One in five UK companies has had potentially sensitive corporate data exposed via employee use of generative AI (GenAI), a new report has revealed. London-headquartered cybersecurity services provider RiverSafe polled 250 CISOs nationwide to compile its new report, Underfunded and Under Reported: Threats, Breaches, and Budgets. The data leak risks of unmanaged GenAI use help […]
Canada’s financial intelligence agency FINTRAC has announced pulling its corporate systems offline due to a cyber incident that struck over the weekend. In a statement on its website, the agency said: “Over the last 24 hours, FINTRAC has and continues to manage a cyber incident. The incident does not involve the Centre’s intelligence or classified […]
APIs now comprise nearly three-quarters (71%) of web traffic, posing a significant threat to corporate cybersecurity by expanding the cyber-attack surface, according to Imperva. The security company revealed the findings in its Imperva State of API Security Report, which was compiled from intelligence gathered by its products. It found that attacks on the business logic […]
National Amusements, the cinema chain and corporate parent giant of media giants Paramount and CBS, has confirmed it experienced a data breach in which hackers stole the personal information of tens of thousands of people. The private media conglomerate said in a legally required filing with Maine’s attorney general that hackers stole personal information on […]
The leader of the Securities and Exchange Commission’s Division of Corporate Finance downplayed concerns that the agency’s new cybersecurity rules will provide a roadmap to threat groups about their attacks or place an undue burden on security executives. Erik Gerding, director of the Division of Corporate Finance, said staff carefully considered those issues as part […]
Over the past few years, SaaS has developed into the backbone of corporate IT. Service businesses, such as medical practices, law firms, and financial services firms, are almost entirely SaaS based. Non-service businesses, including manufacturers and retailers, have about 70% of their software in the cloud. These applications contain a wealth of data, from minimally […]
A recent malvertising campaign has been found focusing on corporate users who are downloading the widely used web conferencing application, Webex. In this campaign, malicious actors have purchased an advertisement that mimics Cisco’s branding, and it appears as the top result when conducting a Google search. Diving into details The ad appears completely legitimate at […]
A new malvertising campaign is targeting corporate users who are downloading the popular web conferencing software Webex. Threat actors have bought an advert that impersonates Cisco’s brand and is displayed first when performing a Google search. We are releasing this blog to warn users about this threat as the malicious ad has been online for almost […]