A naukri.com initiative
Cyber Security News
Pymnts
4w
236
Image Credit: Pymnts
Report: Commerce Department Bans Use of DeepSeek on Government Devices
- The Department of Commerce has banned the use of DeepSeek's AI model on government-furnished equipment.
- Concerns about the Chinese company gaining access to sensitive information prompted the ban.
- New York, Virginia, and Texas have already banned DeepSeek from government devices.
- Other countries, including Australia, Italy, and Taiwan, have also implemented a ban or are considering doing so.
Read Full Article
14 Likes
VentureBeat
4w
276
Image Credit: VentureBeat
Orion Security emerges from stealth using LLMs to track your enterprise’s data flow and stop it from leaking out
- Orion Security has emerged from stealth with $6 million in seed funding led by Pico Partners and FXP, aiming to use large language models (LLMs) to track data flow and prevent exfiltration.
- Traditional data protection tools are being outpaced by the complexity and speed of data flow within organizations, making it crucial to adopt AI-powered solutions like Orion Security's platform.
- Orion Security's platform dynamically learns an organization's business processes to differentiate between legitimate data movement and potential threats, providing a more effective approach than manual policy-based security models.
- Their AI models, including proprietary ones and fine-tuned open-source LLMs, automate data protection by classifying sensitive data based on context and assessing user roles and data movement patterns.
- Orion Security's Indicators of Leakage (IOL) engine leverages proprietary reasoning models and LLM classification to analyze data movement patterns and detect anomalies in real-time.
- The platform offers real-time insights into data flows, categorizing risk severity and enabling security teams to identify and address high-risk activities promptly.
- Orion Security's AI distinguishes between malicious insiders, human errors, and external attackers, providing a comprehensive approach to detecting and preventing data leaks.
- The company provides flexibility in response mechanisms, allowing customization based on the level of aggressiveness desired by each organization.
- Orion Security focuses on immediate value delivery during onboarding and emphasizes privacy-first security architecture, ensuring sensitive data is protected.
- By reducing manual workload, false positives, and security blind spots, Orion Security aims to lead the way in context-aware data protection solutions against evolving insider threats.
Read Full Article
16 Likes
Tech Radar
4w
272
Image Credit: Tech Radar
Microsoft warns of a devious new RAT malware which can avoid detection with apparent ease
- Microsoft has discovered a new Remote Access Trojan (RAT) named StilachiRAT, which employs sophisticated techniques to evade detection and persist in a target environment.
- StilachiRAT can steal sensitive data, target cryptocurrency wallets, and perform remote command execution, granting attackers control over infected devices.
- The malware maintains persistence through the Windows service control manager, utilizing watchdog threats to recreate itself if removed.
- StilachiRAT employs evasion techniques such as clearing event logs and checking for sandbox environments, making analysis more difficult.
Read Full Article
16 Likes
Underscore
4w
299
Image Credit: Underscore
Why We Invested in Orion Security: The AI-powered Data Protection Platform
- Companies face new security challenges in the age of AI and cloud services, rendering traditional defenses ineffective.
- Orion Security offers an AI-powered data protection platform to address modern security gaps.
- Underscore VC has invested in Orion Security's $6 million Seed round along with other partners.
- Orion redefines data protection by focusing on context-aware solutions over traditional rule-based tools.
- Their platform maps data flow within organizations to prevent data exfiltration risks effectively.
- Orion's approach distinguishes between normal activities and potential data breaches to reduce false alerts.
- The team behind Orion combines domain expertise and solution execution to secure enterprise data effectively.
- Orion's founders, Nitay Milner and Yonatan Kreiner, bring valuable experience and a user-friendly approach to their product.
- Orion plans to expand its team and enhance product development to meet the increasing demand for its data protection solution.
- Interested candidates can explore opportunities at Orion, and organizations can benefit from their innovative security approach.
Read Full Article
18 Likes
Pymnts
4w
125
Image Credit: Pymnts
Google Pays $32 Billion to Add Wiz’s Security to Cloud Platform
- Google announced its agreement to acquire cloud security platform Wiz for $32 billion.
- The acquisition aims to enhance cloud security and provide multi-cloud capabilities for Google Cloud.
- Wiz's security platform is designed to protect against cybersecurity incidents across major cloud and code environments.
- Wiz's products will continue to be available on all major clouds, including AWS, Azure, and Oracle Cloud.
Read Full Article
7 Likes
Global Fintech Series
4w
174
Image Credit: Global Fintech Series
Almost three quarters of senior global financial services professionals expect financial crime risk to rise in 2025 – Kroll
- Cybersecurity threats and data breaches are cited as the top risk factor by 68% of financial services professionals expecting an increase in financial crime risk in 2025.
- Nearly half (49%) of professionals view keeping up with evolving regulations as the biggest challenge in sanctions compliance.
- Only one-third (33%) of professionals feel very prepared to address geopolitical risks in the next 12 months.
- Kroll's 2025 Financial Crime Report reveals that over 71% of executives anticipate a rise in financial crime risks.
- The report identifies cybersecurity, AI, regulatory complexity, geopolitics, and sanctions as key issues in fighting fraud and financial crime in 2025.
- Cybersecurity is a leading risk exposure, with 68% of professionals linking it to increased financial crime risk.
- About 49% of organizations plan to invest in AI solutions to combat financial crime.
- Concern over regulatory changes is rising, with 55% expecting increased enforcement action against financial crime.
- Nearly half (49%) find keeping up with regulatory changes as the biggest challenge in sanctions compliance.
- Only 33% of professionals feel very prepared to tackle geopolitical risks in the next year.
Read Full Article
10 Likes
Siliconangle
4w
232
Image Credit: Siliconangle
Flashpoint report highlights rising cyberthreats, with infostealers and ransomware leading the way
- A new report from Flashpoint highlights major cyberthreats shaping 2025, with infostealers, ransomware, and vulnerabilities leading the way.
- The report reveals a 33% increase in credential theft year-over-year, with over 3.2 billion credentials stolen through 2024.
- Ransomware attacks increased by 10% in 2024, with five major ransomware groups accounting for nearly half of all incidents.
- Vulnerabilities increased by 12% last year, with more than 39% of them being publicly available exploits.
Read Full Article
13 Likes
Siliconangle
4w
187
Image Credit: Siliconangle
Orion Security raises $6M to plug sensitive data leaks with AI smarts
- Orion Security Ltd. raises $6 million in seed funding to combat data leaks using AI technology.
- The startup utilizes AI systems to detect data movement by illicit actors, aiming to prevent data exfiltration.
- Data exfiltration has become a major concern, particularly with the rise of state-sponsored hackers and generative AI tools.
- North Korean hackers have been profiting from data exfiltration, posing a significant threat to businesses.
- Orion Security's AI platform learns a company's data flow to distinguish between legitimate activities and potential risks.
- The company's technology can prevent sensitive data transfers to suspicious destinations and alert security teams.
- The funding round was led by Pico Venture Partners and FXP, with support from other cybersecurity industry experts.
- Orion's approach focuses on understanding the business context of data movement to enhance data protection.
- The AI algorithms improve over time to reduce false alerts and provide accurate threat detection.
- Orion's initiative addresses the limitations of manual security policies, offering a more flexible and proactive solution.
Read Full Article
11 Likes
Siliconangle
4w
178
Image Credit: Siliconangle
Cloudflare introduces Threat Events Feed to enhance cyberthreat visibility
- Cloudflare launches Cloudforce One Threat Events Feed to provide real-time intelligence on cyberattacks.
- The feed helps security teams spot issues faster, respond to threats quickly, and stay ahead of cybercriminals.
- Cloudflare's Threat Events Feed offers contextual insights, actionable indicators of compromise, and detailed summaries.
- The feed improves overall threat readiness, integrates with existing cybersecurity workflows, and enhances the threat intelligence ecosystem.
Read Full Article
10 Likes
VentureBeat
4w
44
Image Credit: VentureBeat
Halliday raises $20 million to build AI agents that operate safely on blockchain
- Halliday has raised $20 million in Series A funding to develop AI agents that can safely operate on blockchain networks.
- The funding round, led by Andreessen Horowitz’s crypto arm (a16z crypto), brings the company’s total funding to over $26 million.
- Halliday's core innovation, the Agentic Workflow Protocol (AWP), creates 'immutable guardrails' for AI agents operating on blockchain networks.
- The protocol ensures that autonomous systems can execute tasks within defined parameters without the risk of exploits or unintended actions.
Read Full Article
2 Likes
Global Fintech Series
4w
223
Image Credit: Global Fintech Series
The Architecture of Push-to-Card Payments: How Real-Time Transactions Are Processed Globally
- Push-to-Card Payments revolutionize real-time money transfers and enable instant and borderless transactions.
- The architecture of push-to-card payments involves payment networks, compliance mechanisms, and security protocols.
- Key components in the push-to-card payment ecosystem include senders and recipients, payment processors, card networks, financial institutions, and regulatory frameworks.
- Cutting-edge technologies such as tokenization, AI and machine learning, APIs, and blockchain power push-to-card payments while adhering to compliance and security considerations.
Read Full Article
13 Likes
The Verge
4w
206
Image Credit: The Verge
Google acquires cybersecurity firm Wiz for $32 billion
- Alphabet, Google's parent company, has announced its largest-ever acquisition, acquiring cybersecurity firm Wiz for $32 billion.
- Wiz, a fast-growing Israeli-founded startup, provides cloud-based cybersecurity solutions and was previously valued at $12 billion.
- The deal is pending regulatory approval, and if successful, it will surpass Google's previous largest acquisition of Motorola Mobility for $12.5 billion.
- Google aims to strengthen its cloud security provisions by incorporating Wiz's expertise and plans to retain Wiz as a multicloud platform.
Read Full Article
12 Likes
Global Fintech Series
4w
303
Image Credit: Global Fintech Series
Bluefin and Printec Group Partner to Bring PCI-Validated P2PE to European Retailers
- Bluefin and Printec Group have formed a strategic partnership to bring PCI-validated P2PE to European retailers.
- Printec will integrate Bluefin's P2PE solution into its payment offerings, ensuring best-in-class security for European customers.
- The partnership will begin with a deployment at a global supermarket chain, securing retail payments through Verifone devices.
- The collaboration strengthens data protection for retailers, reduces compliance costs, and mitigates security risks.
Read Full Article
18 Likes
Tech Radar
4w
98
Image Credit: Tech Radar
A worrying critical security flaw in Apache Tomcat could let hackers take over servers with ease
- A deserialization vulnerability on Apache Tomcat servers is being abused in the wild to completely take over affected endpoints.
- The attack is dead simple to execute and requires no authentication, allowing threat actors to gain full remote access to vulnerable servers.
- Most web application firewalls (WAF) miss this attack, making it difficult for organizations to detect and prevent the breach.
- Users are advised to upgrade to the latest versions of Apache Tomcat to fix the security flaw.
Read Full Article
5 Likes
Medium
4w
424
Image Credit: Medium
What I Will Teach My Kids About Cybersecurity
- Teach children to keep personal information private online and avoid sharing details like home address and full name.
- Educate children about online threats and common scams, and encourage them to report any suspicious activity.
- Teach children to create strong passwords, never share them, and be cautious of cyberbullying.
- Promote critical evaluation of online content and establish rules for safe usage of online platforms.
Read Full Article
25 Likes
For uninterrupted reading, download the app