Results for: Cybersecurity

Generative AI has revolutionized various industries but has also opened the door to increasing cyber threats. With phishing incidents soaring and advanced attacks on the rise, organizations and individuals are becoming more susceptible to cyber-attacks. Collaborative efforts, ethical frameworks, and digital awareness are crucial to mitigate these risks, ensuring a secure digital landscape. Initiatives like the Bletchley Declaration and industry-wide training can bolster defenses against the evolving threats posed by generative AI.

The upcoming Paris 2024 Olympic and Paralympic Games face daunting cybersecurity challenges, with experts anticipating a surge in attacks from organized crime, activists, and even nation-states. To mitigate the threats, organizers have collaborated with the French national security agency (ANSSI), Cisco, and Eviden to implement robust security measures. The cybersecurity operation center, operating from a secret location, aims to minimize the impact of cyberattacks on the Games.

The RSA Conference (RSAC), the leading cybersecurity gathering globally, will be held at the Moscone Center in San Francisco from May 6th to 9th, 2024. It will bring approximately 40,000 cybersecurity professionals to engage in discussions, keynotes, and various events, fostering collaboration and knowledge-sharing within the industry. With its focus on technology and innovation, San Francisco serves as an ideal location for the conference and offers attendees access to a hub of experts and networking opportunities.

Two months after the cyberattack on Change Healthcare, the extent of the impact on Americans remains uncertain. CEO Andrew Witty initially estimated that a substantial proportion of Americans were affected, while later testifying in a House hearing that it may be around a third. The company is still investigating the breach and has not yet notified victims. Witty stated that there is no evidence of sensitive medical data being stolen, but the hackers exploited a lack of multi-factor authentication on a Change Healthcare portal, leading to the breach. Senators criticized the company for this failure.

Following the ransomware attack on its subsidiary Change Healthcare, UnitedHealth Group has enabled multi-factor authentication (MFA) across all of its systems exposed to the internet. Previously, a lack of MFA on Change Healthcare’s systems allowed hackers to access a server and breach the company’s network. UnitedHealth Group CEO Andrew Witty acknowledged the omission and blamed it on the incomplete integration of Change Healthcare’s systems after the acquisition in 2022. Despite a company-wide policy requiring MFA on external systems, Witty admitted that one server lacked protection, enabling the hackers’ entry point. At a congressional hearing, Witty faced questions about the cyberattack and the reasons for the unenforced policy. UnitedHealth Group is still working to determine the full impact of the hack and has not yet notified affected individuals.

Aikido, a Ghent-based startup, has secured $17 million in Series A funding to develop its open-source, developer-centric security platform. The company aims to address the growing security concerns faced by startups and developers who handle large amounts of customer data. Aikido’s freemium model, emphasis on open-source products, and focus on reducing alert noise differentiate it from competitors and have already attracted 3,000 small-to-midsize customers.

San Francisco-based security company Traceable, co-founded by Jyoti Bansal and Sanjay Nagaraj, has raised $30 million in strategic funding. The investment, led by Citi Ventures, will be used to accelerate product development, scale up the company’s platform and customer engineering teams, and build out its partnership program. Traceable’s platform uses AI to analyze API usage data and learn normal API behavior to spot activity that deviates from the baseline. The company’s software can discover and catalog existing and new APIs in real-time, including undocumented and “orphaned” APIs. Traceable claims to be analyzing around 500 billion API calls a month for ~50 customers and projecting revenue to double this year.

FBI Director Christopher Wray has raised alarm over Chinese government-linked hackers infiltrating critical U.S. infrastructure, posing a grave threat to the nation’s stability. The hackers are said to be biding their time, waiting for an opportune moment to launch a crippling attack. Coinciding with Wray’s warning, Secretary of State Antony Blinken has highlighted China’s military support to Russia in the Ukraine conflict, as well as its involvement in supplying fentanyl precursor chemicals to Mexican cartels. While the Biden administration has recently taken a tougher stance against China, experts believe it may be motivated by domestic political considerations rather than genuine concern for national security.

SafeBase has raised $33 million in a Series B funding round led by Touring Capital. The company’s platform uses AI to automate security questionnaires, which are reviews organizations normally kick off before buying a new piece of software. SafeBase claims that its platform can save time through automation and AI. The company has a customer roster of 700 companies, including Palantir, LinkedIn, Asana, and Instacart.

ATMs have become hotspots for fraudsters, with numerous cases of victims being coerced into withdrawing money for criminals. Recently, police arrested three individuals involved in over 25 such incidents. The fraudsters remove the card reader, causing the victim’s card to become stuck in the machine. Pretending to offer assistance, they request the victim’s PIN, which they use to withdraw funds after the victim leaves.