Security News

U.K. and U.S. Agree to Collaborate on the Development of Safety Tests for AI Models
2024-04-05 20:13

Figure A. Both countries will now "Align their scientific approaches" and work together to "Accelerate and rapidly iterate robust suites of evaluations for AI models, systems, and agents." This action is being taken to uphold the commitments established at the first global AI Safety Summit last November, where governments from around the world accepted their role in safety testing the next generation of AI models. The MoU primarily relates to moving forward on plans made by the AI Safety Institutes in the U.K. and U.S. The U.K.'s research facility was launched at the AI Safety Summit with the three primary goals of evaluating existing AI systems, performing foundational AI safety research and sharing information with other national and international actors.

Google Chrome Beta Tests New DBSC Protection Against Cookie-Stealing Attacks
2024-04-03 13:07

Google on Tuesday said it's piloting a new feature in Chrome called Device Bound Session Credentials (DBSC) to help protect users against session cookie theft by malware. The prototype – currently...

Pen test vendor rotation: do you need to change annually?
2024-03-13 14:02

You might have heard about the practice of pen test vendor rotation, or even tried it yourself. This is where organizations change their pen test providers annually to avoid complacency and maintain an objective perspective on their security posture.

Microsoft tests Windows 11 ‘Super Resolution’ AI-upscaling for gamers
2024-02-12 21:23

Microsoft is testing a new "Automatic Super Resolution" AI-assisted upscaling feature that increases the video and image quality of supported games while also making them run more smoothly. As first discovered by Windows sleuth PhantomOfEarth, Microsoft is now testing an Automatic Super Resolution feature as part of its first preview of Windows 11 24H2 in the Canary and Dev channels.

Google tests blocking side-loaded Android apps with risky permissions
2024-02-07 18:57

Google has launched a new pilot program to fight financial fraud by blocking the sideloading of Android APK files that request access to risky permissions. These files are commonly distributed through third-party sites, allowing you to install apps outside of Google Play.

Check if you're in Google Chrome's third-party cookie phaseout test
2024-02-03 19:14

Google has started testing the phasing out of third-party cookies on Chrome, affecting about 1% of its users or approximately 30 million people. Based on the test results and whether it causes significant issues with the displaying of websites, Google will begin to gradually phase out third-party cookies for the rest of its users starting in the third quarter of 2024.

COVID-19 test lab accused of exposing 1.3 million patient records to open internet
2024-01-24 07:28

A password-less database containing an estimated 1.3 million sets of Dutch COVID-19 testing records was left exposed to the open internet, and it's not clear if anyone is taking responsibility.Among the information revealed in the publicly accessible and seemingly insecurely configured database were 118,441 coronavirus test certificates, 506,663 appointment records, 660,173 testing samples and "a small number" of internal files.

Microsoft tests instant access to Android photos in Windows 11
2024-01-18 19:42

Microsoft plans to provide Windows 11 users with almost instant access to photos and screenshots they've taken on their Android smartphones. The new feature "Introduces the ability to effortlessly access and edit your most recent photos and screenshots from your Android mobile device in Snipping Tool on your PC," the Windows Insider team said.

Windows Copilot autostart tests limited to 27" displays or larger
2024-01-15 21:29

Microsoft says that tests of a controversial new Windows 11 feature that automatically opens the AI-powered Copilot assistant after Windows starts are limited to systems with 27-inch displays. For now, the option also requires enrolling in the company's Windows Insider program since the change is currently being tested in the Windows 11 Insider Preview Build 23615, released last Thursday in the Dev Channel.

The OWASP Top 10: What They Are and How to Test Them
2023-11-15 15:02

Its data-driven approach, combined with expert insights, makes it a benchmark for understanding, testing, and improving web application security. Conducting threat modelling to understand the application's design, how data flows, and potential areas of weakness.