Blog, Cybersecurity and Risk - Cyber Security Informer

Security Risks of AI

Schneier on Security

APRIL 27, 2023

Stanford and Georgetown have a new report on the security risks of AI—particularly adversarial machine learning—based on a workshop they held on the topic. Many AI products are deployed without institutions fully understanding the security risks they pose.

Risk

Risk Government Cybersecurity Engineering

High-Risk Flaws in a-blog cms: CVE-2025-36560 Scores Critical 9.2 on CVSS Scale

Penetration Testing

MAY 15, 2025

JPCERT/CC has issued a vulnerability note disclosing multiple security flaws in a-blog cms, a popular content management system The post High-Risk Flaws in a-blog cms: CVE-2025-36560 Scores Critical 9.2 on CVSS Scale appeared first on Daily CyberSecurity.

Risk

Risk Cybersecurity

Women in Cybersecurity & IWD: Why I’m Done!

Jane Frankland

MARCH 8, 2025

For nearly a decade, we’ve heard the same discussion in cybersecurity circles about the gender diversity problem. Yet here we are, in 2025, and the percentage of women in cybersecurity remains stagnantor worse, is backtracking. Meanwhile, cybersecurity job vacancies are skyrocketing. It’s utter madness.

Cybersecurity

Cybersecurity Penetration Testing Accountability Cyber Risk

Top Cybersecurity Trends to Watch Out For in 2025

Centraleyes

DECEMBER 16, 2024

As we approach 2025, the cybersecurity landscape is evolving rapidly, shaped by technological advancements, regulatory shifts, and emerging threats. Below is an exhaustive list of key cybersecurity trends to watch out for in 2025. Lets explore the top current cybersecurity trends this year. The challenge?

Cybersecurity

Cybersecurity Insurance Cyber Insurance Risk

Navigating the SEC’s Cybersecurity Disclosure Rules: One Year On

Security Boulevard

DECEMBER 30, 2024

Securities and Exchange Commission (SEC)began enforcing new cybersecurity disclosure rules. Recognizing the critical need for transparency and robust cybersecurity measures, the U.S. As part of their fiduciary duties, boards play a key role in the oversight of risks from cybersecurity threats.

Cybersecurity

Cybersecurity Cyber Risk CISO Risk

GUEST ESSAY: The Top 10 cybersecurity shortfalls that put SMBs, enterprises at elevated risk

The Last Watchdog

APRIL 17, 2023

No organization is immune to cybersecurity threats. Related: Why timely training is a must-have That’s why businesses of all sizes need to understand the biggest cybersecurity weaknesses and take steps to mitigate them. Here are a few of the top security weaknesses that threaten organizations today: Poor risk management.

Risk

Risk Cybersecurity Data breaches Cyber Attacks

When Prevention Fails: How Hackers and AI Are Forcing a Cybersecurity Rethink

Jane Frankland

MAY 18, 2025

Cybersecurity has entered a new era. In this blog, Ill be examining how AI is reshaping the fight on both sides, shedding light on the unprecedented collaboration among hackers, and why the old cybersecurity playbook is no match for todays challenges. Lets dive in.

Cybersecurity

Cybersecurity Backups Ransomware Firewall

The C-Suite Power Shift: Why CIOs, CTOs, and CISOs Must Realign to Survive

Jane Frankland

JUNE 8, 2025

Today, the Chief Technology Officer (CTO) and Chief Information Security Officer (CISO) are rising in prominence—fuelled by the accelerating demands of AI innovation, cybersecurity, and digital transformation. All three roles are now vying for ownership of overlapping domains: infrastructure, innovation, data governance, and cybersecurity.

CISO

CISO Digital transformation Technology Risk

Why MSPs must offer 24/7 cybersecurity protection and response — and how OpenText MDR can help

Webroot

JANUARY 13, 2025

For Managed Service Providers (MSPs), offering customers 24/7 cybersecurity protection and response isnt just a competitive advantageits an essential service for business continuity, customer trust, and staying ahead of attackers. Anything less, and you risk leaving customers vulnerable to costly breaches.

Cybersecurity

Cybersecurity Cyber threats Artificial Intelligence Cybercrime

GUEST ESSAY: New SEC rules aim to help C-levels, board members quantify cyber risks

The Last Watchdog

JUNE 23, 2022

Securities and Exchange Commission (SEC) is taking steps to crack down on insufficient cyber risk reporting. Related : Making third-party risk audits actionable. The new rules urge companies to build more robust cyber risk management programs. Disclosing policies and procedures for risk management.

Cyber Risk

Cyber Risk Risk Cybersecurity Cyber threats

Google Cybersecurity Action Team Threat Horizons Report #3 Is Out!

Anton on Security

JULY 7, 2022

This is my completely informal, uncertified, unreviewed and otherwise completely unofficial blog inspired by my reading of our third Threat Horizons Report ( full version ) that we just released ( the official blog for #1 report , my unofficial blog for #2 ). Google Cybersecurity Action Team Threat Horizons Report #3 Is Out!

Cybersecurity

Cybersecurity Cryptocurrency Ransomware Education

Opportunities and risks of AI coding assistants

BH Consulting

DECEMBER 6, 2024

However, a recent joint report by Frances National Cybersecurity Agency (ANSSI) and Germanys Federal Office for Information Security (BSI) highlights crucial security and privacy considerations for organisations adopting AI coding assistants. Developers and security teams should receive specific training on the risks and safe use of AI tools.

Risk

Risk Data privacy Information Security Software

Cybersecurity Snapshot: Tenable Highlights Risks of AI Use in the Cloud, as UK’s NCSC Offers Tips for Post-Quantum Cryptography Adoption

Security Boulevard

MARCH 21, 2025

Check out key findings and insights from the Tenable Cloud AI Risk Report 2025. 1 - Tenable: Orgs using AI in the cloud face thorny cyber risks Using AI tools in cloud environments? 1 - Tenable: Orgs using AI in the cloud face thorny cyber risks Using AI tools in cloud environments?

Risk

Risk IoT Cybersecurity Manufacturing

What Rebels Teach us About Stronger Cyber Defence

Jane Frankland

APRIL 25, 2025

While this progress is impressive and efficient, it comes with substantial risks. And in this context, cybersecurity stands as the frontline defencebut its in need of a fundamental shift. The Risks of Blind Compliance in Technology Consider the analogy of a frog in a slowly boiling pot of water.

Technology

Technology Cyber threats Risk CISO

GUEST ESSAY: Where we stand on mitigating software risks associated with fly-by-wire jetliners

The Last Watchdog

AUGUST 29, 2023

Here’s what you should know about the risks, what aviation is doing to address those risks, and how to overcome them. It is difficult to deny that cyberthreats are a risk to planes. Risks delineated Still, there have been many other incidents since. Fortunately, there are ways to address the risks.

Software

Software Risk Artificial Intelligence Cyber Attacks

AI and the Future of Cybersecurity: Opportunities and Risks

Security Boulevard

APRIL 1, 2025

No mere chatbots, these headline features enhance systems cybersecurity by detecting threats, predicting vulnerabilities, and responding to incidents in real time. The post AI and the Future of Cybersecurity: Opportunities and Risks appeared first on Security Boulevard.

Risk

Risk Cybersecurity Software

GUEST ESSAY: The three horsemen of cyber risks: misinformation, disinformation and fake news

The Last Watchdog

NOVEMBER 15, 2021

Such a transformation however, comes with its own set of risks. Misleading information has emerged as one of the leading cyber risks in our society, affecting political leaders, nations, and people’s lives, with the COVID-19 pandemic having only made it worse. So, how do organizations prepare against such threats?

Cyber Risk

Cyber Risk Risk Cyber threats Artificial Intelligence

Cybersecurity Snapshot: Prompt Injection and Data Disclosure Top OWASP’s List of Cyber Risks for GenAI LLM Apps

Security Boulevard

NOVEMBER 22, 2024

Don’t miss OWASP’s update to its “Top 10 Risks for LLMs” list. OWASP — the Open Worldwide Application Security Project — released its first “Top 10 Risks for LLMs” last year. Plus, the ranking of the most harmful software weaknesses is out. Meanwhile, critical infrastructure orgs have a new framework for using AI securely.

Cyber Risk

Cyber Risk Risk Cybersecurity Artificial Intelligence

Apple AirPlay SDK devices at risk of takeover—make sure you update

Malwarebytes

MAY 1, 2025

Researchers found a set of vulnerabilities in Apples AirPlay SDK that put billions of users at risk of their devices being taking over. On top of that, these vulnerabilities may allow unauthorized access to sensitive data and local files, making them a serious risk that demands immediate attention.

Risk

Risk Wireless Software Mobile

GUEST ESSAY: The wisdom of taking a risk-based approach to security compliance

The Last Watchdog

APRIL 21, 2022

Today, all organizations are required or encouraged to meet certain standards and regulations to protect their data against cybersecurity threats. Related: The value of sharing third-party risk assessments. Take a risk-based approach. They don’t think about the impact security risks would have on their organization.

Risk

Risk Cybersecurity Architecture Data breaches

The Dangers of AI Acceleration: Why a Deregulatory Stance Threatens Humanity

Jane Frankland

MAY 30, 2025

Everyone’s talking about AI aren’t they, and when I gave a keynote on Artificial Intelligence and cybersecurity recently, I relayed how the rise of AI has brought us to a pivotal moment in historya moment brimming with both extraordinary opportunity and unparalleled risk. Thats what this blog is all about.

Risk

Risk Artificial Intelligence Government Technology

NIST Launches Updated Incident Response Guide

Security Boulevard

JUNE 9, 2025

This new version, titled “Incident Response Recommendations and Considerations for Cybersecurity Risk Management,” aligns closely with the latest Cybersecurity Framework (CSF) 2.0, The post NIST Launches Updated Incident Response Guide appeared first on Security Boulevard.

Risk

Risk Technology Cybersecurity Government

GUEST ESSAY: A new year, a familiar predicament — consumers face intensifying cybersecurity risks

The Last Watchdog

JANUARY 3, 2023

Malicious online actors grow ever more sophisticated, making cybersecurity as big a concern for everyday consumers as it ever has been. With more and more people working remotely, unsecured home or public WiFi networks represent a security risk not only to individuals but to their companies as well.

Risk

Risk Cybersecurity Antivirus Phishing

GUEST ESSAY: In pursuit of smarter cybersecurity — to overcome complex risks and grow revenue

The Last Watchdog

JANUARY 8, 2023

Smarter security to me broadly refers to relentlessly focusing on fundamentals while maturing the program, making sure your risk posture aligns with your business strategy. It means anti-phishing tools so your teams can open emails without needless hesitation or risk. This leads to revenue gains and positive customer outcomes.

Risk

Risk Cybersecurity Technology CISO

Your Ultimate Guide to NIS2 Compliance: Key Steps and Insights

Heimadal Security

JANUARY 16, 2025

The NIS2 Directive is a pivotal regulation aimed at enhancing cybersecurity within critical sectors across the European Union. With its stringent requirements for managing cyber risks, securing supply chains, and reporting incidents, its essential for organizations to ensure compliance.

Cyber Risk

Cyber Risk Risk Cybersecurity

Cybersecurity Leaders Share Three Challenges Exposure Management Helps Them Solve

Security Boulevard

MARCH 31, 2025

In this blog, we share three challenges cybersecurity leaders say exposure management helps them solve. The core cybersecurity discipline is evolving into exposure management , which is built on a broader, more strategic approach to identifying, prioritizing and mitigating risk.

Cybersecurity

Cybersecurity Risk Cyber Risk Mobile

Cybersecurity as a Business Imperative: Embracing a Risk Management Approach

Security Boulevard

FEBRUARY 17, 2025

Cybersecurity is much more than just a technical challenge. Its now a critical business imperative that requires a strategic risk management approach. Read More The post Cybersecurity as a Business Imperative: Embracing a Risk Management Approach appeared first on Nuspire.

Risk

Risk Cybersecurity

GUEST ESSAY: Best practices to shrink the ever-present risk of Exchange Server getting corrupted

The Last Watchdog

FEBRUARY 5, 2024

One critical issue faced by organizations that rely on Exchange Server is the risk of a corrupt Exchange Server database cropping up. Navigating new risks Today, heavy reliance on cloud-centric IT infrastructure and cloud-hosted applications has become the norm. Here are a few ‘dos:’ •Rigorous vulnerability management.

Risk

Risk Backups Software Education

Protecting Retailers Against Cyber Risks on Black Friday and Cyber Monday

Thales Cloud Protection & Licensing

NOVEMBER 26, 2024

Protecting Retailers Against Cyber Risks on Black Friday and Cyber Monday josh.pearson@t… Tue, 11/26/2024 - 08:01 As Black Friday and Cyber Monday loom, the stakes for retailers extend far beyond enticing deals and record sales. trillion, the risk of a data breach extends beyond immediate financial losses. trillion and $5.28

Retail

Retail Cyber Risk Risk DDOS

GUEST ESSAY: NIST’s Cybersecurity Framework update extends best practices to supply chain, AI

The Last Watchdog

MARCH 25, 2024

The National Institute of Standards and Technology (NIST) has updated their widely used Cybersecurity Framework (CSF) — a free respected landmark guidance document for reducing cybersecurity risk. It seeks to establish and monitor your company’s cybersecurity risk management strategy, expectations, and policy.

Cybersecurity

Cybersecurity Artificial Intelligence Risk Government

Cybersecurity Snapshot: WEF Offers AI Security Best Practices, as DORA Regulation Places Strict Cyber Rules on Banks

Security Boulevard

JANUARY 24, 2025

The latest guidance for adopting AI securely comes from the World Economic Forum, whose new Artificial Intelligence and Cybersecurity: Balancing Risks and Rewards report seeks to explain how organizations can benefit from AI while reducing their cybersecurity risks. Maintain an updated inventory of AI applications.

Banking

Banking Cybersecurity Artificial Intelligence Ransomware

MY TAKE: The CVE program crisis isn’t over — it’s a wake-up call for cybersecurity’s supply chain

The Last Watchdog

APRIL 16, 2025

The system that underpins vulnerability disclosurethe nervous system of cybersecurity risk managementis showing signs of structural fatigue. The CVE program isnt just a list of numbersits a Rosetta Stone that security teams rely on to identify, prioritize, and communicate risk. Far from it. Cipollones response?

Architecture

Architecture Risk Cybersecurity Internet

GUEST ESSAY: Why internal IT teams are ill-equipped to adequately address cyber risks

The Last Watchdog

FEBRUARY 11, 2024

Related: The case for augmented reality training Because of this, cybersecurity investments and regulatory oversight are increasing at an astounding rate , especially for those in the financial services industry, bringing an overwhelming feeling to chief compliance officers without dedicated security teams. Open are slim to none.

Cyber Risk

Cyber Risk Risk Financial Services Cyber threats

Cybersecurity Snapshot: NIST Aligns Its Privacy and Cyber Frameworks, While Researchers Warn About Hallucination Risks from GenAI Code Generators

Security Boulevard

APRIL 18, 2025

Plus, learn why code-writing GenAI tools can put developers at risk of package-confusion attacks. 1 - NIST updates Privacy Framework, tailoring it to the Cybersecurity Framework and adding an AI section Recognizing the data protection and cyberattack prevention overlap and are deeply intertwined, the U.S. This week, the U.S.

Risk

Risk Cybersecurity Data privacy Software

GUEST ESSAY: Leveraging DevSecOps to quell cyber risks in a teeming threat landscape

The Last Watchdog

JANUARY 2, 2024

In today’s digital landscape, organizations face numerous challenges when it comes to mitigating cyber risks. Here are some of the key challenges that organizations encounter in their efforts to mitigate cyber risks in the current environment. Improve overall security posture and reduce cyber risks.

Cyber Risk

Cyber Risk Risk Security Awareness Education

Can Cybersecurity Make You a Millionaire?

Hacker's King

OCTOBER 22, 2024

The world of cybersecurity is booming, with digital threats increasing and businesses needing to protect their data. But can cybersecurity make you a millionaire ? As the demand for cybersecurity professionals continues to rise, so do the financial opportunities for those who excel in this domain.

Cybersecurity

Cybersecurity CISO Engineering Education

Innovation in the Fast Lane: Lessons from Motorsport and Cybersecurity

Trend Micro

JUNE 10, 2025

Move faster than your adversaries with powerful purpose-built XDR, cyber risk exposure management, and zero trust capabilities Learn more Extend Your Team Extend Your Team.

Cybersecurity

Cybersecurity Cyber Risk Risk Artificial Intelligence

Understanding Cyber Threats During the Holiday Season

Security Boulevard

DECEMBER 22, 2024

Understanding Cyber Threats During the Holiday Season Understanding Cyber Threats During the Holiday Season The holiday season, while festive, presents heightened cybersecurity risks for businesses. Cybercriminals exploit increased online activity and reduced vigilance during this period.

Cyber threats

Cyber threats Data privacy Risk Cybersecurity

Cybersecurity Snapshot: CSA Outlines Data Security Challenges and Best Practices, While ISACA Offers Tips To Retain IT Pros

Security Boulevard

MARCH 7, 2025

Check out best practices for shoring up data security and reducing cyber risk. 1 - CSA: How to boost data security and reduce cyber risk Risk assessment gaps. 1 - CSA: How to boost data security and reduce cyber risk Risk assessment gaps. Plus, get tips on how to improve job satisfaction among tech staff.

Cybersecurity

Cybersecurity Scams CSO Risk

Hunting SMB Shares, Again! Charts, Graphs, Passwords & LLM Magic for PowerHuntShares 2.0

NetSpi Technical

NOVEMBER 14, 2024

Every hacker has a story about abusing SMB shares, but it’s an attack surface that cybersecurity teams still struggle to understand, manage, and defend. It focuses on distilling data related to shares configured with excessive privileges to better understand their relationships and risk. Risk Scoring “Be honest, how bad is it?”

Passwords

Passwords Risk Data collection Backups

GUEST ESSAY: Making the case for leveraging automation to eradicate cybersecurity burnout

The Last Watchdog

MAY 2, 2023

The rising complexity and prevalence of cybersecurity threats are making experts anxious. Automation could alleviate the burden on IT teams and cybersecurity professionals by shouldering some monotonous, time-consuming tasks. These feelings are a side effect of cybersecurity burnout.

Cybersecurity

Cybersecurity Firewall Risk Cyber Risk

GUEST ESSAY: Everything you should know about the cybersecurity vulnerabilities of AI chatbots

The Last Watchdog

FEBRUARY 20, 2024

While AI chatbots have cybersecurity vulnerabilities, adopting proactive measures like secure development practices and regular assessments can effectively mitigate risks. About the essayist: Zac Amos writes about cybersecurity and the tech industry, and he is the Features Editor at ReHack.

Cybersecurity

Cybersecurity Penetration Testing Authentication Social Engineering

ISACA impressions: AI, risk and resilience feature at the 2025 conference

BH Consulting

APRIL 16, 2025

The ISACA Ireland Chapter Conference on 11 April brought together thought leaders in AI, cybersecurity, auditing, governance, and quantum computing. She spoke passionately about how AI is the most transformative force of our time, reshaping industries, governance models, and the future of cybersecurity.

Risk

Risk Government Ransomware Retail

Cybersecurity Snapshot: SANS Recommends Six Controls To Secure AI Systems, While NCSC Warns About Outdated API Security Methods

Security Boulevard

APRIL 4, 2025

Thats a critical question cybersecurity teams grapple with every day. document outlines these six key security control categories for mitigating AI systems' cyber risks. The warning comes via a joint cybersecurity advisory issued this week by the governments of Australia, Canada, New Zealand and the U.S.

Cybersecurity

Cybersecurity DNS Government Authentication

Security Risks of AI

High-Risk Flaws in a-blog cms: CVE-2025-36560 Scores Critical 9.2 on CVSS Scale

Trending Sources

Women in Cybersecurity & IWD: Why I’m Done!

Top Cybersecurity Trends to Watch Out For in 2025

Navigating the SEC’s Cybersecurity Disclosure Rules: One Year On

GUEST ESSAY: The Top 10 cybersecurity shortfalls that put SMBs, enterprises at elevated risk

When Prevention Fails: How Hackers and AI Are Forcing a Cybersecurity Rethink

The C-Suite Power Shift: Why CIOs, CTOs, and CISOs Must Realign to Survive

Why MSPs must offer 24/7 cybersecurity protection and response — and how OpenText MDR can help

GUEST ESSAY: New SEC rules aim to help C-levels, board members quantify cyber risks

Google Cybersecurity Action Team Threat Horizons Report #3 Is Out!

Opportunities and risks of AI coding assistants

Cybersecurity Snapshot: Tenable Highlights Risks of AI Use in the Cloud, as UK’s NCSC Offers Tips for Post-Quantum Cryptography Adoption

What Rebels Teach us About Stronger Cyber Defence

GUEST ESSAY: Where we stand on mitigating software risks associated with fly-by-wire jetliners

AI and the Future of Cybersecurity: Opportunities and Risks

GUEST ESSAY: The three horsemen of cyber risks: misinformation, disinformation and fake news

Cybersecurity Snapshot: Prompt Injection and Data Disclosure Top OWASP’s List of Cyber Risks for GenAI LLM Apps

Apple AirPlay SDK devices at risk of takeover—make sure you update

GUEST ESSAY: The wisdom of taking a risk-based approach to security compliance

The Dangers of AI Acceleration: Why a Deregulatory Stance Threatens Humanity

NIST Launches Updated Incident Response Guide

GUEST ESSAY: A new year, a familiar predicament — consumers face intensifying cybersecurity risks

GUEST ESSAY: In pursuit of smarter cybersecurity — to overcome complex risks and grow revenue

Your Ultimate Guide to NIS2 Compliance: Key Steps and Insights

Cybersecurity Leaders Share Three Challenges Exposure Management Helps Them Solve

Cybersecurity as a Business Imperative: Embracing a Risk Management Approach

GUEST ESSAY: Best practices to shrink the ever-present risk of Exchange Server getting corrupted

Protecting Retailers Against Cyber Risks on Black Friday and Cyber Monday

GUEST ESSAY: NIST’s Cybersecurity Framework update extends best practices to supply chain, AI

Cybersecurity Snapshot: WEF Offers AI Security Best Practices, as DORA Regulation Places Strict Cyber Rules on Banks

MY TAKE: The CVE program crisis isn’t over — it’s a wake-up call for cybersecurity’s supply chain

GUEST ESSAY: Why internal IT teams are ill-equipped to adequately address cyber risks

Cybersecurity Snapshot: NIST Aligns Its Privacy and Cyber Frameworks, While Researchers Warn About Hallucination Risks from GenAI Code Generators

GUEST ESSAY: Leveraging DevSecOps to quell cyber risks in a teeming threat landscape

Can Cybersecurity Make You a Millionaire?

Innovation in the Fast Lane: Lessons from Motorsport and Cybersecurity

Understanding Cyber Threats During the Holiday Season

Cybersecurity Snapshot: CSA Outlines Data Security Challenges and Best Practices, While ISACA Offers Tips To Retain IT Pros

Hunting SMB Shares, Again! Charts, Graphs, Passwords & LLM Magic for PowerHuntShares 2.0

GUEST ESSAY: Making the case for leveraging automation to eradicate cybersecurity burnout

GUEST ESSAY: Everything you should know about the cybersecurity vulnerabilities of AI chatbots

ISACA impressions: AI, risk and resilience feature at the 2025 conference

Cybersecurity Snapshot: SANS Recommends Six Controls To Secure AI Systems, While NCSC Warns About Outdated API Security Methods

Stay Connected