News Presenting AI to the Board as a CISO? Here’s a Template.
As organizations accelerate the adoption of generative AI, boards of directors and AI committees are asking new question...
Artificial Intelligence
News 
News CommetJacking attack tricks Comet browser into stealing emails
A new attack called 'CometJacking' exploits URL parameters to pass to Perplexity's Comet AI browser hidden instructions ...
News Google Drive for desktop gets AI-powered ransomware detection
Google has begun rolling out a new AI-powered security feature for Google Drive desktop, which will automatically pause ...
News Can We Trust AI To Write Vulnerability Checks? Here’s What We Found
Vulnerability management is always a race. Attackers move quickly, scans take time, and if your scanner can’t keep up, y...
News The hidden cyber risks of deploying generative AI
Organizations increasingly think it’s a great idea, even an absolute necessity, to integrate artificial intelligence int...
News Unofficial Postmark MCP npm silently stole users’ emails
A npm package copying the official ‘postmark-mcp’ project on GitHub turned bad with the latest update that added a singl...
News カーソルAIエディターがレポをデバイス上で悪意あるコードを「自動実行」させる
Cursor コードエディターの脆弱性により、開発者は悪意のあるリポジトリを開くと同時に自動的にタスクを実行されるリスクにさらされる。 脅威者はこの欠陥を悪用して、開発者がコマンドを実行することなく、マルウェアの配布、開発環境の乗っ取り、認...
News VirusTotal、SVGファイルに隠れたマルウェアのフィッシングキャンペーンを発見
VirusTotalは、コロンビアの司法システムになりすました説得力のあるポータルを作成し、マルウェアを配信するSVGファイルに隠されたフィッシングキャンペーンを発見しました。 VirusTotalは、同社のAI Code Insightプ...
News Threat actors abuse X’s Grok AI to spread malicious links
Threat actors are using Grok, X's built-in AI assistant, to bypass link posting restrictions that the platform introduce...
News Hackers use new HexStrike-AI tool to rapidly exploit n-day flaws
Hackers are increasingly using a new AI-powered offensive security framework called HexStrike-AI in real attacks to expl...