Schneier on Security

MAY 15, 2025

A new Regulatory Intelligence Office would use the technology to “regularly suggest updates” to the law and “accelerate the issuance of legislation by up to 70%.” The UAE has promised to spend more than $3 billion to transform into an “ AI-native ” government by 2027. In 2020, the U.S.

Government

SecureWorld News

JANUARY 14, 2025

In the rapidly evolving landscape of corporate governance, risk management, and compliance (GRC), artificial intelligence (AI) has emerged as a game-changing force. This technological leap allows organizations to identify patterns, predict potential risks, and automate routine compliance tasks with remarkable efficiency.

Risk

The Last Watchdog

DECEMBER 18, 2024

To wrap up our 2024 year-end roundtable, we turn our attention to new technologies and trends that are emerging to help bridge the gaps. Enterprises must secure AI agents, adopt proactive data governance, and deploy AI-based security platforms. As compute costs decrease, autonomous operations and AI-discovered zero-day exploits loom.

Risk

Security Affairs

APRIL 16, 2025

-funded CVE program, a core cybersecurity tool for tracking vulnerabilities, faces funding expiry Wednesday, risking disruption to global security. government funding for MITRE s CVE program , a key global cybersecurity resource for cataloging vulnerabilities, is set to expire Wednesday, risking disruption.

Government

Security Affairs

MAY 21, 2025

CISA warns Russia-linked group APT28 is targeting Western logistics and tech firms aiding Ukraine, posing an elevated threat to supply chains Russia-linked cyberespionage group APT28 intensifies its operations against Western logistics and technology companies moving supplies into Ukraine, US CISA warns. ” reads the joint alert.

Technology

SecureWorld News

MAY 13, 2025

As geopolitical instability, supply chain disruption, and cyber threats continue to escalate, third-party risk management (TPRM) is evolving from a compliance function to a strategic business imperative. According to the EY survey , 87% of organizations have experienced a third-party risk incident in the past three years.

Risk

Jane Frankland

MAY 30, 2025

Everyone’s talking about AI aren’t they, and when I gave a keynote on Artificial Intelligence and cybersecurity recently, I relayed how the rise of AI has brought us to a pivotal moment in historya moment brimming with both extraordinary opportunity and unparalleled risk. AI amplifies these risks exponentially.

Risk

Jane Frankland

JUNE 8, 2025

The modern enterprise C-suite is undergoing a seismic shift—not over profits or market share, but over who leads technology, shapes strategy, and ultimately defines the future of the business. The digital era has brought with it not just new technologies, but new power dynamics. But that dominance is fading.

CISO

Jane Frankland

JULY 22, 2025

These massive providers promise global cybersecurity coverage, deep expertise, and cutting-edge technology, making them the default choice for enterprise cybersecurity solutions. Could this mean that large enterprises are actually more at risk than smaller ones? That’s what I’m exploring in this blog. Let’s dive in.

Risk

SecureWorld News

MARCH 6, 2025

government. This means that thousands of government contractors will soon be required to implement structured processes for identifying, reporting, and mitigating vulnerabilities, aligning them with U.S. National Institute of Standards and Technology (NIST) guidelines.

Cybersecurity

The Last Watchdog

MAY 13, 2025

And now comes the GenAI wave flooding security vendors with new tools, but also disrupting organizational dynamics, blurring responsibility lines, and injecting fresh uncertainty into already fragile governance structures. It reads not as a how-to manual, but as a diagnosis of systemic design failure and a blueprint for recovery.

CISO

The Last Watchdog

DECEMBER 18, 2024

This shift is expected to place significant pressure on organizations that haven’t yet developed trusted data to manage risk effectively. To mitigate risks, businesses will invest in modern, privacy-enhancing technologies (PETs), such as trusted execution environments (TEEs) and fully homomorphic encryption (FHE).

Cybersecurity

Penetration Testing

JUNE 23, 2025

House of Representatives has banned WhatsApp on government devices, citing security and transparency concerns. Meta strongly disputes the "high-risk" assessment.

Government

IT Security Guru

NOVEMBER 1, 2024

As technology advances, so do the methods and motivations of those who seek to disrupt global stability. Cyber attacks can compromise critical infrastructure, financial systems, and sensitive government data. The risk posed by these actors continues to grow as nations rely increasingly on interconnected digital infrastructure.

Cyber Attacks

Jane Frankland

JANUARY 19, 2025

For us in cyber, how do we navigate these new digital threats especially when we layer in the rise of AI and deepfake technologies, and the stakes grow even higher? Deepfake Technology Amplifying Risks: The evolution and democratisation of deepfake technology have blurred the line between reality and fabrication.

Cybersecurity

The Last Watchdog

MARCH 24, 2025

Its a question of how much risk your organization is willing to take, based on the data you must protect and its long-term value. We recommend using Dr. Michele Moscas theorem of quantum risk against an optimistic vs. pessimistic probability analysis. This is where the concern of harvest now, decrypt later attacks apply.

Encryption

Krebs on Security

DECEMBER 11, 2024

An analysis of their technology infrastructure shows that all of these exchanges use Russian email providers, and most are directly hosted in Russia or by Russia-backed ISPs with infrastructure in Europe (e.g. A machine-translated version of Flymoney, one of dozens of cryptocurrency exchanges apparently nested at Cryptomus.

Cryptocurrency

SecureWorld News

NOVEMBER 18, 2024

Among the key findings: Widespread vulnerabilities: The OIG's passive assessment revealed critical or high-risk vulnerabilities in 97 drinking water systems serving more than 26.6 Invest in security technology: Utilize advanced security technologies to protect critical infrastructure and data. million people.

Cybersecurity

Thales Cloud Protection & Licensing

AUGUST 11, 2025

From Risk to ROI: How Security Maturity Drives Business Value madhav Tue, 08/12/2025 - 04:30 Cyber threats are like moving targets—constantly evolving and increasingly pervasive. The threat landscape presents a serious and persistent challenge for governments, businesses, critical infrastructure, and individuals alike.

Risk

Centraleyes

DECEMBER 16, 2024

As we approach 2025, the cybersecurity landscape is evolving rapidly, shaped by technological advancements, regulatory shifts, and emerging threats. Tools like ChatGPT and Bard, powered by large language models, showcase how generative AI transforms business processesbut they also pose new risks. The challenge?

Cybersecurity

The Last Watchdog

MAY 1, 2025

Alcavio: AI-powered deception Anand Akela of Alcavio Technologies offered a provocative take: Deception technology is the only way to detect threats that no one has seen before zero days generated on the fly by LLMs. Theyre totally different tech and governance models. You cant govern what you cant see, Mogull said.

Mobile

SecureWorld News

DECEMBER 8, 2024

It is essential to understand the risks posed by quantum computing, as future advancements could compromise today's encrypted data, opening new opportunities for threat actors. Current efforts to address quantum threats Recognizing these risks, organizations and governments are developing quantum-resistant cryptographic methods.

Encryption

Lohrman on Security

AUGUST 10, 2025

News Analytics Artificial Intelligence Civic Innovation Cloud & Computing Cybersecurity Lohrmann on Cybersecurity Education Election Technology Emerging Tech Budget & Finance Infrastructure Government Experience GovTech Biz Biz Data Health & Human Services Justice & Public Safety Broadband & Network Policy Smart Cities Transportation (..)

Artificial Intelligence

Security Affairs

OCTOBER 28, 2024

A long supply chain adds third-party risks, as each partner’s security affects your own, making identity and access management more challenging. And therein lies the problem: Your enterprise could be at risk if their credentials are unsafe. So, what’s a bit of increased risk where usernames and passwords are concerned?

B2B

BH Consulting

MARCH 26, 2025

If there is one statistic that sums up the increasing pace of technological change, it might well be this. This rapid transformation creates a challenge for boards tasked with balancing emerging risks and strategic opportunities. The Data Governance Act creates a framework to facilitate trustworthy data sharing across the EU.

Government

Security Affairs

DECEMBER 1, 2024

The increasing sophistication of these technologies has made it harder than ever to distinguish real content from fake. A study by the Massachusetts Institute of Technology (MIT) presented in 2019 revealed that deepfakes generated by AI could deceive humans up to 60% of the time. As the technology evolves, so will its misuse.

Artificial Intelligence

SecureWorld News

AUGUST 6, 2025

This year's IBM Cost of a Data Breach Report provides a sobering look at how the latest technological shifts are impacting enterprise security. For cybersecurity professionals, the report is a clear call to action to govern AI adoption before it becomes an unmanageable security risk. million and $4.91 million respectively.

Data breaches

The Last Watchdog

JANUARY 7, 2025

These technologies bypass signature-based defenses and mimic legitimate behavior, making detection more challenging. This incident highlights three key risks of AI-driven attacks: Sophistication: AI allows attacks to evolve in real-time, rendering static defenses obsolete.

Threat Detection

SecureWorld News

OCTOBER 23, 2024

Check Point Software Technologies Ltd., The SEC charged the companies with "materially misleading disclosures regarding cybersecurity risks and intrusions." The SEC further noted that Unisys lacked proper internal controls to ensure accurate and timely reporting of such high-risk incidents. Check Point Software Technologies Ltd.

Cybersecurity

Malwarebytes

JANUARY 21, 2025

Graylark Technologies who makes GeoSpy says its been developed for government and law enforcement. But the investigative journalists from 404 Media report thatthe tool has also been used for months by members of the public, with many making videos marveling at the technology, and some asking for help with stalking specific women.

Identity Theft

Jane Frankland

JULY 17, 2025

The beers were cold, the banter flowing, but one comment cut through the noise: “Cybersecurity’s no longer about technology. Around the world, governments are weaponising regulation—using cyber laws to block foreign firms, force data localisation, and demand access to proprietary systems under the guise of compliance.

Cybersecurity

Centraleyes

JULY 24, 2025

Key Takeaways Technology risk now includes AI failures, cloud dependencies, and hidden vendor threats. Six major shifts are reshaping how organizations identify and manage risk in 2025. Traditional checklists are giving way to real-time, adaptive risk models. Technology touches just about everything we do at work.

Technology

SecureWorld News

FEBRUARY 25, 2025

It is recommended that organizations should consider AI-powered deception technologies to detect and neutralize AI-driven threats. From the report: "AI-driven access controls allow organizations to dynamically adjust permissions based on real-time risk assessments, reducing the attack surface."

Cybersecurity

Security Affairs

DECEMBER 4, 2024

The government agencies released a guide that advises telecom and critical infrastructure defenders on best practices to strengthen network security against PRC-linked and other cyber threats. telecoms, compromising networks to steal call records and access private communications, mainly of government and political figures.

Telecommunications

Responsible Cyber

NOVEMBER 23, 2024

However, with every partnership comes potential risk. As networks expand to include third, fourth, and even fifth parties, the complexities of managing these risks multiply. For CCEOs and senior leaders, effective third-party risk management (TPRM) is not just a necessity—it’s a strategic imperative.

Risk

BH Consulting

APRIL 16, 2025

The ISACA Ireland Chapter Conference on 11 April brought together thought leaders in AI, cybersecurity, auditing, governance, and quantum computing. She spoke passionately about how AI is the most transformative force of our time, reshaping industries, governance models, and the future of cybersecurity.

Risk

SecureWorld News

NOVEMBER 4, 2024

Enter the Texas Responsible AI Governance Act, or TRAIGA, with Texas's unique style of doing business—balancing innovation with accountability, consumer empowerment, and a good ol' dash of no-nonsense enforcement. These are labeled "High-Risk AI Systems" (HRAIS). if they (1) put their name or trademark on a high-risk AI system.(2)

Government