? The question is worth considering across different meanings of the term “A.I.” If you think of A.I. Alternatively, if you imagine A.I.

Risk

Risk Software Technology Marketing

Third-Party Risk Management: Gartner’s Best Practices for CCEOs

Responsible Cyber

NOVEMBER 23, 2024

However, with every partnership comes potential risk. As networks expand to include third, fourth, and even fifth parties, the complexities of managing these risks multiply. For CCEOs and senior leaders, effective third-party risk management (TPRM) is not just a necessity—it’s a strategic imperative.

Risk

Risk Government Education Technology

Cybersecurity’s Comfort Zone Problem: Are you Guilty of it?

Jane Frankland

APRIL 15, 2025

Instead of focusing on accessible, impactful solutions like human risk management, we gravitate toward shiny new technologiestools and systems that feel exciting, measurable, and comfortably within our domain of expertise. Technology feels tangible, and it gives us a sense of control in a rapidly evolving threat landscape.

Risk

Risk Technology Cybersecurity Security Awareness

LW ROUNDTABLE: Predictive analytics, full-stack visualization to solidify cyber defenses in 2025

The Last Watchdog

DECEMBER 18, 2024

To wrap up our 2024 year-end roundtable, we turn our attention to new technologies and trends that are emerging to help bridge the gaps. Organizations face rising risks of AI-driven social engineering and personal device breaches. As compute costs decrease, autonomous operations and AI-discovered zero-day exploits loom.

Risk

Risk Threat Detection Technology Phishing

Over-the-Air Vulnerabilities in Advantech EKI Access Points Put Industrial Networks at Risk

Penetration Testing

NOVEMBER 30, 2024

Industrial environments are increasingly relying on wireless technologies to power critical operations.

Risk

Risk Wireless Technology Cybersecurity

GUEST ESSAY: The promise and pitfalls of using augmented reality– ‘AR’ — in cybersecurity

The Last Watchdog

NOVEMBER 11, 2024

The technology, which first emerged primarily in the world of gaming and entertainment, now promises to reshape our reality with interactive information and immersive experiences. In short, AR is undoubtedly a groundbreaking technology that will reinvent how we interact with the digital world. Related: Is the Metaverse truly secure?

Cybersecurity

Cybersecurity Social Engineering Technology Threat Detection

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

The Last Watchdog

DECEMBER 16, 2024

Businesses must adopt tools and automation capable of invoking immediate action, even at the risk of false positives. Raising security baselines across industries is essential, with risk mitigationnot acceptancebecoming the standard. Security teams will need to address the unique risks posed using LLMs in mission critical environments.

Cyber threats

Cyber threats CISO IoT Phishing

Newsweek Op-Ed: Oversight of the Management of Cybersecurity Risks: The Skill Corporate Boards Need, But, So Often, Do Not Have

Joseph Steinberg

MAY 23, 2024

To read the piece, please see Oversight of the Management of Cybersecurity Risks: The Skill Most Corporate Boards Need, But Don’t Have on Newsweek.com. Earlier today, Newsweek published an op-ed that I wrote on this important topic.

Risk

Risk Cyber Risk Cybersecurity Artificial Intelligence

From Notifications to Deepfakes: How Human Behaviour Is Shifting and What It Means for Cybersecurity

Jane Frankland

JANUARY 19, 2025

For us in cyber, how do we navigate these new digital threats especially when we layer in the rise of AI and deepfake technologies, and the stakes grow even higher? Deepfake Technology Amplifying Risks: The evolution and democratisation of deepfake technology have blurred the line between reality and fabrication.

Cybersecurity

Cybersecurity Technology Scams Risk

The Biggest Cybersecurity Risk We're Ignoring—And No, It's Not AI

SecureWorld News

FEBRUARY 28, 2025

But amidst all these flashy, futuristic threats, the biggest cybersecurity risk remains the same as it's always beenhumans. Especially upon the emergence of exponential technologies of the Metaverse and Neuro-technologies (like Neuralink) that is transcending the very nature of cyber and cognitive attacks.

Cybersecurity

Cybersecurity Risk Social Engineering Phishing

How Spread Betting Platforms Safeguard Traders Against Cyber Risks

IT Security Guru

JANUARY 30, 2025

This heavy reliance on technology, however, makes it an attractive target for hackers seeking to exploit vulnerabilities in trading systems and platforms. So, lets explore how spread betting platforms are rising to this challenge and ensuring that their platforms are cyber risk-free.

Cyber Risk

Cyber Risk Risk Penetration Testing Accountability

ChatGPT: Hopes, Dreams, Cheating and Cybersecurity

Lohrman on Security

JANUARY 29, 2023

So what are the opportunities and risks with using this technology across different domains? ChatGPT is an AI-powered chatbot created by OpenAI.

Cybersecurity

Cybersecurity Technology Risk

SHARED INTEL Q&A: Forrester highlights why companies need to strive for ‘cryptoagility’– today

The Last Watchdog

MARCH 24, 2025

Its a question of how much risk your organization is willing to take, based on the data you must protect and its long-term value. We recommend using Dr. Michele Moscas theorem of quantum risk against an optimistic vs. pessimistic probability analysis. This is where the concern of harvest now, decrypt later attacks apply.

Encryption

Encryption Financial Services Technology Risk

How Cryptocurrency Turns to Cash in Russian Banks

Krebs on Security

DECEMBER 11, 2024

An analysis of their technology infrastructure shows that all of these exchanges use Russian email providers, and most are directly hosted in Russia or by Russia-backed ISPs with infrastructure in Europe (e.g. A machine-translated version of Flymoney, one of dozens of cryptocurrency exchanges apparently nested at Cryptomus.

Cryptocurrency

Cryptocurrency Banking Cybercrime Advertising

News alert: INE Security shares cyber hygiene guidance for small- and medium-sized businesses

The Last Watchdog

OCTOBER 23, 2024

As small businesses increasingly depend on digital technologies to operate and grow, the risks associated with cyber threats also escalate. INE Security recommends establishing a routine for updating and patching software, which can significantly reduce the risk of a breach. Cary, NC, Oct.

Small Business

Small Business Data breaches Backups Passwords

PwC Survey Surfaces Lack of Focus on Cyber Resiliency

Security Boulevard

OCTOBER 28, 2024

A global survey of 4,042 business and technology executives suggests that much work remains to be done to ensure the cyber resiliency of organizations and prioritize how resources are allocated based on the actual risk cybersecurity threats represent.

Technology

Technology Risk Cybersecurity Security Awareness

Top Cybersecurity Trends to Watch Out For in 2025

Centraleyes

DECEMBER 16, 2024

As we approach 2025, the cybersecurity landscape is evolving rapidly, shaped by technological advancements, regulatory shifts, and emerging threats. Tools like ChatGPT and Bard, powered by large language models, showcase how generative AI transforms business processesbut they also pose new risks. The challenge?

Cybersecurity

Cybersecurity Insurance Cyber Insurance Risk

News alert: SecPod launches ‘Saner Cloud’ — CNAPP platform for real-time, automated security

The Last Watchdog

MARCH 19, 2025

Saner Cloud is designed to address these challenges by providing a unified security platform that continuously detects, prioritizes, and remediates vulnerabilities, misconfigurations, identity risks, and compliance violationsautomatically and in real time. Cloud security has long been reactivedetecting risks but failing to fix them.

Cyber threats

Cyber threats Risk Technology Media

ISACA impressions: AI, risk and resilience feature at the 2025 conference

BH Consulting

APRIL 16, 2025

She clearly emphasised that although retail, finance and operational technologies are rapidly adopting AI, human expertise remains irreplaceable. Dr. Ng emphasised the balancing act between innovation and risk. Cloud calls for cooperation in a changed risk landscape Has computing really changed with the cloud?

Risk

Risk Government Ransomware Retail

LW ROUNDTABLE: Compliance pressures intensify as new cybersecurity standards take hold

The Last Watchdog

DECEMBER 18, 2024

This shift is expected to place significant pressure on organizations that haven’t yet developed trusted data to manage risk effectively. To mitigate risks, businesses will invest in modern, privacy-enhancing technologies (PETs), such as trusted execution environments (TEEs) and fully homomorphic encryption (FHE).

Cybersecurity

Cybersecurity CISO Risk Government

Cybersecurity Snapshot: Tenable Highlights Risks of AI Use in the Cloud, as UK’s NCSC Offers Tips for Post-Quantum Cryptography Adoption

Security Boulevard

MARCH 21, 2025

Check out key findings and insights from the Tenable Cloud AI Risk Report 2025. 1 - Tenable: Orgs using AI in the cloud face thorny cyber risks Using AI tools in cloud environments? 1 - Tenable: Orgs using AI in the cloud face thorny cyber risks Using AI tools in cloud environments?

Risk

Risk IoT Cybersecurity Manufacturing

Report Unveils Cybersecurity Leaks in U.S. Drinking Water Systems

SecureWorld News

NOVEMBER 18, 2024

Among the key findings: Widespread vulnerabilities: The OIG's passive assessment revealed critical or high-risk vulnerabilities in 97 drinking water systems serving more than 26.6 Invest in security technology: Utilize advanced security technologies to protect critical infrastructure and data. million people.

Cybersecurity

Cybersecurity Risk Penetration Testing Technology

AI tool GeoSpy analyzes images and identifies locations in seconds

Malwarebytes

JANUARY 21, 2025

Graylark Technologies who makes GeoSpy says its been developed for government and law enforcement. But the investigative journalists from 404 Media report thatthe tool has also been used for months by members of the public, with many making videos marveling at the technology, and some asking for help with stalking specific women.

Media

Media Artificial Intelligence Identity Theft Surveillance

What are the key Threats to Global National Security?

IT Security Guru

NOVEMBER 1, 2024

As technology advances, so do the methods and motivations of those who seek to disrupt global stability. The risk posed by these actors continues to grow as nations rely increasingly on interconnected digital infrastructure. In today’s interconnected world, national security concerns have evolved beyond traditional military threats.

Technology

Technology Cyber Attacks Government Social Engineering

Another Event-Related Spyware App

Schneier on Security

NOVEMBER 15, 2022

But it risks giving the Egyptian government permission to read users’ emails and messages. The app also provides Egypt’s Ministry of Communications and Information Technology, which created it, with other so-called backdoor privileges, or the ability to scan people’s devices.

Spyware

Spyware Technology Encryption Government

Third-Party Identities: The Weakest Link in Your Cybersecurity Supply Chain

Security Affairs

OCTOBER 28, 2024

A long supply chain adds third-party risks, as each partner’s security affects your own, making identity and access management more challenging. And therein lies the problem: Your enterprise could be at risk if their credentials are unsafe. So, what’s a bit of increased risk where usernames and passwords are concerned?

B2B

B2B Cybersecurity Risk Identity Theft

Reducing the Crushing Burden of Cybersecurity, Privacy Laws in the UK

SecureWorld News

NOVEMBER 17, 2024

The interplay of domestic and international regulations presents significant challenges for organizations, demanding significant investments in technology, personnel, and processes. This can lead to increased compliance costs, operational challenges, and potential reputational risks. of the UK's business population, 5.5

Cybersecurity

Cybersecurity Risk Healthcare Technology

SEC Fines Four Companies $7M for Misleading Cybersecurity Disclosures

SecureWorld News

OCTOBER 23, 2024

Check Point Software Technologies Ltd., The SEC charged the companies with "materially misleading disclosures regarding cybersecurity risks and intrusions." The SEC further noted that Unisys lacked proper internal controls to ensure accurate and timely reporting of such high-risk incidents. Check Point Software Technologies Ltd.

Cybersecurity

Cybersecurity Risk Hacking Software

How threat actors can use generative artificial intelligence?

Security Affairs

DECEMBER 1, 2024

The increasing sophistication of these technologies has made it harder than ever to distinguish real content from fake. A study by the Massachusetts Institute of Technology (MIT) presented in 2019 revealed that deepfakes generated by AI could deceive humans up to 60% of the time. As the technology evolves, so will its misuse.

Artificial Intelligence

Artificial Intelligence Phishing Media Cyber threats

Popular VPNs are routing traffic via Chinese companies, including one with link to military

Malwarebytes

APRIL 3, 2025

Chinese company 360 Security Technology, also known as Qihoo 360, purchased Lemon Seed, according to its 2019 annual report. The Entity List identifies entities that the US believes pose a risk to its national security. The company developed several other VPNs in the top 100, including VPN Proxy Master and Thunder VPN.

VPN

VPN Mobile Government Technology

Burnout in SOCs: How AI Can Help Analysts Focus on High-Value Tasks

Security Affairs

DECEMBER 5, 2024

SOC analysts, vital to cybersecurity, face burnout due to exhausting workloads, risking their well-being and the effectiveness of organizational defenses. As such, analysts are hit with a deluge of low-quality alerts, increasing the risk of missing genuine threats. But it doesn’t have to be this way.

Artificial Intelligence

Artificial Intelligence Data collection Cybersecurity Risk

TikTok ordered to close Canada offices following “national security review”

Malwarebytes

NOVEMBER 8, 2024

The Government of Canada ordered the TikTok Technology Canada Inc. The government is taking action to address the specific national security risks related to ByteDance Ltd.’s s operations in Canada through the establishment of TikTok Technology Canada, Inc.

Media

Media Identity Theft Government Technology

The Independent Op-Ed: Australia’s social media ban won’t protect kids – it’ll put them more at risk

AI Risks

Trending Sources

On the Catastrophic Risk of AI

News Alert: Security Risk Advisors joins Microsoft Intelligent Security Association (MISA)

News alert: Knocknoc raises seed funding to scale its just-in-time network access control technology

From Risk Assessment to Action: Improving Your DLP Response

See No Risk, Hear No Warning, Speak No Breach: The Cybersecurity Trap for Small Businesses

Massive Oracle Cloud Breach: 6M Records Exposed, 140k+ Tenants Risked

News alert: Aptori’s AI-driven platform reduces risk, ensures compliance — now on Google Marketplace

Chinese-Made LiDAR Systems a National Security Risk, Think Tank Says

DORA Compliance: A Practical Guide to Effective Third-Party Risk Management

LW ROUNDTABLE: Wrist slap or cultural shift? SEC fines cyber firms for disclosure violations

Ted Chiang on the Risks of AI

Third-Party Risk Management: Gartner’s Best Practices for CCEOs

Cybersecurity’s Comfort Zone Problem: Are you Guilty of it?

LW ROUNDTABLE: Predictive analytics, full-stack visualization to solidify cyber defenses in 2025

Over-the-Air Vulnerabilities in Advantech EKI Access Points Put Industrial Networks at Risk

GUEST ESSAY: The promise and pitfalls of using augmented reality– ‘AR’ — in cybersecurity

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

Newsweek Op-Ed: Oversight of the Management of Cybersecurity Risks: The Skill Corporate Boards Need, But, So Often, Do Not Have

From Notifications to Deepfakes: How Human Behaviour Is Shifting and What It Means for Cybersecurity

The Biggest Cybersecurity Risk We're Ignoring—And No, It's Not AI

How Spread Betting Platforms Safeguard Traders Against Cyber Risks

ChatGPT: Hopes, Dreams, Cheating and Cybersecurity

SHARED INTEL Q&A: Forrester highlights why companies need to strive for ‘cryptoagility’– today

How Cryptocurrency Turns to Cash in Russian Banks

News alert: INE Security shares cyber hygiene guidance for small- and medium-sized businesses

PwC Survey Surfaces Lack of Focus on Cyber Resiliency

Top Cybersecurity Trends to Watch Out For in 2025

News alert: SecPod launches ‘Saner Cloud’ — CNAPP platform for real-time, automated security

ISACA impressions: AI, risk and resilience feature at the 2025 conference

LW ROUNDTABLE: Compliance pressures intensify as new cybersecurity standards take hold

Cybersecurity Snapshot: Tenable Highlights Risks of AI Use in the Cloud, as UK’s NCSC Offers Tips for Post-Quantum Cryptography Adoption

Report Unveils Cybersecurity Leaks in U.S. Drinking Water Systems

AI tool GeoSpy analyzes images and identifies locations in seconds

What are the key Threats to Global National Security?

Another Event-Related Spyware App

Third-Party Identities: The Weakest Link in Your Cybersecurity Supply Chain

Reducing the Crushing Burden of Cybersecurity, Privacy Laws in the UK

SEC Fines Four Companies $7M for Misleading Cybersecurity Disclosures

How threat actors can use generative artificial intelligence?

Popular VPNs are routing traffic via Chinese companies, including one with link to military

Burnout in SOCs: How AI Can Help Analysts Focus on High-Value Tasks

TikTok ordered to close Canada offices following “national security review”

Stay Connected