Security News > 2023 > May

Quantum Computing Cybersecurity Preparedness Act has been signed into law, emphasizing the significance of a switch to post-quantum computing. The Quantum Computing Cybersecurity Preparedness Act requires federal agencies to maintain an inventory of the cryptographic assets they have in use, assess their quantum vulnerabilities, perform proof-of-concept testing of post-quantum cryptographic algorithms, and then prioritize the migration of those assets.

Legal and compliance leaders should address their organization's exposure to six specific ChatGPT risks, and what guardrails to establish to ensure responsible enterprise use of generative AI tools, according to Gartner. "The output generated by ChatGPT and other large language model tools are prone to several risks," said Ron Friedmann, senior director analyst in in the Gartner Legal & Compliance Practice.

Their prospects of picking up your work have receded further, after the US Department of the Treasury's Office of Foreign Assets Control made it illegal to do business with one: Chinyong Information Technology Cooperation Company, aka Jinyong IT Cooperation Company. Treasury asserted the outsourcer "Employs delegations of DPRK IT workers that operate in Russia and Laos.".

"Based on the investigation, it was determined that information potentially accessed in the incident varied for each individual and may have included personal, medical, health insurance or financial information, and in some limited cases, Social Security numbers," according to a notice on Apria's website. The healthcare biz also provided more details about what happened in a data security breach notification letter sent to 1,869,598 people.

When activated, the Windows Copilot sidebar remains consistent across applications, programs, and windows, ready to serve as your personal assistant. Integrating Bing and ChatGPT plugins in Windows Copilot opens avenues for enhanced AI capabilities and experiences.

A relatively unknown advanced persistent threat group named 'GoldenJackal' has been targeting government and diplomatic entities in Asia since 2019 for espionage. Kaspersky has been tracking GoldenJackal since 2020, and today reports that the threat actors have had notable activity in Afghanistan, Azerbaijan, Iran, Iraq, Pakistan, and Turkey.

Microsoft is adding native support for RAR, 7-Zip, and GZ archives to an upcoming version of Windows 11 expected this week. Today, Microsoft announced a flurry of news at the Build 2023 conference, including tomorrow's Windows 11 Moment 3 update and the new AI-powered Windows Copilot.

Microsoft has updated PowerToys with two new tools that help control multiple Windows systems with the same keyboard/mouse and quickly preview various file types. As its name implies, the new Mouse Without Borders utility can let users control up to four computers using a single mouse and keyboard.

Economic perils notwithstanding, 94% of tech leaders are committed to investing in new tools and technologies, including AI, according to a survey by EY. The new poll suggests tech leaders view this investment strategy, particularly for cybersecurity, as a way to weather geopolitical uncertainty and the economic downturn. Ken Englund, the technology, media and telecommunications leader for EY Americas, said in the press release about this EY survey that the results suggest resiliency in the face of buffeting uncertainties.

Public source code repositories, from Sourceforge to GitHub, from the Linux Kernel Archives to ReactOS.org, from PHP Packagist to the Python Package Index, better known as PyPI, are a fantastic source of free operating systems, applications, programming libraries, and developers' toolkits that have done computer science and software engineering a world of good. In cases like that, you can save time by searching for a package that already exists in one of the many available repositories, and hooking that external package into your own tree of source code.