A naukri.com initiative
Cyber Security News
Siliconangle
1M
49
Image Credit: Siliconangle
Sonar expands SonarQube with advanced security for third-party open-source code
- SonarSource is expanding SonarQube with SonarQube Advanced Security to include third-party open-source code analysis capabilities.
- SonarQube Advanced Security provides developers with enhanced security features to find and fix code quality and security issues in the development phase.
- The solution includes software composition analysis, static application security testing, license compliance, and security reporting.
- SonarQube Advanced Security integrates technology from Tidelift to improve third-party code quality and security.
Read Full Article
2 Likes
Siliconangle
1M
211
Image Credit: Siliconangle
New Splashtop solution enhances remote support with automated patch management and security controls
- Remote access and support startup Splashtop Inc. has announced a new autonomous endpoint management solution for remote support users seeking to improve efficiencies, visibility, and control over devices on their networks.
- The new solution introduces automation features including vulnerability scanning and real-time patch updates for combating zero-day or unpatched threats.
- Splashtop AEM provides real-time solutions to detect, prioritize, and remediate vulnerabilities quickly and complements Microsoft Intune by strengthening security through accelerating patch times and enabling IT to gain more value from long-term technology investments.
- The solution is designed for small and medium-sized businesses but can scale up to 200,000-plus endpoints, making it an affordable option for some enterprise environments.
Read Full Article
12 Likes
VentureBeat
1M
441
Image Credit: VentureBeat
Cerebras just announced 6 new AI datacenters that process 40M tokens per second — and it could be bad news for Nvidia
- Cerebras Systems announced the expansion of six new AI data centers in North America and Europe to increase its inference capacity to over 40 million tokens per second.
- The company aims to cater to the growing demand for fast AI inference and compete with Nvidia in this market segment.
- Partnerships with Hugging Face and AlphaSense further strengthen Cerebras' position by providing wider access to their high-speed AI inference services.
- Cerebras' specialized hardware is designed to run AI models 10 to 70 times faster than GPU-based solutions, appealing to customers seeking speed and efficiency.
- The company focuses on high-speed inference applications like real-time voice and video processing, reasoning models, and coding, enhancing developer productivity.
- Cerebras' investment in resilient infrastructure, like the tornado-resistant Oklahoma City facility, showcases its commitment to reliability and continuity of service.
- The expansion comes at a time when the AI industry prioritizes inference capabilities for deploying generative AI in production applications efficiently.
- With a significant presence in the United States, Cerebras also contributes to advancing domestic AI infrastructure and technological sovereignty.
- Cerebras' strategy of focusing on high-speed inference over competing across all AI workloads positions them as a leader in a niche market segment.
- Through cost-efficient services and faster AI model processing, Cerebras offers a compelling alternative to GPU-based solutions for various applications.
Read Full Article
26 Likes
Tech Radar
1M
437
Image Credit: Tech Radar
Security flaw means AMD Zen CPUs can be "jailbroken"
- Researchers from Google have identified a vulnerability in AMD Zen 1 - 4 chips.
- The vulnerability allows threat actors to push microcode updates, making it possible to 'jailbreak' the device.
- The vulnerability requires high privilege level access in order to exploit it.
- AMD has released BIOS updates to address the vulnerability.
Read Full Article
26 Likes
Socprime
1M
67
Image Credit: Socprime
CVE-2025-27840: Vulnerability Exploitation in Espressif ESP32 Bluetooth Chips Can Lead to Unauthorized Access to Devices
- An authorization bypass vulnerability in the Espressif ESP32 Bluetooth chips, tracked as CVE-2025-27840, has been discovered.
- This vulnerability affects over 1 billion devices and can lead to unauthorized access to devices and potential control over critical systems.
- The uncovered vulnerability includes 29 undocumented HCI commands that pose security risks.
- Espressif plans to release a software fix to remove the undocumented commands and mitigate the vulnerability.
Read Full Article
4 Likes
Eletimes
1M
396
Image Credit: Eletimes
Security by Design in Electronics: A Proactive Approach to Cybersecurity
- Security by Design is a proactive approach embedding cybersecurity into electronic systems from the conceptual stage.
- Benefits include reduced attack surface, regulatory compliance, cost efficiency, and enhanced trust and reliability.
- Key principles include Hardware Root of Trust, Secure Firmware Development, Zero Trust Architecture, and End-to-End Encryption.
- Supply Chain Security is crucial, along with industry trends like Automotive Security, Industrial IoT Security, and Chip-Level Security Advancements.
- Challenges include balancing security and performance, cost constraints, evolving threat landscape, and compliance challenges.
- Future trends include AI-Driven Security and Blockchain for IoT Security to enhance device security frameworks.
- Integration of security from the outset is crucial for resilience, compliance, and trustworthiness in electronic systems.
- Future trends like AI-driven security, quantum-resistant cryptography, and blockchain-based trust mechanisms will further enhance cybersecurity.
- Security by Design is imperative in safeguarding electronic systems against increasing cyber threats.
Read Full Article
23 Likes
Lastwatchdog
1M
63
News alert: 360 Privacy secures $36M to deliver turnkey digital executive protection platform
- 360 Privacy, a leading digital executive protection platform, has secured a $36 million growth equity investment from FTV Capital.
- The investment will be used to expand teams, accelerate innovation, and improve customer service.
- 360 Privacy offers a turnkey digital executive protection platform that monitors for personally identifiable information (PII).
- The company currently serves one-third of Fortune 100 companies.
Read Full Article
3 Likes
Insider
1M
423
Image Credit: Insider
Wall Street is worried it can't keep up with AI-powered cybercriminals
- Consultant Accenture surveyed bank executives on the impact of generative AI on cybersecurity, revealing that 80% believe hackers are empowered faster than banks can respond.
- Generative AI has significant implications for cybersecurity and customer trust in the banking industry, as highlighted by Accenture's financial services cybersecurity lead.
- The use of generative AI in banks has not only enhanced productivity but also presented new challenges, with cybercriminals leveraging the technology for more sophisticated scams.
- Major banks like JPMorgan and Bank of America invest billions annually in cybersecurity measures to protect against emerging threats facilitated by generative AI.
- Despite considerable investments in cybersecurity, bank IT executives express concerns about keeping pace with the rapid evolution of generative AI.
- Banks are utilizing AI to bolster their defenses, identify vulnerabilities, and mitigate risks, but regulatory constraints impede the speed at which they can adapt to threats.
- The involvement of third-party providers in bank security poses additional risks, with over 70% of breaches originating from this source according to Accenture.
- Fintech companies and startups are developing AI tools to aid banks in combating cyber attacks, but these providers can also serve as potential targets for bad actors due to less stringent regulation.
- Maintaining customer trust is crucial for banks, as it translates to higher retention rates and accelerated revenue growth, emphasizing the importance of robust cybersecurity measures.
- Banking executives are urged to prioritize cybersecurity as more than just a compliance issue, recognizing it as a fundamental aspect of protecting customer data and financial information.
Read Full Article
25 Likes
Cybersecurity-Insiders
1M
121
Image Credit: Cybersecurity-Insiders
GitGuardian Report: 70% of Leaked Secrets Remain Active for Two Years, Urging Immediate Remediation
- GitGuardian released the '2025 State of Secrets Sprawl Report,' revealing a 25% increase in leaked secrets year-over-year.
- 70% of secrets leaked in 2022 remain active today, posing a significant cybersecurity threat.
- Generic secrets, like hardcoded passwords, account for over half of all detected leaks.
- Private repositories are not fully secure, with AWS IAM keys and generic passwords frequently exposed.
- Secrets are prevalent in collaboration platforms like Slack and containers environments like DockerHub.
- Non-human identities (NHIs) outnumber human identities, leading to persistent vulnerabilities.
- Organizations using secrets management solutions still face a 5.1% secret leakage rate.
- The report emphasizes the need for comprehensive secrets security, including monitoring, detection, and remediation.
- To address secrets sprawl, organizations should deploy monitoring, centralized detection, establish rotation policies, and provide developer guidelines.
- GitGuardian is an NHI security platform helping organizations enhance secrets security.
Read Full Article
7 Likes
Siliconangle
1M
270
Image Credit: Siliconangle
Druva and Microsoft team up to enhance cyber resiliency for enterprises
- Druva and Microsoft have formed a strategic relationship to enhance cyber resiliency for enterprises.
- The partnership aims to provide cloud-native and hybrid data protection integrated with Microsoft Azure cloud services.
- The collaboration will deliver cross-cloud protection, unified visibility across data environments, and comprehensive data security strategies.
- Druva's platform will offer enhanced data protection, flexibility, scalability, and optimized costs for Azure customers.
Read Full Article
16 Likes
Socprime
1M
356
Image Credit: Socprime
SOC Prime Announces Referral Program for Individual Cyber Defenders
- SOC Prime has introduced a referral program for individual security researchers, fostering collaboration and networking in the cybersecurity community.
- The program enables security researchers to share the SOC Prime platform with peers and earn exclusive rewards.
- By leveraging open standards like MITRE ATT&CK®, Sigma, and Roota, organizations gain transparency and stay ahead of evolving threats.
- Referring a friend allows both the referrer and the referred contact to receive a 20% discount on their next Solo subscription payment.
Read Full Article
21 Likes
TechCrunch
1M
392
Image Credit: TechCrunch
Sola emerges from stealth with $30M to build the ‘Stripe for security’
- Israeli startup Sola has launched a low/no-code platform for users to design custom cybersecurity apps.
- The platform aims to simplify security and democratize security management.
- Sola has secured $30 million in seed funding from investors like S Capital and former Sequoia VC Mike Moritz.
- Co-founder Guy Flechter emphasizes Sola's goal of changing security mindset like Stripe did for payments.
- Sola's founders bring extensive experience in cybersecurity and aim to offer a new approach to security challenges.
- Sola allows users to create tailored security apps without requiring high technical expertise.
- The platform leverages AI and big data to streamline security processes for organizations.
- Users can create custom security apps and access ready-made apps from Sola's gallery.
- Sola's interface enables natural language interactions and data aggregation from various sources.
- Investor Mike Moritz praises Sola's approach of simplifying front ends while leveraging technological advancements.
Read Full Article
23 Likes
Tech Radar
1M
248
Image Credit: Tech Radar
Criminals are spreading malware disguised as DeepSeek AI
- Criminals are taking advantage of DeepSeek AI to distribute malware.
- Fake DeepSeek websites have been created to trick people into downloading malware.
- The criminals used compromised X accounts, coordinated bot activity, and geofencing.
- The campaign generated over a million views, demonstrating notable sophistication.
Read Full Article
14 Likes
TechCrunch
1M
288
Image Credit: TechCrunch
Some say passkeys are clunky — this startup wants to change that
- Cybersecurity startup Hawcx aims to fix the limitations of passkeys with its new passwordless authentication technology.
- Hawcx offers a platform-agnostic solution, generating private keys on each sign-in instead of storing them on devices.
- The technology is designed to work on older devices without modern chips, offering improved usability and security.
- Hawcx has raised $3 million in funding and is in discussions with large banks and gaming companies for pilot programs.
Read Full Article
17 Likes
Global Fintech Series
1M
369
Image Credit: Global Fintech Series
Finance in 2025: The Tools, Trends, and Challenges Ahead
- By 2025, the finance function is experiencing significant changes with AI playing a dominant role, particularly with the rise of agentic AI enabling autonomous finance.
- AI is expected to transition from an assistant to a strategic advisor in finance, assisting in complex decision-making and providing valuable insights for smarter actions.
- Finance leaders will need to focus on turning centralized data into actionable insights with innovative AI tools, emphasizing the importance of data lineage for trust and transparency.
- The risk and controls landscape in finance is evolving rapidly with digital adoption, leading to a focus on transparency, visibility, and the adoption of tools like anomaly detection for better performance and compliance.
- In 2025, the fight for finance talent intensifies as the talent pool shrinks, requiring CFOs to attract, retain, and upskill their teams to stay competitive and tackle the growing shortage in accounting roles.
- Organizations are urged to invest in training and create growth opportunities to prevent losing talent to competitors, ultimately building teams prepared for the future of finance.
- Successful CFOs in 2025 will be those who leverage AI, optimize data value, strengthen risk management, and prioritize talent development to drive long-term success in finance.
Read Full Article
22 Likes
For uninterrupted reading, download the app