Technology

Abusing supply chains: How poisoned models, data, and third-party libraries compromise AI systems

Aug 18, 2025 By Mallory Mooney In Datadog

The AI ecosystem is rapidly changing, and with this growth comes unique challenges in securing the infrastructure and services that support it. In Part 1 of this series, we explored how attackers target the underlying resources that host and run AI applications, such as cloud infrastructure and storage. In this post, we'll look at threats that affect AI-specific resources in supply chains, which are the software and data artifacts that determine how an AI service operates.

Read Post

Datadog

Read more about Abusing supply chains: How poisoned models, data, and third-party libraries compromise AI systems

Cybersecurity Frontlines Now Require Organizations to Address APIs as a Matter of Urgency

Aug 18, 2025 By Tawnya Lancaster In LevelBlue

APIs operate throughout the digital world to support mobile applications, enable cloud capabilities, power GenAI tools, and conduct invisible operations during every digital interaction. As the growth of API usage accelerates, Akamai’s 2024 API Security Impact Report shows that organizations find it difficult to align their security efforts with the expanding risk domain.

Read Post

LevelBlue

Read more about Cybersecurity Frontlines Now Require Organizations to Address APIs as a Matter of Urgency

7 Proven Ways to Safeguard Personal Data in LLMs

Aug 18, 2025 By Anwita In Protecto

Large Language Models (LLMs) are becoming integral to SaaS products for features like AI chatbots, support agents, and data analysis tools. With that comes a significant privacy risk: if not handled carefully, an LLM can ingest and remix sensitive personal data, potentially exposing private information in unexpected ways. Regulators have taken note – frameworks like GDPR, HIPAA, and PCI-DSS now expect AI systems to implement auditable, runtime controls to protect sensitive data.

Read Post

Protecto

Read more about 7 Proven Ways to Safeguard Personal Data in LLMs

How external attackers and malicious insiders exploit standing privileges in the cloud

Aug 18, 2025 By Brooke Jameson In CyberArk

For many of us, the term “cloud security breach” conjures meticulous attack plans executed by sophisticated criminal syndicates. But in reality, “attacks” can be far more mundane: maybe some forgotten credentials, a few default permissions, or a user whose cleanup to-do list never got done. At the center of these incidents are standing privileges: long-lived access rights originally granted for legitimate tasks.

Read Post

CyberArk

Read more about How external attackers and malicious insiders exploit standing privileges in the cloud

Fixing Outdated Code from Claude Opus 4.1 & GitHub Copilot

Aug 16, 2025 By Snyk In Snyk

Fixing Outdated Code from Claude Opus 4.1 & GitHub Copilot.

View Video

Snyk

Read more about Fixing Outdated Code from Claude Opus 4.1 & GitHub Copilot

The Rules Have Changed AI vs AI #aisecurity #ai

Aug 15, 2025 By Mend In Mend

Mend.io, formerly known as Whitesource, has over a decade of experience helping global organizations build world-class AppSec programs that reduce risk and accelerate development -– using tools built into the technologies that software and security teams already love. Our automated technology protects organizations from supply chain and malicious package attacks, vulnerabilities in open source and custom code, and open-source license risks.

View Video

Mend

Read more about The Rules Have Changed AI vs AI #aisecurity #ai

API Vulnerabilities and Attack Surface Management

Aug 15, 2025 By A10 Networks In A10 Networks

ThreatX by A10 Networks: API Vulnerabilities and Attack Surface Management In this video, Carlo Alpuerto of A10 Networks discusses API security with Beau Hamilton of SourceForge. He explains that API security is a broad term that includes addressing vulnerabilities in the development cycle, which takes time and involves various stages like QA, staging, and UAT.

View Video

A10 Networks

Read more about API Vulnerabilities and Attack Surface Management

Dina Mathers, Carvana CISO, shares how her team is leveraging Agentic AI for 5x SOC efficiency

Aug 15, 2025 By Torq In Torq

View Video

Torq

Read more about Dina Mathers, Carvana CISO, shares how her team is leveraging Agentic AI for 5x SOC efficiency

Top 25 Web Application Firewalls (WAFs) of 2026: Cloudflare Alternatives, Features & Pricing

Aug 15, 2025 By AppSentinels In AppSentinels

In today’s hyper-connected world, Web Application Firewalls (WAFs) have become one of the most critical layers in a modern security stack. As businesses shift more operations, data, and user experiences online, web apps and APIs are increasingly under siege – from basic bot scraping to sophisticated logic abuse and zero-day exploits.

Read Post

AppSentinels

Read more about Top 25 Web Application Firewalls (WAFs) of 2026: Cloudflare Alternatives, Features & Pricing

AI Agents in Cybersecurity: Revolutionizing AppSec

Aug 14, 2025 By Stephen Thoemmes In Snyk

We're witnessing a paradigm shift from reactive security tools to proactive, intelligent defenders. AI agents represent the next evolution beyond traditional security systems, fundamentally changing how we approach cybersecurity.

Read Post