Security News

1Password, a popular password management platform used by over 100,000 businesses, suffered a security breach after hackers gained access to its Okta ID management tenant. "We detected suspicious activity on our Okta instance related to their Support System incident. After a thorough investigation, we concluded that no 1Password user data was accessed," reads a very brief security incident notification from 1Password CTO Pedro Canahuati.

Copilotization of all things continues... as helper offers incident reports to share with the boss and more Microsoft is opening up the early access program for its flagship cybersecurity AI...

"Security Copilot is an AI assistant for security teams that builds on the latest in large language models and harnesses Microsoft's security expertise and global threat intelligence to help security teams outpace their adversaries," said Vasu Jakkal, corporate vice president, security, compliance, identity, and management at Microsoft. Available in private preview since March 2023, Security Copilot allows security analysts to submit prompts in natural language, much like ChatGPT, to get actionable responses and simplify threat hunting.

Microsoft announced this week that its ChatGPT-like Security Copilot AI assistant is now available in early access for some customers.Security Copilot, Redmond's AI-driven security analysis tool, makes it faster for security teams to counter threats using Microsoft's global threat intelligence expertise and the latest large language models.

Due to the rapid evolution of technology, the Internet of Things (IoT) is changing the way business is conducted around the world. This advancement and the power of the IoT have been nothing short...

Highlighting the potential danger from human risk, the research cited a survey of 1,310 workers which revealed a whopping 69 percent admitted to having bypassed their own organisations' cybersecurity guidance in the past 12 months. In order to equip cyber security professionals with the knowledge and tools they need to combat these relentless and fast-evolving internal cyber threats, the SANS Institute, a trusted resource for cybersecurity training, certifications and research, is celebrating Cybersecurity Awareness Month in October.

The complexity and change experienced by organisations as they grow is one reason we are seeing similar cyber security risks to a decade ago, says Rapid7's CISO Jaya Baloo. Speaking on ethics in information security at the 2023 Australian Cyber Conference, Baloo said the Australian market has truly woken up to cyber risks in the last year due to a number of high-profile data breaches that have affected millions of Australians.

Sonatype's 9th annual State of the Software Supply Chain also covers regulations and how AI could help developers protect organizations from security risks. Attacks on software supply chains increased dramatically in 2023, with an increase of 200% compared to 2022, according to Sonatype's new report.

Financial data is much more than just a collection of numbers; it is a crucial component of any business and a prime target for cybercriminals. It's important to understand that financial records...

Switzerland-not low stakes-uses online voting for national elections. Like any internet voting system, it has inherent security vulnerabilities: if there are malicious insiders, they can corrupt the vote count; and if thousands of voters' computers are hacked by malware, the malware can change votes as they are transmitted.