Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

This week on the podcast, we review NIST's new publication that defines a taxonomy for how we talk about Adversarial Machine Learning. Before that, we cover a recent discovery of threat actors retaining access to Google accounts even through a password reset. We round out the episode with an account compromise that lead to a surge in Bitcoin price before finishing with a discussion of Living-off-Trusted Sites (LoTS) attacks that leverage GitHub.

This weeks' briefing covers.

The Devo Security Data Platform can help teams exceed threat response rates, improve analyst performance by 5x, and offload manual work up to 60%.

Dive into the intricate web of ethical dilemmas in AI development with me in this thought-provoking video. As we tread through the current phase of AI evolution, I explore the intrinsic differences in moralities and ethics between the East, West, South, and North. Delving into the darker side of humanity, we confront the potential misuse of advanced technology. Join the conversation as we revisit the debate on the consequences of good AI falling into the wrong hands. The looming question of a clash between ethical AI and malicious use is on the horizon, and it could escalate swiftly.

Keeper’s new granular sharing enforcements provide Keeper administrators with more control over global user record and folder management. These policies offer administrators a wide range of flexible restrictions that can be applied to users when both creating and sharing records.

Two-Factor Authentication or “2FA” provides an extra layer of security when logging into your Keeper Vault. While support for hardware security keys for 2FA is not new to Keeper, historically, users were required to have a backup method in addition to a security key. Keeper Administrators now have the ability to enforce the use of a hardware-based security key as the only two-factor method via a role enforcement policy setting.

In this WatchGuard Support video, you'll learn how to get started with WatchGuard Endpoint Security.

Embark on a critical discussion with me as we dissect the current state of AI legislation, shining a spotlight on the ambiguity surrounding military applications. In this video, I emphasize the pressing need for transparent frameworks and controls in the military AI sector, mirroring the advancements seen in commercial and medical domains. It's a call to action for industries, governments, and users worldwide to unite in pushing for robust controls and accountability. The risk is real, and it's time to prioritize ethical considerations in military AI.

Join me as we delve into the astounding progress of today's cutting-edge AI systems, now boasting a staggering five billion times more power than a mere decade ago! In this video, we scrutinize the accelerated pace of innovation in AI, sparking a crucial conversation about the looming advent of AGI. While I'm hopeful for a later arrival of AGI, the reality might unfold sooner than expected. Let's explore the hypotheticals and the tangible impact on the employment industry in the present moment.

Looking for a complete view of your application security posture to drive smarter, faster fixes in your ServiceNow workflows? ServiceNow workflows, backed by Snyk, provide a single view into all application vulnerabilities from multiple sources, determine their priority, and help expedite the remediation process with relevant stakeholders across the organization to reduce the attack surface. Working together with AppSec and IT teams, learn how SecOps teams can track vulnerabilities in open source dependencies and create ServiceNow Application Vulnerable Items (AVITs) automatically.