Risk - Information Management Today

From Risk Assessment to Action: Improving Your DLP Response

Security Affairs

OCTOBER 25, 2024

DLP is key in cybersecurity; a risk assessment identifies data risks, helping turn findings into real-world security improvements. So, how can you conduct a DLP risk assessment? What is a DLP Risk Assessment? Why Conduct a DLP Risk Assessment? Protecting sensitive data is what cybersecurity is all about.

Risk

Risk Cybersecurity Cloud Compliance

What Enterprises Need to Know About Agentic AI Risks

Data Breach Today

JANUARY 13, 2025

Mitigating Cybersecurity, Privacy Risks for New Class of Autonomous Agents Many organizations are looking to artificial intelligence agents to autonomously perform tasks that surpass traditional automation.

Risk

Risk Artificial Intelligence Privacy Cybersecurity

GUEST ESSAY: How AI co-pilots boost the risk of data leakage — making ‘least privilege’ a must

The Last Watchdog

FEBRUARY 25, 2025

Related: Weaponizing Microsoft’s co-pilot Until now, lackluster enterprise search capabilities kept many security risks in checkemployees simply couldnt find much of the data they were authorized to access. Over-provisioned access The risks of excessive access are nothing new.

Risk

Risk Access Security Cloud

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

Regulating AI Catastophic Risk Isn't Easy

Data Breach Today

OCTOBER 11, 2024

AI, Security Experts Discuss Who Defines the Risks, Mitigation Efforts An attempt by the California statehouse to tame the potential of artificial intelligence catastrophic risks hit a roadblock when Governor Gavin Newsom vetoed the measure late last month.

Risk

Risk Artificial Intelligence Security

LLMOps for Your Data: Best Practices to Ensure Safety, Quality, and Cost

Speaker: Shreya Rajpal, Co-Founder and CEO at Guardrails AI & Travis Addair, Co-Founder and CTO at Predibase

Putting the right LLMOps process in place today will pay dividends tomorrow, enabling you to leverage the part of AI that constitutes your IP – your data – to build a defensible AI strategy for the future.

Privacy

News alert: Aptori’s AI-driven platform reduces risk, ensures compliance — now on Google Marketplace

The Last Watchdog

MARCH 12, 2025

This new agentic AI solution leverages semantic reasoning to analyze application code and logic in real time, delivering deterministic vulnerability detection, contextual risk prioritization, and automated remediation. San Jose, Calif., Aptoris AI-driven approach goes beyond traditional static analysis. Users can learn more at [link].

Compliance

Compliance Risk Cloud Digital transformation

Electric Vehicle Charging Stations at Risk From Hack Attacks

Data Breach Today

OCTOBER 24, 2024

The risks of these vulnerabilities range from an expanded attack surface to a launching pad for assaults on the power grid.

Risk

Risk Manufacturing

Terrorist Activity is Accelerating in Cyberspace – Risk Precursor to Summer Olympics and Elections

Security Affairs

JULY 25, 2024

According to the latest risk assessment published by Resecurity, terrorist groups are increasingly using cyberspace and digital communication channels to plan and execute attacks, as well as to conduct recruitment and establish anonymous communication channels (using apps like Session and their alternatives).

Risk

Risk e-Delivery Communications Financial Services

News Alert: Security Risk Advisors joins Microsoft Intelligent Security Association (MISA)

The Last Watchdog

JANUARY 7, 2025

Security Risk Advisors (SRA) is a leading cybersecurity firm dedicated to providing comprehensive security solutions to businesses worldwide. Security Risk Advisors SCALR XDR is both a platform, built on Microsoft Azure and a 247 monitoring service with Microsoft Sentinel. Philadelphia, Pa., Philadelphia, Pa., To learn more: [link].

Risk

Risk Security Cybersecurity Marketing

ERM Program Fundamentals for Success in the Banking Industry

Speaker: William Hord, Senior VP of Risk & Professional Services

Enterprise Risk Management (ERM) is critical for industry growth in today’s fast-paced and ever-changing risk landscape. Do we understand and articulate our bank’s risk appetite and how that impacts our business units? How are we measuring and rating our risk impact, likelihood, and controls to mitigate our risk?

Risk

Coast Guard Warns of Continued Risks in Chinese Port Cranes

Data Breach Today

NOVEMBER 20, 2024

Military Says Ship-to-Shore Cranes Made in China Include Dangerous Security Flaws The United States Coast Guard is continuing to warn of significant security risks embedded in ship-to-shore cranes developed by companies with ties to Beijing while issuing new sensitive requirements for ports operating Chinese-made cranes across the country.

Risk

Risk Military Security

Third-Party Identities: The Weakest Link in Your Cybersecurity Supply Chain

Security Affairs

OCTOBER 28, 2024

A long supply chain adds third-party risks, as each partner’s security affects your own, making identity and access management more challenging. And therein lies the problem: Your enterprise could be at risk if their credentials are unsafe. So, what’s a bit of increased risk where usernames and passwords are concerned?

B2B

B2B Cybersecurity Risk Access

Burnout in SOCs: How AI Can Help Analysts Focus on High-Value Tasks

Security Affairs

DECEMBER 5, 2024

SOC analysts, vital to cybersecurity, face burnout due to exhausting workloads, risking their well-being and the effectiveness of organizational defenses. As such, analysts are hit with a deluge of low-quality alerts, increasing the risk of missing genuine threats.

Cybersecurity

Cybersecurity Artificial Intelligence Risk Data collection

Security Researchers Warn of New Risks in DeepSeek AI App

Data Breach Today

FEBRUARY 10, 2025

Regulators in Europe, South Korea, and Australia are investigating, with bans and warnings issued over security risks. Its AI model failed jailbreak tests, making it prone to manipulation.

Risk

Risk Security Encryption IT

Everything You Need to Know About Crypto

Speaker: Ryan McInerny, CAMS, FRM, MSBA - Principal, Product Strategy

With 20% of Americans owning cryptocurrencies, speaking "fluent crypto" in the financial sector ensures you are prepared to discuss growth and risk management strategies when the topic arises. May 18th, 2023 at 9:30 am PDT, 12:30 pm EDT, 5:30 pm BST

Risk

SEC fined 4 companies for misleading disclosures about the impact of the SolarWinds attack

Security Affairs

OCTOBER 23, 2024

“The SEC’s order against Unisys finds that the company described its risks from cybersecurity events as hypothetical despite knowing that it had experienced two SolarWinds-related intrusions involving exfiltration of gigabytes of data. ” reads the press release published by SEC.

Cybersecurity

Cybersecurity Risk Access Government

Apple dismisses lawsuit against surveillance firm NSO Group due to risk of threat intelligence exposure

Security Affairs

SEPTEMBER 16, 2024

Apple drops its lawsuit against commercial spyware vendor NSO Group, due to the risk of “threat intelligence” information exposure. Apple is seeking to drop its lawsuit against Israeli spyware company NSO Group , citing the risk of “threat intelligence” information exposure.

Risk

Risk Government Manufacturing IT

Hackers threaten to leak a copy of the World-Check database used to assess potential risks associated with entities

Security Affairs

APRIL 22, 2024

World-Check is a global database utilized by various organizations, including financial institutions, regulatory bodies, and law enforcement agencies, for assessing potential risks associated with individuals and entities.

Risk

Risk Archiving Access Privacy

Key Takeaways from the CSA Understanding Data Security Risk Survey

Thales Cloud Protection & Licensing

MARCH 3, 2025

Key Takeaways from the CSA Understanding Data Security Risk Survey madhav Tue, 03/04/2025 - 04:32 As hybrid and multi-cloud environments become increasingly popular, identifying, prioritizing, and mitigating data security risks becomes increasingly complex. By gaining insight into how organizations handle risk.

Risk

Risk Security Compliance Encryption

The Unexpected Cost of Data Copies

Unfortunately, data replication, transformation, and movement can result in longer time to insight, reduced efficiency, elevated costs, and increased security and compliance risk.

Security

Oil and Gas Firms Aware of Cyber Risks

Data Breach Today

OCTOBER 14, 2024

Sector Uses Multifactor, Eschews Cloud, Can't Afford Cyber Insurance The oil and gas industry has high levels of cyber awareness and low levels of cyber insurance, says a sectoral assessment from credit rating agency Moody's. The sector has experienced a clutch of high-profile attacks including a high-profile 2021 incident at Colonial Pipeline.

Insurance

Insurance Risk Cloud

DHS Warns Election Security Risks May Persist Into 2025

Data Breach Today

OCTOBER 7, 2024

DHS Says Adversaries May Stoke Voter Fraud Fears Long After Election Day The latest Homeland Security threat assessment lists this year’s election cycle as a top concern for 2025 and a potential trigger for domestic terrorism.

Risk

Risk Security

Unforeseen Risks to Medical Devices in Ransomware Attacks

Data Breach Today

OCTOBER 24, 2024

While ransomware attacks against medical devices don't happen often, disruptive cyber incidents that affect the availability of the IT systems that medical devices rely on are a big concern that needs the industry's critical attention, said Jessica Wilkerson of the FDA.

Ransomware

Ransomware Risk IT

CISA Red Team Finds Alarming Critical Infrastructure Risks

Data Breach Today

NOVEMBER 21, 2024

Red Team Finds Vulnerabilities in Critical Infrastructure Org’s Security Framework The U.S., cyber defense agency is urging critical infrastructure operators to learn from the experience of a volunteer read teaming test and not rely too heavily on host-based endpoint detection and response solutions at the expense of network layer protections.

Risk

Risk Security

5 Early Indicators Your Embedded Analytics Will Fail

Many application teams leave embedded analytics to languish until something—an unhappy customer, plummeting revenue, a spike in customer churn—demands change. But by then, it may be too late. In this White Paper, Logi Analytics has identified 5 tell-tale signs your project is moving from “nice to have” to “needed yesterday.".

Analytics

Artificial intelligence (AI) as an Enabler for Enhanced Data Security

Security Affairs

FEBRUARY 11, 2025

Artificial intelligence enhances data security by identifying risks and protecting sensitive cloud data, helping organizations stay ahead of evolving threats. While AI introduces certain risks, its power to proactively identify and close data security gaps offers unparalleled protection when applied effectively.

Artificial Intelligence

Artificial Intelligence Security Unstructured data Cloud

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

The Last Watchdog

DECEMBER 16, 2024

Businesses must adopt tools and automation capable of invoking immediate action, even at the risk of false positives. Raising security baselines across industries is essential, with risk mitigationnot acceptancebecoming the standard. Security teams will need to address the unique risks posed using LLMs in mission critical environments.

Security

Security Phishing IoT Risk

Identity Security: How to Reduce Cyber Risk in Manufacturing

Data Breach Today

OCTOBER 16, 2024

Manufacturing enterprises have more identities than ever to manage - human and non - and face more attacks upon these identities. Manual lifecycle management can't keep pace. Trane Technologies' Aaron Havenar talks about automated identity security measures that don't compromise operational efficiency.

Manufacturing

Manufacturing Risk Security

Workplace Chaos and Uncertainty Stoke Insider Risk Warnings

Data Breach Today

MARCH 14, 2025

Expect Malicious Insiders to Pose 'Big Challenge' This Year for CISOs, Expert Warns The current "tumultuous environment" for employees and job-seekers across business and government - with numerous layoffs, economic concerns and political chaos - is increasing the risk posed by trusted insiders, making for a "big challenge for CISOs this year," says (..)

Risk

Risk Government

How to Package and Price Embedded Analytics

Just by embedding analytics, application owners can charge 24% more for their product. How much value could you add? This framework explains how application enhancements can extend your product offerings. Brought to you by Logi Analytics.

Analytics

U.S. CISA adds Palo Alto Expedition, Android, CyberPanel and Nostromo nhttpd bugs to its Known Exploited Vulnerabilities catalog

Security Affairs

NOVEMBER 7, 2024

Configuration secrets, credentials, and other data imported into Expedition is at risk due to this issue.” The vulnerability affects Expedition versions before 1.2.92. The researcher Brian Hysell reported the flaw to the security vendor.

IT

IT Authentication Cybersecurity Risk

Rethinking Insider Risk in an AI-Driven Workplace

Data Breach Today

MARCH 17, 2025

Carnegie Mellon CERT's Dan Costa on Addressing Root Causes of Insider Risk As layoffs and AI-driven workflows reshape workplace security, insider risk is becoming more complex.

Risk

Risk Workplace security Security

Italy’s data protection watchdog fined OpenAI €15 million over ChatGPT’s data management violations

Security Affairs

DECEMBER 23, 2024

“Furthermore, OpenAI has not provided for mechanisms for age verification, which could lead to the risk of exposing children under 13 to inappropriate responses with respect to their degree of development and self-awareness.” ” reads the press release published by Italy’s Garante.

Artificial Intelligence

Artificial Intelligence Personal data Data collection Privacy

Gen AI could speed up coding, but businesses should still consider risks

Collaboration 2.0

NOVEMBER 18, 2024

Organizations keen to fund gen AI-powered software development for the anticipated benefits should also understand that this may come with adverse effects.

Risk

The Power of Storytelling in Risk Management

Speaker: Dr. Karen Hardy, CEO and Chief Risk Officer of Strategic Leadership Advisors LLC

Communication is a core component of a resilient organization's risk management framework. However, risk communication involves more than just reporting information and populating dashboards, and we may be limiting our skillset. Storytelling is the ability to express ideas and convey messages to others, including stakeholders.

Risk

China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials

Security Affairs

NOVEMBER 14, 2024

The security breach poses a major national security risk. requests for communications data, according to people familiar with the matter, which amounts to a major national security risk.” broadband providers, including Verizon, AT&T, and Lumen Technologies, potentially accessing systems for lawful wiretapping and other data.

Government

Government Communications Access Risk

Could your job be at risk due to AI? Do this before it's too late

Collaboration 2.0

JANUARY 25, 2025

I have 78 million reasons why your career depends on what you do today. Here is everything you need to know. A couple of weeks ago, The World Economic

Risk

Risk IT Artificial Intelligence

U.S. CISA adds ScienceLogic SL1 flaw to its Known Exploited Vulnerabilities catalog

Security Affairs

OCTOBER 22, 2024

“ According to Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities , FCEB agencies have to address the identified vulnerabilities by the due date to protect their networks against attacks exploiting the flaws in the catalog.

IT

IT Cybersecurity Encryption Cloud

US Treasury Department sanctioned Chinese cybersecurity firm linked to Flax Typhoon APT

Security Affairs

JANUARY 4, 2025

Violators risk penalties, with sanctions aimed at encouraging behavioral change rather than punishment. In September 2024, US authorities disrupted the “Raptor Train” botnet Now the U.S. has blocked all assets of the sanctioned entity Integrity Tech and its affiliates, prohibiting U.S.

Cybersecurity

Cybersecurity IoT Risk IT

How and Why Should You Be Tracking Geopolitical Risk?

Geopolitical risk is now at the top of the agenda for CEOs. As a result, CEOs and C-suite professionals are becoming increasingly concerned about the impact of geopolitical risk on their businesses. So, what is geopolitical risk? How can you track geopolitical risk? But tracking it can be difficult.

Risk

A large botnet targets M365 accounts with password spraying attacks

Security Affairs

FEBRUARY 24, 2025

Despite Microsoft phasing it out, it remains an active security risk. The experts pointed out that organizations relying solely on interactive sign-in monitoring are blind to these attacks. Basic Authentication allows credentials to be transmitted in plain form, allowing attackers to steal them.

Passwords

Passwords Authentication Access Cybersecurity

DeepSeek database exposed highly sensitive information

Security Affairs

JANUARY 30, 2025

“This level of access posed a critical risk to DeepSeeks own security and for its end-users. ” concludes the report.

Metadata

Metadata Authentication Access Passwords

Mazda Connect flaws allow to hack some Mazda vehicles

Security Affairs

NOVEMBER 9, 2024

CVE-2024-8357 : Lack of root of trust in App SoC, risking persistent attacker control by bypassing boot security checks. CVE-2024-8359 and CVE-2024-8360 : Command injections in REFLASH_DDU_FindFile and REFLASH_DDU_ExtractFile , allowing arbitrary OS command execution through file path inputs.

Ransomware

Ransomware Manufacturing Access Risk

UK betting giants under fire for ads targeting at-risk gamblers

The Guardian Data Protection

FEBRUARY 1, 2025

Judge condemns firm for use of customers data after problem gambler was sent 1,300 emails over two years I lost 10 years of my life: how UK betting giants unlawful marketing kept suicidal gambler hooked Gambling companies in Britain could be forced to overhaul their advertising practices after a betting firm was ruled to have unlawfully targeted a (..)

Risk

Risk Marketing

Cover Your SaaS: How to Overcome Security Challenges and Risks For Your Organization

Speaker: Ronald Eddings, Cybersecurity Expert and Podcaster

Uncover and mitigate various security risks that put sensitive customer and business data at risk — including identifying misconfigured SaaS settings and suspicious or malicious behavior. By focusing on SaaS security posture management, your team can finally accomplish the following: Discover both known and unknown SaaS apps.

Security

From Risk Assessment to Action: Improving Your DLP Response

What Enterprises Need to Know About Agentic AI Risks

Webinars

Trending Sources

GUEST ESSAY: How AI co-pilots boost the risk of data leakage — making ‘least privilege’ a must

Webinars

Regulating AI Catastophic Risk Isn't Easy

LLMOps for Your Data: Best Practices to Ensure Safety, Quality, and Cost

News alert: Aptori’s AI-driven platform reduces risk, ensures compliance — now on Google Marketplace

Electric Vehicle Charging Stations at Risk From Hack Attacks

Terrorist Activity is Accelerating in Cyberspace – Risk Precursor to Summer Olympics and Elections

News Alert: Security Risk Advisors joins Microsoft Intelligent Security Association (MISA)

ERM Program Fundamentals for Success in the Banking Industry

Coast Guard Warns of Continued Risks in Chinese Port Cranes

Third-Party Identities: The Weakest Link in Your Cybersecurity Supply Chain

Burnout in SOCs: How AI Can Help Analysts Focus on High-Value Tasks

Security Researchers Warn of New Risks in DeepSeek AI App

Everything You Need to Know About Crypto

SEC fined 4 companies for misleading disclosures about the impact of the SolarWinds attack

Apple dismisses lawsuit against surveillance firm NSO Group due to risk of threat intelligence exposure

Hackers threaten to leak a copy of the World-Check database used to assess potential risks associated with entities

Key Takeaways from the CSA Understanding Data Security Risk Survey

The Unexpected Cost of Data Copies

Oil and Gas Firms Aware of Cyber Risks

DHS Warns Election Security Risks May Persist Into 2025

Unforeseen Risks to Medical Devices in Ransomware Attacks

CISA Red Team Finds Alarming Critical Infrastructure Risks

5 Early Indicators Your Embedded Analytics Will Fail

Artificial intelligence (AI) as an Enabler for Enhanced Data Security

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

Identity Security: How to Reduce Cyber Risk in Manufacturing

Workplace Chaos and Uncertainty Stoke Insider Risk Warnings

How to Package and Price Embedded Analytics

U.S. CISA adds Palo Alto Expedition, Android, CyberPanel and Nostromo nhttpd bugs to its Known Exploited Vulnerabilities catalog

Rethinking Insider Risk in an AI-Driven Workplace

Italy’s data protection watchdog fined OpenAI €15 million over ChatGPT’s data management violations

Gen AI could speed up coding, but businesses should still consider risks

The Power of Storytelling in Risk Management

China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials

Could your job be at risk due to AI? Do this before it's too late

U.S. CISA adds ScienceLogic SL1 flaw to its Known Exploited Vulnerabilities catalog

US Treasury Department sanctioned Chinese cybersecurity firm linked to Flax Typhoon APT

How and Why Should You Be Tracking Geopolitical Risk?

A large botnet targets M365 accounts with password spraying attacks

DeepSeek database exposed highly sensitive information

Mazda Connect flaws allow to hack some Mazda vehicles

UK betting giants under fire for ads targeting at-risk gamblers

Cover Your SaaS: How to Overcome Security Challenges and Risks For Your Organization

Stay Connected