From understanding what AI means in the context of the organization to being compliant and not forgetting the role third parties play, here are ten key things to keep in mind when creating an AI policy.
10 things you should include in your AI policy Read More »
From the editors of CSO, this enterprise buyer’s guide helps IT security staff understand what the various breach and attack simulation (BAS) options can do for their organizations and how to choose the right solution. Download the breach and attack simulation (BAS) tools buyer’s guide here.
Breach and attack simulation (BAS) tools buyer’s guide Read More »
Prompt injection and supply chain vulnerabilities remain the main LLM vulnerabilities but as the technology evolves new risks come to light including system prompt leakage and misinformation.
10 most critical LLM vulnerabilities Read More »
As gen AI use continues to skyrocket, reports of business benefits are trickling in. But we’re also seeing more cases where the tech can actually create more work than it saves.
7 ways gen AI can create more work than it saves Read More »
AI and machine learning are improving cybersecurity, helping human analysts triage threats and close vulnerabilities quicker. But they are also helping threat actors launch bigger, more complex attacks.
10 ways hackers will use machine learning to launch attacks Read More »
From prompt injections to model theft, OWASP has identified the most prevalent and impactful vulnerabilities found in AI applications based on large language models (LLMs).
10 most critical LLM vulnerabilities Read More »
The best way to recover from a ransomware attack is to have a reliable and fast backup process. Here’s how to do it.
Ransomware recovery: 8 steps to successfully restore from backup Read More »
In a somewhat chilling revelation, AI agents were able to find and exploit known vulnerabilities, but only under certain conditions, which researchers say indicates they’re not close to being a significant threat – yet.
AI agents can find and exploit known vulnerabilities, study shows Read More »
BAS products simulate attacks to test a company’s defenses against threat vectors. The following guide can help you make the right choice for your organization.
Breach and attack simulation tools: Top vendors, key features, how to choose Read More »
Organizations have started to launch AI certifications in governance and cybersecurity but given how immature the space is and how fast it’s changing, are these certifications worth pursuing?
AI governance and cybersecurity certifications: Are they worth it? Read More »
The ransomware business hit record highs in 2023 despite falling payment rates, as attackers scaled up the number of attacks and new AI weapons were brought to bear on both sides of the war, promising to make an even bigger impact this year.
The state of ransomware: Faster, smarter, and meaner Read More »
Generative AI could be the holy grail of DevSecOps, from writing secure code and documentation to creating tests. But it could be a major point of failure if not used correctly.
Generative AI poised to make substantial impact on DevSecOps Read More »
By automating repetitive triage and documentation tasks, generative AI systems allow entry-level security analysts to spend more time on investigations, response, and developing core skills.
How GenAI helps entry-level SOC analysts improve their skills Read More »
Risks associated with artificial intelligence have grown with the use of GenAI and companies must first understand their risk to create the best protection plan.
Assessing and quantifying AI risk: A challenge for enterprises Read More »
Code vulnerability is not only a risk of open-source code, with many legacy systems still in use — whether out of necessity or lack of visibility — the truth is that cybersecurity teams will inevitably need to address the problem.
3 ways to fix old, unsafe code that lingers from open-source and legacy programs Read More »
