Generative AI for cybersecurity is an emerging category with Google an early entrant. At this week’s RSA Conference 2023 in San Francisco, Google unveiled Cloud Security AI Workbench, a toolkit powered by a customized AI language model called Sec-PaLM that is “fine-tuned for security use cases.” Accenture is the first client to sign up for Workbench. Google also announced it is combining its Google Cloud and Mandiant ecosystems to offer a turnkey solution to ward off threats “from incident response through proactive defense,” drawing on integrations from more than 100 leading cybersecurity vendors. Continue reading Google Workbench Taps AI Tech for Next-Gen Cybersecurity

The Internet of Things is more vulnerable than previously proven. Up until now the most common attack via IoT device has been to enlist thousands of them into botnets. Another method of attack is to find entry via a weak IoT device to conduct a ransomware attack. Now, IoT security firm Senrio has demonstrated that attackers can jump from one IoT device to another, without moving through PCs and servers, making their path even harder to discover. In other words, one vulnerable IoT device can create network disruption. Continue reading Unregulated IoT Devices Now Entry Point for Elaborate Hacks

As more enterprises move their data to the cloud, cybersecurity firm McAfee reports that 26 percent of companies have already experienced cloud data theft. McAfee released its report — based on polling 1,400 IT professionals during Q4 2017 — ahead of this week’s RSA security conference. “The survey showed that 97 percent of companies use cloud services, either as a public or private cloud or a combination of both, up from 93 percent a year ago,” reports VentureBeat. “Eighty-three percent store sensitive data in the cloud, but only 69 percent trust the public cloud to keep their data secure.” Continue reading McAfee: One in Four Companies Impacted by Cloud Data Theft

By now, everyone knows the general outline of the argument between Apple and the FBI, over the latter’s request for a backdoor into the San Bernardino shooter’s iPhone. Apple’s refusal to do so has sparked a war of words and legal actions between Apple and other proponents of data protection/digital privacy and the government, as well as others who believe national security trumps digital privacy. More recently, at the RSA Conference, an information security event, more nuances were revealed. Continue reading RSA Conference Reveals More Nuances in FBI-Apple Battle