< ciso
brief />
Tag Banner

All news with #ai security tag

759 articles · page 18 of 38

Secure-by-Design Framework for CISO-Led Innovation

🔒 CISOs should treat innovation as a control: enable safe experimentation while reducing exposure across AI, IoT and cloud. The article urges leaders to remove toil, standardize repeatable patterns, and provide golden paths so secure options are also the fastest. It recommends guardrails, mandatory exit criteria for pilots, and measurable outcomes to prevent innovation debt. The goal is to accelerate business velocity while demonstrably reducing risk.
read more →

Building a Resilient Cybersecurity Workforce for CISOs

🔒 CISOs face persistent skills gaps, workload stress and rapidly changing roles as AI adoption accelerates. Leaders such as Stephen Ford (Rockwell Automation) and ISC2 executives argue that workforce sustainability must be treated as a risk-management priority, backed by data to quantify workload and justify resourcing. The recommended approach combines AI-driven automation as a force multiplier with deliberate upskilling, human-in-the-loop processes, early-career pipelines and hiring from adjacent disciplines to preserve institutional knowledge and reduce burnout.
read more →

Telecom Service Providers Must Build Secure AI Factories

🔒 Service providers face a generational opportunity to become AI factories, hosting high-performance, low-latency AI for enterprises while meeting sovereignty and compliance needs. Palo Alto Networks argues that securing these environments requires layered defenses from physical infrastructure through models and agents, combining ML-led NGFWs, Prisma AIRS, CyberArk and Cortex. The aim is real-time governance of data, nonhuman identities and autonomous agents to prevent poisoning, prompt injection and credential theft.
read more →

ClawJacked vulnerability lets websites hijack OpenClaw

🔒 Security researchers disclosed a high-severity ClawJacked vulnerability in OpenClaw that allowed a malicious website to silently brute-force a locally running gateway and take control. Oasis Security reported the issue and OpenClaw released a fix in version 2026.2.26 on February 26. The update hardens WebSocket checks, removes unsafe localhost exemptions, and closes avenues for silent device pairing and credential theft. Administrators should update immediately.
read more →

OpenClaw 'ClawJacked' Flaw Lets Webpages Take Control

🔒OpenClaw addressed a high‑severity vulnerability codenamed ClawJacked that allowed attacker‑controlled webpages to connect to a local OpenClaw gateway, brute‑force its password (no rate limiting), and register as a trusted device with admin privileges because localhost registrations were silently approved. The vendor released 2026.2.25 on Feb 26, 2026, and urges immediate updates, access audits, and stronger governance for agent identities.
read more →

Accelerating Data Center Modernization for AI Era Now

🔍 Data center modernization has become a strategic imperative as organizations accelerate deployment of AI and other compute-intensive applications. Success requires coordinated investment across servers, storage, networking, software, and security, and strong partnerships with vendors and integrators. IT leaders need clear roadmaps, measurable milestones, and solutions that balance performance, cost, and operational resilience to enable rapid, secure adoption.
read more →

Accelerating Data Center Modernization for AI Readiness

⚙️Data centers must evolve quickly to support AI workloads and deliver measurable business outcomes. This Spotlight report explains the technical and organizational shifts required to bring infrastructure into the AI age, spanning servers, storage, high-performance computing, networking, software, and security. IT leaders will find actionable guidance on roadmaps, partner selection, and prioritization to accelerate modernization and reduce deployment risk.
read more →

Automating Security Decisions to Counter AI-Driven Attacks

🔒 Security experts warn that defenders must embrace greater automation to keep pace with AI-powered attacks that operate at machine speed. Recent research, including CrowdStrike findings showing average breakout times falling to 29 minutes (and as fast as 27 seconds), highlights the urgency. Industry leaders recommend automating routine SOC work and responses to known threats while reserving humans for novel, high-risk incidents. Cultural shifts and revised risk appetites will be required to enable faster, autonomous mitigations.
read more →

AWS Security Agent: Multi-Agent Penetration Testing

🔒 AWS describes a multi-agent penetration testing capability in AWS Security Agent that pairs LLM-driven reasoning with specialized scanners and browser-based sign-in to automate complex assessments. The design combines baseline scanning, managed static tests, and a guided explorer that dynamically generates contextual attack tasks. A swarm of risk-focused worker agents executes tests and submits structured findings, which are then validated via deterministic checks and LLM-assisted exploit attempts and scored with CVSS to produce actionable remediation reports.
read more →

Adapting Threat Modeling for AI Applications at Scale

🛡️ The Microsoft Security Blog explains why threat modeling must be retooled for AI systems, noting that probabilistic behavior and complex input spaces require reasoning about ranges of likely outcomes rather than single execution paths. It identifies three core drivers — nondeterminism, instruction‑following bias, and system expansion through tools and memory — which widen attack surfaces and surface human‑centered risks like erosion of trust. The post advises starting from assets, mapping untrusted inputs, setting clear 'never do' boundaries, and embedding architectural mitigations, observability, and response plans to limit blast radius and sustain trust.
read more →

Top CISO Priorities for RSA 2026: AI, CTEM, Resilience

🔐 RSA 2026 will spotlight how AI agents, CTEM, cyber resilience, identity, and AI security are reshaping CISO agendas. Expect demonstrations of AI-SOC capabilities, expanded CTEM platforms, and renewed emphasis on identity as the perimeter, alongside warnings about hallucinations, data quality, and vendor overreach. Arrive prepared with prioritized requirements, cleaned data, and a plan to upskill teams for effective human–agent teaming.
read more →

Android expands AI-powered scam protections to devices

🔒 Android is expanding its AI-driven Scam Detection protections for calls and messages, bringing on-device Gemini models to more Pixel and Samsung Galaxy devices. A real-world example describes a Pixel user who avoided a convincing bank scam after receiving a timely Scam Detection warning during the call. Google Messages protections now cover 20+ countries and multiple languages and have improved detection for sophisticated threats like job-offer and romance “pig butchering” scams. Processing occurs on-device, data aren’t stored or shared, and the feature is off by default and excluded for contacts.
read more →

Agentic SOC: Cortex Embeds AI Across Security Operations

🤖 Palo Alto Networks has rolled out a major Cortex release that embeds context-aware, agentic AI throughout the security operations lifecycle, promising faster detection, investigation and response. An expanded AI-ready data foundation, Cortex XDL 2.0, and new purpose-built agents — including Case Investigation, Cloud Posture and Automation Engineer — aim to slash response times and automate complex playbooks. The launch also introduces the standalone Cortex Agentix orchestration platform and signals intent to acquire Koi to strengthen endpoint protection for AI-driven threats.
read more →

App Exploits Surge as AI Accelerates Vulnerability Use

⚠️ IBM X-Force warns of a 44% increase in attacks exploiting public-facing applications in 2025, driven by missing authentication controls and AI-enabled vulnerability scanning. Vulnerability exploitation accounted for 40% of incidents, while ransomware and extortion groups grew 49% year over year. The report highlights AI is speeding reconnaissance and exploitation and that supply chain compromises have nearly quadrupled since 2020.
read more →

Poisoning AI Training Data by Publishing Fake Content

⚠️ A short experiment demonstrates how easy it is to poison AI outputs by publishing a single fabricated webpage. The author wrote an entirely false article titled "The best tech journalists at eating hot dogs," inventing events and rankings; within 24 hours Google Gemini and ChatGPT had incorporated the falsehoods, while Claude resisted. The incident underscores the fragility of trust in AI-derived answers.
read more →

Critical Claude Code Flaws Expose RCE and Key Theft

⚠️ Check Point researchers disclosed critical vulnerabilities, CVE-2025-59536 and CVE-2026-21852, in Anthropic’s Claude Code that allow remote code execution and theft of Anthropic API keys via malicious repository-level configuration files. The flaws can be triggered simply by cloning and opening an untrusted project; built-in mechanisms such as Hooks, MCP integrations, and environment variables may be abused to bypass trust controls, execute hidden shell commands, and redirect authenticated API traffic before user consent. Stolen keys can expose shared workspaces, modify or delete resources, and generate unauthorized costs, underscoring a shift in the AI supply chain threat model.
read more →

Moving Cyber Defense from Reactive Response to Proactive

🔒 Organizations are shifting from reactive incident response to proactive cyber defense to anticipate and block attacks before they cause damage. Speakers from PwC and Microsoft highlighted AI-accelerated threats, phishing deepfakes, and a criminal supply chain of ransomware-as-a-service, urging layered controls, zero trust, multicloud resilience, and security by design. Microsoft's Defender for Cloud, integrated with Microsoft 365 and third-party tools and deployed with PwC services, automates detection and response to reduce exposure time and staffing burdens.
read more →

Identity-First AI Security: Adding Intent to Access

🔐 Today’s enterprise AI agents are no longer passive assistants but active operators that authenticate to systems using API keys, OAuth tokens, cloud roles, and service accounts. The article advocates treating every agent as a first-class identity with unique identities, lifecycle management, defined roles, clear ownership, and auditability. It warns that identity alone is insufficient because agents are dynamic and can drift from original missions; instead it promotes intent-based permissioning, activating privileges only when an agent's declared mission and runtime context justify the action. Practical steps include inventorying agents, assigning lifecycle-managed identities, documenting approved missions, and enforcing conditional access based on identity, intent, and context.
read more →

AI Speeds Attacker Breakouts to Minutes, ReliaQuest Finds

🔍 ReliaQuest's Annual Cyber‑Threat Report 2026 found attackers are using AI and automation to reduce average breakout time to 34 minutes (29% faster than 2024), with the fastest lateral movement recorded at four minutes and the quickest exfiltration at six minutes. The firm says 80% of ransomware groups used automation or AI last year. Defenders can respond faster using agentic AI, achieving average containment in four minutes versus 16 hours without automation, and should prioritise visibility, inventory management and stronger identity controls.
read more →

AI-enabled Cyber Attacks Nearly Double in 2025 - CrowdStrike

⚠️ CrowdStrike's Global Threat Report 2026 warns that AI-enabled cyber-attacks rose 89% in 2025 as adversaries used machine learning and LLMs to scale and refine phishing, disinformation and malware operations. Researchers observed LLMs producing multilingual, convincing phishing lures and automating campaign creation, while some actors embedded prompting into malware (eg, LameHug) for reconnaissance. CrowdStrike recommends strong identity controls, AI-focused awareness training and threat-intel monitoring to mitigate the accelerating threat.
read more →