MDF Law PLLC Comment On Regulatory Notice 26-06
MDF Law PLLC Comment On Regulatory Notice 26-06 fnrw-backend Tue, 03/31/2026 – 17:18 Marc Fitapelli, Esq. NY US Marc@mdf-law.com MDF Law PLLC I submit this comment on behalf of investors who are routinely forced into the FINRA arbitration forum after suffering significant financial losses. In my practice, I represent individuals who have lost substantial sums […]
Attackers trojanize Axios HTTP library in highest-impact npm supply chain attack
Attackers compromised the npm account of the lead maintainer of Axios, a widely used JavaScript HTTP client library, and used it to publish malicious versions of the package that deployed a cross-platform remote access trojan on developer machines. The incident represents the highest-impact npm supply chain attack on record given Axios’ approximately 100 million weekly […]
2022073322201 Chapin Davis CRD 28116 AWC lp.pdf
2022073322201 Chapin Davis CRD 28116 AWC lp.pdf Anonymous (not verified) Tue, 03/31/2026 – 16:35 Case ID 2022073322201 Document Number afa71230 Document Type AWCs (Letters of Acceptance, Waiver, and Consent) Action Date Tue, 03/31/2026 – 12:00 Related Content Off Attachment 2022073322201 Chapin Davis CRD 28116 AWC lp.pdf
The Neutral Corner – Volume 1—2026
The Neutral Corner – Volume 1—2026 K30658 Tue, 03/31/2026 – 16:05 The Neutral Corner – Volume 1—2026 Mission Statement New Rules to Accelerate Cases When Time Matters Most By Hannah Yoo, Senior Principal Analyst, FINRA Case Administration and Staff Training FINRA Launches DR Portal Mobile App for Arbitrators Keep Your Camera on During Virtual Hearings FINRA Dispute […]
5-month-old F5 BIG-IP DoS bug becomes critical RCE exploited in the wild
A vulnerability misclassified five months ago as a denial-of-service issue in F5 BIG-IP Access Policy Manager (APM) turned out to be a critical pre-authentication remote code execution flaw that is now under active exploitation. Hackers are using it to deploy a persistent malware program that runs with root privileges. The CVE-2025-53521 vulnerability was first disclosed […]
Android Developer Verification Rollout Begins Ahead of September Enforcement
Google on Monday said it’s officially rolling out Android developer verification to all developers to combat the problem of bad actors distributing harmful apps while “hiding behind anonymity.” The development comes ahead of a planned verification mandate that goes into effect in Brazil, Indonesia, Singapore, and Thailand this September, before it expands globally next year. […]
Attack on axios software developer tool threatens widespread compromises
Tim Starks and Derek B. Johnson report: A hacker briefly delivered malware this week through a popular open-source project for software developers that has an estimated 100 million weekly downloads, raising the possibility of compromises spreading widely through a supply-chain attack. Axios is a JavaScript client library used in web requests. The unknown attacker hijacked… […]
Cyber Threats & Effective Practices With FBI and Industry Experts
Cyber Threats & Effective Practices With FBI and Industry Experts K30658 Tue, 03/31/2026 – 14:19 FINRA partners with the Federal Bureau of Investigation (FBI) and industry cybersecurity leaders for this webinar on emerging cybersecurity threats facing member firms. Panelists discuss current threat intelligence, observations from the field and strategies for strengthening cybersecurity programs. Cyber Threats […]
TrueConf Zero-Day Exploited in Attacks on Southeast Asian Government Networks
A high-severity security flaw in the TrueConf client video conferencing software has been exploited in the wild as a zero-day as part of a campaign targeting government entities in Southeast Asia dubbed TrueChaos. The vulnerability in question is CVE-2026-3502 (CVSS score: 7.8), a lack of integrity check when fetching application update code, allowing an attacker […]
25-01336.pdf
25-01336.pdf Anonymous (not verified) Tue, 03/31/2026 – 10:00 Case ID 25-01336 Forum FINRA Document Type Award Claimants Orion Willis Respondents Centaurus Financial, Inc. Neutrals Stephany Adriene Watson Patricia Ann Tracey Peter A.P. Dunlop Hearing Site Phoenix, AZ Award Document 25-01336.pdf Documentum DocID 08f64f32 Award Date Official Mon, 03/30/2026 – 12:00 Related Content Off Claimant Representatives […]
Vertex AI Vulnerability Exposes Google Cloud Data and Private Artifacts
Cybersecurity researchers have disclosed a security “blind spot” in Google Cloud’s Vertex AI platform that could allow artificial intelligence (AI) agents to be weaponized by an attacker to gain unauthorized access to sensitive data and compromise an organization’s cloud environment. According to Palo Alto Networks Unit 42, the issue relates to how the Vertex AI […]
OpenAI patches twin leaks as Codex slips and ChatGPT spills
OpenAI has fixed two flaws in its AI stack that could allow AI agents to move sensitive data in unintended ways. The issues, disclosed by researchers at BeyondTrust and Check Point Research, affect the OpenAI Codex coding agent and ChatGPT’s code execution environment, respectively. One enabled GitHub token theft through command injection, while the other […]
PX4 Autopilot
View CSAF Summary Successful exploitation of this vulnerability could allow an attacker with access to the MAVLink interface to execute arbitrary shell commands without cryptographic authentication. The following versions of PX4 Autopilot are affected: Autopilot v1.16.0_SITL_latest_stable (CVE-2026-1579) CVSS Vendor Equipment Vulnerabilities v3 9.8 PX4 PX4 Autopilot Missing Authentication for Critical Function Background Critical Infrastructure Sectors: […]
Anritsu Remote Spectrum Monitor
View CSAF Summary Successful exploitation of this vulnerability could allow attackers with network access to alter operational settings, obtain sensitive signal data, or disrupt device availability. The following versions of Anritsu Remote Spectrum Monitor are affected: Remote Spectrum Monitor MS27100A vers:all/* (CVE-2026-3356) Remote Spectrum Monitor MS27101A vers:all/* (CVE-2026-3356) Remote Spectrum Monitor MS27102A vers:all/* (CVE-2026-3356) Remote […]
The AI Arms Race – Why Unified Exposure Management Is Becoming a Boardroom Priority
The cybersecurity landscape is accelerating at an unprecedented rate. What is emerging is not simply a rise in the number of vulnerabilities or tools, but a dramatic increase in speed. Speed of attack, speed of exploitation, and speed of change across modern environments. This is the defining challenge of the new era of digital warfare: […]
Silver Fox Expands Asia Cyber Campaign with AtlasCross RAT and Fake Domains
Chinese-speaking users are the target of an active campaign that uses typosquatted domains impersonating trusted software brands to deliver a previously undocumented remote access trojan named AtlasCross RAT. “The operation covers VPN clients, encrypted messengers, video conferencing tools, cryptocurrency trackers, and e-commerce applications, with eleven confirmed delivery domains impersonating
Hacked Hospitals, Hidden Spyware: Iran Conflict Shows How Digital Fight Is Ingrained in Warfare
Iran-linked hacking groups are turning to high-volume, low-impact cyberattacks, and AI is providing a boost. The post Hacked Hospitals, Hidden Spyware: Iran Conflict Shows How Digital Fight Is Ingrained in Warfare appeared first on SecurityWeek.
European Commission Reports Cyber Intrusion and Data Theft
The ShinyHunters hacker group claimed to have stolen over 350GB of information from European Commission cloud systems. The post European Commission Reports Cyber Intrusion and Data Theft appeared first on SecurityWeek.
Russian APT Star Blizzard Adopts DarkSword iOS Exploit Kit
The state-sponsored group’s campaign has targeted government, higher education, financial, and legal entities, as well as think tanks. The post Russian APT Star Blizzard Adopts DarkSword iOS Exploit Kit appeared first on SecurityWeek.
Huskeys Emerges From Stealth With $8 Million in Funding
The startup has built an edge security management (ESM) platform, an AI engine atop the entire edge security stack. The post Huskeys Emerges From Stealth With $8 Million in Funding appeared first on SecurityWeek.
Silent Drift: How LLMs Are Quietly Breaking Organizational Access Control
LLMs can write complex Rego and Cedar code in seconds, but a single missing condition or hallucinated attribute can quietly dismantle your organization’s least-privilege security model. The post Silent Drift: How LLMs Are Quietly Breaking Organizational Access Control appeared first on SecurityWeek.
Healthcare IT Platform CareCloud Probing Potential Data Breach
The company has disclosed a cybersecurity incident involving one of its electronic health record environments. The post Healthcare IT Platform CareCloud Probing Potential Data Breach appeared first on SecurityWeek.
Critical Vulnerability in OpenAI Codex Allowed GitHub Token Compromise
Researchers found an OpenAI Codex vulnerability that could have been exploited to compromise GitHub tokens. The post Critical Vulnerability in OpenAI Codex Allowed GitHub Token Compromise appeared first on SecurityWeek.
Lloyds Data Security Incident Impacts 450,000 Individuals
A faulty software update led to the exposure of mobile banking users’ transactions to other users of the application. The post Lloyds Data Security Incident Impacts 450,000 Individuals appeared first on SecurityWeek.
StrongSwan Flaw Allows Unauthenticated Attackers to Crash VPNs
Remotely exploitable, the integer underflow vulnerability impacts StrongSwan releases spanning 15 years. The post StrongSwan Flaw Allows Unauthenticated Attackers to Crash VPNs appeared first on SecurityWeek.
8 ways to bolster your security posture on the cheap
As every CISO knows, maintaining a strong cybersecurity posture is costly. What’s not so well known is that there are many ways cybersecurity can be enhanced with the help of relatively trivial investments. Simply by thinking creatively, a security leader can substantially boost enterprise protection at a minimal cost. Could your organization benefit from some […]
The external pressures redefining cybersecurity risk
Over the last four years, I’ve watched organizations get blindsided by threats that originated in a third-party network. More than 35% of data breaches are caused by a compromised vendor or partner, not by any failure in the organization’s controls. While many organizations know that the biggest threats to their security come from forces entirely […]
6 key takeaways from RSA Conference 2026
Writing a conference preview is an act of professional speculation. You read the agenda, map the schedule session density, and make your personal best call about where the intellectual energy will concentrate. From my perspective going in, RSA Conference 2026 outlined a defining tension for CISOs today: how to enable AI adoption fast enough to […]
Application Control Bypass for Data Exfiltration, (Tue, Mar 31st)
In case of a cyber incident, most organizations fear more of data loss (via exfiltration) than regular data encryption because they have a good backup policy in place. If exfiltration happened, it means a total loss of control of the stolen data with all the consequences (PII, CC numbers, …).
Fahndung nach Cyberkriminellen – 130 Firmen attackiert
130 Unternehmen und Institutionen gerieten ins Visier der Hacker. Tayler Derden | shutterstock.com Nach jahrelangen Cybercrime-Angriffen auf mehr als Hundert Unternehmen und Einrichtungen in Deutschland haben Ermittler zwei zentrale Verdächtige identifiziert. Der eine sei der mutmaßliche Kopf von zwei Hackergruppen, der andere der mutmaßliche Programmierer der von diesen Gruppen genutzten Schadsoftware. Dies teilten das bei […]
Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account
The popular HTTP client known as Axios has suffered a supply chain attack after two newly published versions of the npm package introduced a malicious dependency. Versions 1.14.1 and 0.30.4 of Axios have been found to inject “plain-crypto-js” version 4.2.1 as a fake dependency. According to StepSecurity, the two versions were published using the compromised […]
ISC Stormcast For Tuesday, March 31st, 2026 https://isc.sans.edu/podcastdetail/9872, (Tue, Mar 31st)
Post Content
TeamPCP Supply Chain Campaign: Update 004 - Databricks Investigating Alleged Compromise, TeamPCP Runs Dual Ransomware Operations, and AstraZeneca Data Released, (Mon, Mar 30th)
This is the fourth update to the TeamPCP supply chain campaign threat intelligence report, “When the Security Scanner Became the Weapon” (v3.0, March 25, 2026). Update 003 covered developments through March 28, including the first 48-hour pause in new compromises and the campaign’s shift to monetization. This update consolidates intelligence from March 28-30, 2026 — two days […]
Fortinet hit by another exploited cybersecurity flaw
Yet another critical flaw in a Fortinet product has come to light as attackers continue to target the company, this time by actively exploiting a critical SQL injection vulnerability in the cybersecurity company’s management server. The vulnerability, (CVE-2026-21643), allows unauthenticated threat actors to execute arbitrary code on unpatched systems via specifically-crafted HTTP requests. These low-complexity […]
SR-FINRA-2026-007
SR-FINRA-2026-007 K30658 Mon, 03/30/2026 – 16:42 Financial Industry Regulatory Authority, Inc. (“FINRA”) is filing with the Securities and Exchange Commission (“SEC” or “Commission”) a proposed rule change to exempt specified collective trust funds (“CTFs”) from FINRA Rule 5130 (Restrictions on the Purchase and Sale of Initial Equity Public Offerings) and from paragraph (b) (Spinning) of […]
2024084458201 William Steven Cooke CRD 2107758 AWC lp.pdf
2024084458201 William Steven Cooke CRD 2107758 AWC lp.pdf Anonymous (not verified) Mon, 03/30/2026 – 16:00 Case ID 2024084458201 Document Number 2f1fbd6e Document Type AWCs (Letters of Acceptance, Waiver, and Consent) Individuals William Steven Cooke Action Date Mon, 03/30/2026 – 12:00 Related Content Off Attachment 2024084458201 William Steven Cooke CRD 2107758 AWC lp.pdf Individual CRD 2107758
10 cosas que quitan el sueño a los responsables de TI
En la actualidad, son muchas las cosas que preocupan al director de sistemas de información (CIO): desde las cuestiones de siempre sobre el tiempo de actividad y la disponibilidad hasta la revolución cuántica que se vislumbra en el horizonte. Dan Inbar, vicepresidente sénior y CIO de Symbotic, empresa que ofrece tecnología de automatización de almacenes, […]
Why delivery drift shows up too late, and what I watch instead
I’ve lost count of the number of times I’ve seen a program that looked fine on paper, felt uncomfortable in practice and then suddenly tipped into crisis. Status stayed green. Plans were intact. Everyone was busy. And yet, if you were close enough to the work, something didn’t add up. It took me a while […]
How Gen Z can win in the AI era
The “digital divide” used to mean unequal access to devices and the internet. Today, that gap has evolved into something more consequential: An AI divide — not about access to tools, but about who knows how to use them well. In recent months, while mentoring several newly graduated computer science majors, I was struck by […]
How enterprises are rethinking collaborative analytics
A persistent gap among C-suite executives shows that enterprises need to rethink traditional data ownership models as they move toward shared decision-making frameworks that better align their analytics strategy and business goals. Why? Simply asking who owns the data isn’t the right question, especially for leaders who want analytics to become a meaningful aspect of […]
The AI revolution: Getting culture right for AI success
With effective AI implementations likely to separate winning organizations from the also-rans, many IT leaders are taking various approaches to creating workplace cultures that empower nearly all employees to make productive, innovative use of AI. Underlying such strategies is a focus on training, as well as encouragement to experiment with and implement AI in sync […]
The hidden inflation of AI: Why model collapse is a business risk
For the last 20 years, the economics of software were beautifully boring. The business model was predicated on a simple truth: Build once and sell infinitely. In the traditional SaaS era, the marginal cost of adding a new user was negligible. Whether a customer logged in once a month or once a minute, the cost […]
クラウド、DevOps、アジャイルの浸透度:日米SIの開発プロセスと技術選定の差
アーキテクチャ選定の基準が違う 日米のSIを技術面で比べるとき、まず押さえるべきは「何を正解とみなすか」の基準だ。日本のSIでは、長期運用と安定稼働を前提に、障害時の影響範囲が読みやすい構成、監査や手続きが通りやすい構成、運用負荷が予測しやすい構成が選ばれやすい。これはミッションクリティカルなシステムを多く扱ってきた歴史の延長であり、止めないことが最大の価値である環境では自然な選好でもある。 米国のSIでは、クラウドのマネージドサービスを前提に、拡張性と変更容易性を優先する設計が前面に出やすい。もちろん安定稼働は最重要だが、その安定を「事前に作り込み過ぎて守る」のではなく、「計測し、復旧し、改善し続ける」ことで担保する思想が強い。たとえば、単一の強固なシステムにまとめるより、疎結合なサービスとして分割し、障害の隔離や部分的な更新を可能にする。結果として、初期の設計段階から運用の計測や自動化が組み込まれ、アーキテクチャの評価軸に運用指標が入りやすくなる。 この違いは、オンプレかクラウドかという単純な話ではない。日本でもクラウドは普及し、米国でも規制や要件でオンプレやハイブリッドを選ぶ。差が出るのは、技術選定の場で誰が何を判断材料にし、どこに不確実性を許容するかだ。日本では要件を固めて最適解を選ぶ方向に寄りやすく、米国では不確実性を残したままでも動かしながら学習する方向に寄りやすい。ここが、後述する開発プロセスの差にも直結していく。 開発プロセスの中心にあるものが違う 日本のSIが得意としてきたのは、工程を定義し、レビューとテストを積み上げ、品質を管理して納期通りに提供するやり方だ。工程ごとの成果物が明確で、関係者が多くても合意形成を取りやすい。品質の考え方も、仕様への適合と例外処理の網羅、障害の未然防止に重心がある。これは大規模案件で強い。変更が少ないほど強く、変更が多いほど苦しくなる、という性格を持っている。 米国のSIが得意としやすいのは、短いサイクルで価値を届け、実際の利用や運用データから学び、次の改善に反映するやり方だ。ここでの中心は、工程よりもフィードバックループにある。仕様が完全でなくても動くものを早く出し、使われた結果を見て優先順位を変える。そのため、プロジェクト管理も「計画を守る」より「価値が出る方向へ舵を切り続ける」ことに重心が置かれる。 このプロセス差は、アジャイルかウォーターフォールかという言葉の対立で語られがちだが、実際にはもっと深い前提の違いがある。日本の現場は、品質と責任を守るために合意形成を厚くし、合意の外側にある変更を例外扱いしやすい。米国の現場は、変更を織り込み、変更を管理することで責任を果たしやすい。前者は「確定したものを確実に作る」ことに強く、後者は「確定できないものを確かめながら作る」ことに強い。どちらの局面なのかを見極めないと、手法だけ移植しても摩擦が増える。 DevOpsと運用自動化の位置づけ 日米の差が特に出やすいのが、DevOpsと運用自動化の扱いだ。日本のSIは運用に強い一方、運用は「守りの仕事」として位置づけられ、開発と運用の役割が組織的に分かれやすい。結果として、運用の都合で変更が慎重になり、開発は運用に配慮して手続きを増やし、リリースが重たくなることがある。これは責任を果たすための合理でもあるが、変化の速度を求められる領域では足かせにもなる。 米国のSIでは、運用は「価値を作るための継続活動」として扱われやすい。CI/CDやInfrastructure as Code、監視とアラート、ログとトレース、インシデント対応の訓練などが、最初から設計に含まれ、運用の成熟度がプロダクトの競争力に直結するという考え方が強い。運用の目的は、障害をゼロにすることだけではなく、障害が起きても早く検知し、早く復旧し、再発を防ぎ、コストを最適化し続けることへ広がる。つまり、運用の強さがスピードを支える。 日本のSIが持つ運用の強みは、実はDevOps的な方向へ伸ばしやすい資産でもある。強い運用文化があるからこそ、計測と自動化と改善のサイクルを組み込めば、安定と速度の両立が可能になる。ただし、そのためには、運用を「後工程の受け手」に固定せず、開発段階から運用設計を一体化する必要がある。運用手順を増やして安全を担保するのではなく、自動化と可観測性によって安全を担保し、変更の頻度を下げずに守る、という発想転換が求められる。 セキュリティとコンプライアンスの統合 セキュリティや監査対応は、日米ともに最重要だが、プロセスへの埋め込み方に違いが出やすい。日本のSIでは、セキュリティは要件として定義され、レビューやテストで確認し、監査に備える、という流れになりやすい。慎重で堅い反面、セキュリティ確認が開発の後半に寄ると、最後に大きな修正が発生しやすい。結果として、セキュリティが「遅くする要因」として感じられ、現場の心理的摩擦が生まれることがある。 米国のSIでは、DevSecOpsの考え方が比較的浸透しており、コードの静的解析や依存関係の脆弱性チェック、設定のポリシー管理などを、パイプラインの中に組み込みやすい。セキュリティレビューを人の手続きだけに頼らず、ツールと自動化で「守る速度」を上げる発想が強い。さらに、権限管理や鍵管理、監査ログの設計などが、運用の計測と同様にアーキテクチャの評価軸に入るため、設計段階から統合されやすい。 ここでも重要なのは、セキュリティ重視かどうかではなく、セキュリティを速度と両立させるための構造を持っているかだ。日本のSIは、手続きを丁寧に積み上げる強みがある。その強みを活かしながら、自動化できる検査を自動化し、レビューの焦点を「人にしか判断できない部分」に寄せることができれば、セキュリティを高めつつスピードも上げられる。セキュリティはブレーキではなく、安心して速く走るための仕組みとして扱えるようになる。 レガシー刷新の進め方が違う 技術選定とプロセスの違いが最も難しく表れるのが、レガシー刷新、いわゆるモダナイゼーションだ。日本のSIは、既存システムの複雑な業務要件と運用実態を理解し、置き換えに伴うリスクを丁寧に管理することに強い。だからこそ、大規模な刷新では、段階移行の計画、データ移行の整合、周辺システムとの接続、運用引継ぎなど、失敗が許されない論点を網羅しやすい。 米国のSIでは、段階的に価値を切り出しながら移行する進め方がより強調されやすい。既存を一気に置き換えるより、外側から機能を剥がし、API化し、徐々に新しい側へ移す。ここでの狙いは、学習しながら移行し、途中でも価値が出る状態を作ることにある。移行の途中でアーキテクチャや優先順位を変えることを織り込み、投資対効果を見ながら進める。 日本でモダナイゼーションが難しくなりがちなのは、レガシーの理解が深いがゆえに、最初から完全な移行計画を作ろうとしてしまう点にある。もちろん計画は必要だが、計画に時間をかけ過ぎると、移行の価値が出る前に環境が変わる。逆に米国型の進め方をそのまま持ち込むと、ガバナンスや監査、業務の安定を軽視しているように見え、関係者の合意が取れない。両者をつなぐ鍵は、段階移行を前提にしつつ、各段階で品質と運用の要件を満たす設計を最初から織り込むことだ。日本のSIの強みは、ここで活きる。 日本SIが「強みを活かして速くなる」方法 日米の差を埋めるために、日本のSIが米国のやり方をそのまま真似る必要はない。むしろ、日本が得意な品質と運用の強さを維持したまま、速度を生む構造を足していくほうが現実的だ。ポイントは、現場の頑張りで速くするのではなく、標準化と自動化で速くすることにある。 標準化とは、個別案件の事情を無視して共通化することではなく、共通化できる部分を切り出して再利用可能にすることだ。設計の型、環境構築の型、テストの型、監視の型、障害対応の型を整備し、プロジェクトの立ち上がりを速くする。自動化とは、運用の安全を手続きで担保するのではなく、ツールと仕組みで担保することだ。レビューを無くすのではなく、機械的なチェックを自動化して、人が見るべきポイントに集中する。リリースを減らすのではなく、小さく安全に頻繁に出せるようにする。ここにDevOpsと可観測性が効いてくる。 さらに、速度を出すには意思決定の設計も欠かせない。短いサイクルで価値を出すには、優先順位を決める責任者が必要で、変更の判断を迅速に行える体制が必要になる。日本のSIは、合意形成を丁寧に作る力がある。その力を、意思決定を遅らせる方向ではなく、意思決定に必要な材料を早く揃える方向へ使えるようになると強い。品質を守るために止まるのではなく、品質を守りながら進める仕組みを作る、という方向だ。 日米SIの技術とプロセスの差は、結局のところ「変化を前提に設計しているかどうか」の差として現れる。日本のSIが持つ安定と品質の強みは、変化に弱いことと同義ではない。変化を管理し、計測し、自動化し、改善し続ける構造を組み込めば、安定はむしろ速度の土台になる。止めない力を、変え続ける力へ接続する。それが、クラウド以降の時代に日本SIが発揮できる、最も実務的で再現性の高い進化だ。
The data center is becoming a security enforcement layer
The security model most enterprises still rely on assumes there is time to respond, time to patch, time to detect, time to contain when an attacker gets in, but there is still time to stop them before they can move through the environment and do harm. Last week, I attended RSA Conference 2026 and attended several […]
Amazon waives entire month’s AWS charges after Iranian drone attack
In a highly unusual move, Amazon has confirmed that it is waiving an entire month’s usage charges for customers using two Middle Eastern datacenters disrupted by Iranian drone attacks earlier this month. The attacks on March 1 damaged two Amazon datacenters in the region, ME-CENTRAL-1 (United Arab Emirates) and ME-SOUTH-1 (Bahrain), something the company acknowledged […]
How to embed AI into business processes without breaking the business
Playtime is over. The pressure is on business leaders to deliver tangible results from artificial intelligence (AI) projects, even amid statistics that show how difficult that may be. Organizations that can solve one of AI’s most vexing puzzles — how to embed AI into existing business processes — will likely be on the road to success. […]
OpenAI Patches ChatGPT Data Exfiltration Flaw and Codex GitHub Token Vulnerability
A previously unknown vulnerability in OpenAI ChatGPT allowed sensitive conversation data to be exfiltrated without user knowledge or consent, according to new findings from Check Point. “A single malicious prompt could turn an otherwise ordinary conversation into a covert exfiltration channel, leaking user messages, uploaded files, and other sensitive content,” the cybersecurity company said in
25-02453.pdf
25-02453.pdf Anonymous (not verified) Mon, 03/30/2026 – 12:55 Case ID 25-02453 Forum FINRA Document Type Award Claimants Kelechi Ukazim Respondents Robinhood Financial, LLC. Robinhood Securities, LLC Neutrals Heather Gaile Layton Hearing Site Houston, TX Award Document 25-02453.pdf Documentum DocID 64e5c9e9 Award Date Official Fri, 03/27/2026 – 12:00 Related Content Off Claimant Representatives Kelechi C. Ukazim […]
DeepLoad Malware Uses ClickFix and WMI Persistence to Steal Browser Credentials
A new campaign has leveraged the ClickFix social engineering tactic as a way to distribute a previously undocumented malware loader referred to as DeepLoad. “It likely uses AI-assisted obfuscation and process injection to evade static scanning, while credential theft starts immediately and captures passwords and sessions even if the primary loader is blocked,” ReliaQuest researchers […]
25-01435.pdf
25-01435.pdf Anonymous (not verified) Mon, 03/30/2026 – 11:25 Case ID 25-01435 Forum FINRA Document Type Award Claimants Steven Schiller Respondents James McArthur Vincent Camarda Momentix Capital, Inc. Neutrals Eric Goldman Hearing Site New York, NY Award Document 25-01435.pdf Documentum DocID ee42ffb1 Award Date Official Thu, 03/26/2026 – 12:00 Related Content Off Claimant Representatives Kirk G. […]
SR-FINRA-2026-006
SR-FINRA-2026-006 K32984 Mon, 03/30/2026 – 10:23 Rule Filing Status: Filed for Immediate Effectiveness Proposed rule change to amend FINRA Rule 6272 (Character of Quotations) to modify the operation of the Alternative Display Facility (“ADF”) in light of SEC Regulation NMS’s new requirements related to the dissemination of odd-lot quotation information. Event Category Rule Filings Add […]
⚡ Weekly Recap: Telecom Sleeper Cells, LLM Jailbreaks, Apple Forces U.K. Age Checks and More
Some weeks are loud. This one was quieter but not in a good way. Long-running operations are finally hitting courtrooms, old attack methods are showing up in new places, and research that stopped being theoretical right around the time defenders stopped paying attention. There’s a bit of everything this week. Persistence plays, legal wins, influence […]
3 SOC Process Fixes That Unlock Tier 1 Productivity
What is really slowing Tier 1 down: the threat itself or the process around it? In many SOCs, the biggest delays do not come from the threat alone. They come from fragmented workflows, manual triage steps, and limited visibility early in the investigation. Fixing those process gaps can help Tier 1 move faster, reduce unnecessary […]
LangChain path traversal bug adds to input validation woes in AI pipelines
Security researchers are warning that applications using AI frameworks without proper safeguards can expose sensitive information in basic, yet critical, non-AI ways. According to a recent Cyera analysis, widely used AI orchestration tools, LangChain and LangGraph, are vulnerable to critical input validation flaws that could allow attackers to access sensitive enterprise data. In a recent […]
Estonian hospital sends patient home with other peoples’ health data
Märten Hallismaa reports: A person who underwent X-ray imaging at West Tallinn Central Hospital (LTKH) was sent home with a USB drive that also contained the personal and health data of other patients. ERR has received information about a person who went to West Tallinn Central Hospital to undergo an X-ray. Because the images needed… […]
CISA Adds One Known Exploited Vulnerability to Catalog
CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-3055 Citrix NetScaler Out-of-Bounds Read Vulnerability This type of vulnerability is a frequent attack vector for malicious cyber actors and poses significant risks to the federal enterprise. Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk […]
Leak reveals Anthropic’s ‘Mythos,’ a powerful AI model aimed at cybersecurity use cases
Anthropic didn’t intend to introduce Mythos this way. Details of what it calls its most capable AI model yet surfaced through a data leak in its content management system (CMS), revealing a LLM with sharply improved reasoning and coding skills. The data leak, which was the result of the company’s staffers inadvertently exposing material about […]
The State of Secrets Sprawl 2026: 9 Takeaways for CISOs
Secrets sprawl isn’t slowing down: in 2025, it accelerated faster than most security teams anticipated. GitGuardian’s State of Secrets Sprawl 2026 report analyzed billions of commits across public GitHub and uncovered 29 million new hardcoded secrets in 2025 alone, a 34% increase year over year and the largest single-year jump ever recorded. This year’s findings […]
South African government agency and Spanish psychological software provider victims of cyberattacks by XP95
Jan Vermeulen reports: Statistics South Africa has become the latest government entity to fall victim to a ransomware attack by the emerging cybercrime group known as XP95. The threat actors claim to have successfully breached the agency responsible for conducting South Africa’s census, as well as producing and disseminating other official statistics, like the Consumer… […]
F5 BIG-IP DoS Flaw Upgraded to Critical RCE, Now Exploited in the Wild
Initially disclosed as a high-severity denial-of-service (DoS), the bug was reclassified as a critical RCE issue. The post F5 BIG-IP DoS Flaw Upgraded to Critical RCE, Now Exploited in the Wild appeared first on SecurityWeek.
FBI Confirms Kash Patel Email Hack as US Offers $10M Reward for Hackers
The agency said Iranian hackers targeted the director’s personal email account and noted that the compromised information is old. The post FBI Confirms Kash Patel Email Hack as US Offers $10M Reward for Hackers appeared first on SecurityWeek.
Exploitation of Fresh Citrix NetScaler Vulnerability Begins
The critical-severity flaw leaks application memory and can be exploited to obtain authenticated administrative session IDs. The post Exploitation of Fresh Citrix NetScaler Vulnerability Begins appeared first on SecurityWeek.
Telnyx Targeted in Growing TeamPCP Supply Chain Attack
Two malicious versions of the popular SDK were uploaded to the PyPI registry, targeting Windows, macOS, and Linux. The post Telnyx Targeted in Growing TeamPCP Supply Chain Attack appeared first on SecurityWeek.
APIs are the new perimeter: Here’s how CISOs are securing them
Recent breaches suggest attackers are shifting beyond traditional endpoints to target application programming interfaces (APIs). But typical perimeter protections can completely miss this vector. “We used to talk about defense-in-depth and endpoint protection,” says Sean Murphy, CISO at BECU, a nationwide credit union. “That morphed into identity, and now the API is the new perimeter.” […]
Russian CTRL Toolkit Delivered via Malicious LNK Files Hijacks RDP via FRP Tunnels
Cybersecurity researchers have discovered a remote access toolkit of Russian-origin that’s distributed via malicious Windows shortcut (LNK) files that are disguised as private key folders. The CTRL toolkit, according to Censys, is custom-built using .NET and includes various executables” to facilitate credential phishing, keylogging, Remote Desktop Protocol (RDP) hijacking, and reverse tunneling
Why Kubernetes controllers are the perfect backdoor
In my years securing cloud-native environments, I’ve noticed a recurring blind spot. We obsess over the “front doors” such as exposed dashboards, misconfigured RBAC, or unpatched container vulnerabilities. We harden the perimeter, but we often ignore the machinery humming inside. Sophisticated adversaries have moved beyond simple smash-and-grab tactics. They don’t just want to run a […]
Three China-Linked Clusters Target Southeast Asian Government in 2025 Cyber Campaign
Three threat activity clusters aligned with China have targeted a government organization in Southeast Asia as part of what has been described as a “complex and well-resourced operation.” The campaigns have led to the deployment of various malware families, including HIUPAN (aka USBFect, MISTCLOAK, or U2DiskWatch), PUBLOAD, EggStremeFuel (aka RawCookie), EggStremeLoader (aka Gorem RAT), MASOL
ISC Stormcast For Monday, March 30th, 2026 https://isc.sans.edu/podcastdetail/9870, (Mon, Mar 30th)
Post Content
Data Security Posture Management: Die besten DSPM-Tools
Data Security Posture Management erfordert nicht nur die richtigen Tools, sondern auch eine entsprechende Vorbereitung. Foto: Rawpixel.com | shutterstock.com Cloud Computing ist von Natur aus dynamisch und flüchtig: Daten können schnell und einfach erstellt, gelöscht oder verschoben werden. Das sorgt dafür, dass auch die Cloud-Angriffsfläche sehr dynamisch ist – was Schutzmaßnahmen erschwert. Ein lästiges Problem […]
DShield (Cowrie) Honeypot Stats and When Sessions Disconnect, (Mon, Mar 30th)
A lot of the information seen on DShield honeypots [1] is repeated bot traffic, especially when looking at the Cowrie [2] telnet and SSH sessions. However, how long a session lasts, how many commands are run per session and what the last commands run before a session disconnects can vary. Some of this information could help […]
Did you sign up for the new White House app? Don’t use it until you read this!
Did you sign up for the new White House app? Don’t use it until you read this, because it puts your privacy and data security at risk. Patrick Quirk takes an impressive technical piece and distills it for those of us who are not developers or coders. His article is based on original research by… […]
Scaling AI demands a new infrastructure playbook
As enterprises move beyond AI pilots and proofs of concept, many CIOs are discovering a hard truth: Scaling AI into production is not simply a larger version of traditional application deployment. It is a fundamentally different infrastructure challenge. AI software must integrate with accelerated compute resources, high-performance networking, AI platforms, security controls, and observability tools. […]
CareCloud notifies the SEC after attack on one of its EHR environments
DysruptionHub reports: CareCloud said an unauthorized third party briefly disrupted one of its six electronic health record environments on March 16, restoring access that evening as investigators assess possible patient data exposure. In a March 27 SEC filing, the Somerset, New Jersey-based company said an unauthorized third party temporarily accessed part of its CareCloud Health division… […]
Thankfully, the Infinite Campus incident did not involve a lot of non-directory student information
In the wake of the Infinite Campus data breach, DataBreaches was contacted by several concerned EdTech professionals who weren’t prepared to accept Infinite Campus’s word that there was no sensitive student information in the data tranche. With their encouragement, DataBreaches downloaded the data tranche from ShinyHunters’ leak site and examined it. Most of the files… […]
Anthropic wins reprieve against US DoD ban, buying time for contractors to assess AI supply chains
The Pentagon’s attempt to brand Anthropic a supply chain risk was “likely both contrary to law and arbitrary and capricious,” a US federal judge wrote in a ruling halting a ban on use of Anthropic’s products in defense contracts. In granting Anthropic a preliminary injunction against the ban, US District Judge Rita Lin of the […]
Iran-Linked Hackers Breach FBI Director’s Personal Email, Hit Stryker With Wiper Attack
Threat actors with ties to Iran successfully broke into the personal email account of Kash Patel, the director of the U.S. Federal Bureau of Investigation (FBI), and leaked a cache of photos and other documents to the internet. Handala Hack Team, which carried out the breach, said on its website that Patel “will now find […]
TeamPCP Supply Chain Campaign: Update 003 - Operational Tempo Shift as Campaign Enters Monetization Phase With No New Compromises in 48 Hours, (Sat, Mar 28th)
This is the third update to the TeamPCP supply chain campaign threat intelligence report, “When the Security Scanner Became the Weapon” (v3.0, March 25, 2026). Update 002 covered developments through March 27, including the Telnyx PyPI compromise and Vect ransomware partnership. This update covers developments from March 27-28, 2026.
Iran-linked group Handala hacked FBI Director Kash Patel’s personal email account
Pierluigi Paganini reports: Iran-linked hacking group Handala claims it breached FBI Director Kash Patel’s personal Gmail account and shared alleged data, including photos and files. The FBI confirmed it is aware of the incident and has taken steps to mitigate risks, stressing that the exposed material is old and does not involve any government or classified information…. […]
Woodfords Family Services notifying patients and families about 2024 ransomware attack
A notice by Woodfords Family Services in Maine caught my eye because the name sounded familiar. They provide support services for people with disabilities and their families. On March 27, 2026, they issued a notice: What Happened? On April 8, 2024, we discovered suspicious activity within our network. We took steps to secure our environment and… […]
Thousands of Corewell Health patients affected by security breach
Fox2 reports: Corewell Health announced their former health care consulting vendor experienced a data breach in 2024, affecting thousands of patients. Pinnacle Holdings previously provided health care consulting services to Corewell Health. After being notified of the data breach, Corewell said they conducted a review to identify who was impacted. The health system said around… […]
Meet Claude Mythos: Leaked Anthropic post reveals the powerful upcoming model
Matt Binder reports: An accidental leak has now been officially confirmed by AI company Anthropic regarding its most powerful AI model yet. The model, now known as “Claude Mythos,” was originally uncovered in a report from Fortune. Anthropic has since confirmed the details about the leak to the outlet. The data leak included details about the upcoming release of the… […]
TP-Link Patches High-Severity Router Vulnerabilities
The security defects could be used to bypass authentication, execute arbitrary commands, and decrypt configuration files. The post TP-Link Patches High-Severity Router Vulnerabilities appeared first on SecurityWeek.
OpenAI Launches Bug Bounty Program for Abuse and Safety Risks
Through the new program, OpenAI will reward reports covering design or implementation issues leading to material harm. The post OpenAI Launches Bug Bounty Program for Abuse and Safety Risks appeared first on SecurityWeek.
In Other News: Palo Alto Recruiter Scam, Anti-Deepfake Chip, Google Sets 2029 Quantum Deadline
Other noteworthy stories that might have slipped under the radar: Heritage Bank data breach, new State Department unit tackles cyber threats, LA Metro disruptions. The post In Other News: Palo Alto Recruiter Scam, Anti-Deepfake Chip, Google Sets 2029 Quantum Deadline appeared first on SecurityWeek.
Pro-Iranian Hacking Group Claims Credit for Hack of FBI Director Kash Patel’s Personal Account
The group that it was making available for download emails and other documents from Patel’s account. The post Pro-Iranian Hacking Group Claims Credit for Hack of FBI Director Kash Patel’s Personal Account appeared first on SecurityWeek.
Cloudflare-Themed ClickFix Attack Drops Infiniti Stealer on Macs
The infection chain includes a fake CAPTCHA page, a Bash script, a Nuitka loader, and the Python-based infostealer. The post Cloudflare-Themed ClickFix Attack Drops Infiniti Stealer on Macs appeared first on SecurityWeek.
Don’t show me your AI. It is rude!
Get inspired by this curated list of approaches, projects and initiatives addressing the challenges posed by Gen AI and what lies behind all the hype thrown at us from so-called Big Tech.
Citrix NetScaler Under Active Recon for CVE-2026-3055 (CVSS 9.3) Memory Overread Bug
A recently disclosed critical security flaw impacting Citrix NetScaler ADC and NetScaler Gateway is witnessing active reconnaissance activity, according to Defused Cyber and watchTowr. The vulnerability, CVE-2026-3055 (CVSS score: 9.3), refers to a case of insufficient input validation leading to memory overread, which an attacker could exploit to leak potentially sensitive information. Per
TA446 Deploys DarkSword iOS Exploit Kit in Targeted Spear-Phishing Campaign
Proofpoint has disclosed details of a targeted email campaign in which threat actors with ties to Russia are leveraging the recently disclosed DarkSword exploit kit to target iOS devices. The activity has been attributed with high confidence to the Russian state-sponsored threat group known as TA446, which is also tracked by the broader cybersecurity community […]
CISA Adds CVE-2025-53521 to KEV After Active F5 BIG-IP APM Exploitation
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added a critical security flaw impacting F5 BIG-IP Access Policy Manager (APM) to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerability in question is CVE-2025-53521 (CVSS v4 score: 9.3), which could allow a threat actor to achieve remote code execution. […]
LeakBase’s “Chucky” detained in Russia
TASS reports: Police have detained a Taganrog resident suspected of administering LeakBase, one of the largest hacker platforms. Law enforcement officials told TASS. The detained Taganrog resident is suspected of administering “one of the largest international hacker platforms, LeakBase,” the agency’s source said. According to him, the liquidated platform operated a credit system and user… […]
25-01803.pdf
25-01803.pdf Anonymous (not verified) Fri, 03/27/2026 – 18:20 Case ID 25-01803 Forum FINRA Document Type Award Claimants Rebecca Haubry Respondents Robinhood Financial, LLC. Neutrals Stephany Adriene Watson Hearing Site Seattle, WA Award Document 25-01803.pdf Documentum DocID a68a99ce Award Date Official Fri, 03/27/2026 – 12:00 Related Content Off Claimant Representatives Rebecca M Haubry Respondent Representatives Benjamin […]
25-02261.pdf
25-02261.pdf Anonymous (not verified) Fri, 03/27/2026 – 18:20 Case ID 25-02261 Forum FINRA Document Type Award Claimants Ricardo Eboli-Kodesh Respondents UBS Financial Services Inc. Neutrals Roger C. Benson Sherry R. Wetsch Mark T Risner Hearing Site San Juan, PR Award Document 25-02261.pdf Documentum DocID 9d38224b Award Date Official Fri, 03/27/2026 – 12:00 Related Content Off […]
24-02632.pdf
24-02632.pdf Anonymous (not verified) Fri, 03/27/2026 – 18:20 Case ID 24-02632 Forum FINRA Document Type Award Claimants Justin Rees Respondents Robert W. Baird & Co. Incorporated Neutrals F. Guthrie Castle Adam Michael Porter Peter M. Cosel Hearing Site Tampa, FL Award Document 24-02632.pdf Documentum DocID 03231914 Award Date Official Fri, 03/27/2026 – 12:00 Related Content […]
25-01580.pdf
25-01580.pdf Anonymous (not verified) Fri, 03/27/2026 – 18:20 Case ID 25-01580 Forum FINRA Document Type Award Claimants Venu Reddy Respondents LPL Financial LLC Waddell & Reed Neutrals Leah Murray Albert Jon R Gray Rosetta Bernice Robins Hearing Site Kansas City, MO Award Document 25-01580.pdf Documentum DocID 2a921558 Award Date Official Fri, 03/27/2026 – 12:00 Related […]
European Commission data stolen in a cyberattack on the infrastructure hosting its web sites
The European Commission is continuing to investigate the theft of data from its cloud infrastructure earlier this week. On Thursday, the Commission revealed there had been an attack on its Europa.eu platform, offering few details, then, on Friday, security news site Bleeping Computer reported that the attack had involved the compromise of an account or […]
Por qué desarrollar aplicaciones empresariales propias con Vibe es una apuesta arriesgada
El rápido avance de los asistentes de programación basados en IA conduce a algunas organizaciones a llevar más allá el concepto de desarrollo de aplicaciones asistido por IA mediante la creación de herramientas de nivel empresarial, con el propósito de sustituir o ampliar el software tradicional. Si bien la tendencia hacia la programación por intuición […]
The one-model trap: Why agentic AI won’t scale in production
Whenever I see a new agent project kick off, I can almost always predict the first architecture decision: pick one monolithic model, wire it to some tools, and then tune prompts until something works. I have been there myself. It feels clean. It keeps procurement simple. It gives teams one benchmark to watch. It also […]
Day Two in enterprise AI: Why operations, drift, and retraining matter more than launch
There’s a familiar rhythm to technology adoption in large organizations. The initial excitement, the high-profile pilot, the executive sponsorship, and the promise of transformation. For many leaders, deploying a large language model (LLM) feels like crossing the finish line. The press release goes out, the dashboards light up, and the boardroom buzzes with optimism. But […]
The unplanned work behind every AI use case
For most enterprises, the question of whether to invest in AI is no longer up for debate. AI is already part of the roadmap, the budget, and the board conversation. The harder question now is how to make AI deliver value at scale, not once, but repeatedly, across teams, functions, and geographies. That is where […]
To find AI use cases that work, start with the work employees hate
The best way to use AI right now is to let it handle the soul-crushing grunt work your team already hates, giving them more time for the work they actually enjoy. Companies are stuck in an awkward middle with AI. Everyone knows they should be using it, but most leaders are quietly trying to […]
The shift to a modern cloud infrastructure delivers human benefits
For many organisations, the central question is no longer whether to modernise their organisation’s infrastructure, but how to do it in a way that benefits the business and its people. Leaders are weighing these considerations as they determine if the time and investment on cloud migration is worth it. How can they position transformation as […]
SAP to acquire Reltio to help customers make data AI-ready
ERP giant SAP has agreed to acquire master data management software provider Reltio to bolster the capabilities of its Business Data Cloud (BDC). The goal is to make customers’ data AI-ready so it provides reliable input for Joule and Joule agents across the enterprise, SAP said. Acquiring Reltio, with its cloud native and AI native […]
One-third of help-desk tickets stop work, says study
Nearly one-third of all help-desk tickets handled by large organizations are work-stoppers, according to a study from help-desk automation company Fixify, which also found Tuesday to be the busiest day of the week for help desks. “Monday gets the reputation, but Tuesday gets the tickets,” it the study said. Around one in eight of the […]
AI threatens jobs that can be ‘unbundled’
There have been plenty of warnings about job losses due to AI, particularly in the world of IT and in the reduction of entry-level positions. Doom mongers’ claims that AI is going to eradicate all our jobs look to be exaggerated but there is little room for complacency as there are some roles most definitely […]
Final training of AI models is a fraction of their total cost
AI models cost a lot more to develop than you may think. AI research company Epoch AI has set out all the costs of building a new AI model — and explaining why AI companies are so concerned about perceived threats to their intellectual property. It has looked into this before: Last year, it estimated […]
SR-FINRA-2026-006
SR-FINRA-2026-006 K30658 Fri, 03/27/2026 – 14:43 Financial Industry Regulatory Authority, Inc. (“FINRA”) is filing with the Securities and Exchange Commission (“SEC” or “Commission”) a proposed rule change to amend FINRA Rule 6272 (Character of Quotations) to modify the operation of the Alternative Display Facility (“ADF”) in light of SEC Regulation NMS’s new requirements related to […]
Ransomware Attack Totally Cripples Jackson County Sheriff’s Office in Indiana
From a report on cyber.netsecops.io: Executive Summary A debilitating ransomware attack has completely crippled the IT operations of the Jackson County Sheriff’s Office in Indiana. The attack, which struck last week, has rendered the department’s entire computer network, including all PCs, Wi-Fi, and critical reporting systems, unusable. […] Technical Analysis Initial Access Vector: The likely initial access vector… […]
Lloyds Bank reveals how IT bug exposed transaction data
Lloyds Banking Group has identified the glitch that led to some of its customers being able to see details of other customers’ transactions on March 12. It revealed the information in a letter to the UK Parliament’s Treasury Committee, setting out the details of the incident and how it has been handled. The issue arose […]
Apple Sends Lock Screen Alerts to Outdated iPhones Over Active Web-Based Exploits
Apple is now sending Lock Screen notifications to iPhones and iPads running older versions of iOS and iPadOS to alert users of web-based attacks and urge them to install the update. The development was first reported by MacRumors. “Apple is aware of attacks targeting out-of-date iOS software, including the version on your iPhone. Install this […]
TeamPCP Pushes Malicious Telnyx Versions to PyPI, Hides Stealer in WAV Files
TeamPCP, the threat actor behind the supply chain attack targeting Trivy, KICS, and litellm, has now compromised the telnyx Python package by pushing two malicious versions to steal sensitive data. The two versions, 4.87.1 and 4.87.2, published to the Python Package Index (PyPI) repository on March 27, 2026, concealed their credential harvesting capabilities within a […]
‘CanisterWorm’ Springs Wiper Attack Targeting Iran. But why?
Brian Krebs reports: A financially motivated data theft and extortion group is attempting to inject itself into the Iran war, unleashing a worm that spreads through poorly secured cloud services and wipes data on infected systems that use Iran’s time zone or have Farsi set as the default language. Experts say the wiper campaign against… […]
TeamPCP Supply Chain Campaign: Update 002 - Telnyx PyPI Compromise, Vect Ransomware Mass Affiliate Program, and First Named Victim Claim, (Fri, Mar 27th)
This is the second update to the TeamPCP supply chain campaign threat intelligence report, “When the Security Scanner Became the Weapon” (v3.0, March 25, 2026). Update 001 covered developments through March 26. This update covers developments from March 26-27, 2026.
Open VSX Bug Let Malicious VS Code Extensions Bypass Pre-Publish Security Checks
Cybersecurity researchers have disclosed details of a now-patched bug impacting Open VSX’s pre-publish scanning pipeline to cause the tool to allow a malicious Microsoft Visual Studio Code (VS Code) extension to pass the vetting process and go live in the registry. “The pipeline had a single boolean return value that meant both ‘no scanners are […]
Attackers exploit critical Langflow RCE within hours as CISA sounds alarm
Attackers have exploited a critical Langflow RCE within hours of disclosure, prompting the US Cybersecurity and Infrastructure Security Agency (CISA) to formally flag it for urgent remediation. The flaw, which allows running arbitrary code on vulnerable Langflow instances without >credentials, was weaponized within 20 hours of the open-source AI-pipeline tool disclosing it. According to a Sysdig report, […]
AitM Phishing Targets TikTok Business Accounts Using Cloudflare Turnstile Evasion
Threat actors are using adversary-in-the-middle (AitM) phishing pages to seize control of TikTok for Business accounts in a new campaign, according to a report from Push Security. Business accounts associated with social media platforms are a lucrative target, as they can be weaponized by bad actors for malvertising and distributing malware. “TikTok has been historically […]
CISA Adds One Known Exploited Vulnerability to Catalog
CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2025-53521 F5 BIG-IP Remote Code Execution Vulnerability This type of vulnerability is a frequent attack vector for malicious cyber actors and poses significant risks to the federal enterprise. Binding Operational Directive (BOD) 22-01: Reducing the Significant […]
Cisco Patches Multiple Vulnerabilities in IOS Software
The high- and medium-severity flaws could lead to denial-of-service, secure boot bypass, information disclosure, and privilege escalation. The post Cisco Patches Multiple Vulnerabilities in IOS Software appeared first on SecurityWeek.
Chinese Hackers Caught Deep Within Telecom Backbone Infrastructure
The state-sponsored threat actor deployed kernel implants and passive backdoors enabling long-term, high-level espionage. The post Chinese Hackers Caught Deep Within Telecom Backbone Infrastructure appeared first on SecurityWeek.
BIND Updates Patch High-Severity Vulnerabilities
Specially crafted domains could be used to cause out-of-memory conditions, leading to memory leaks in the BIND resolvers. The post BIND Updates Patch High-Severity Vulnerabilities appeared first on SecurityWeek.
Hightower Holding Data Breach Impacts 130,000
The holdings company says hackers stole names, Social Security numbers, and driver’s license numbers from its environment. The post Hightower Holding Data Breach Impacts 130,000 appeared first on SecurityWeek.
CISA Flags Critical PTC Vulnerability That Had German Police Mobilized
Police in Germany physically warned organizations about the critical PTC Windchill vulnerability tracked as CVE-2026-4681. The post CISA Flags Critical PTC Vulnerability That Had German Police Mobilized appeared first on SecurityWeek.
Coruna iOS Exploit Kit Likely an Update to Operation Triangulation
Coruna contains the updated version of a kernel exploit used in Operation Triangulation three years ago. The post Coruna iOS Exploit Kit Likely an Update to Operation Triangulation appeared first on SecurityWeek.
RSAC 2026 Conference Announcements Summary (Days 3-4)
A summary of the announcements made by vendors on the third and fourth days of the RSAC 2026 Conference. The post RSAC 2026 Conference Announcements Summary (Days 3-4) appeared first on SecurityWeek.
We Are At War
Rising geopolitical tensions are reflected (or in some cases preceded) by cyber operations, while technology itself has become politicized. Let’s admit it: we are in the middle of it. Introduction: One tech power to rule them all is a thing of the past The relative safety, peace and prosperity that much of the world has […]
Cyberangriff auf die Linke
Die Hackergruppe “Qilin” steht möglicherweise hinter dem Angriff. Studio-M – shutterstock.com Die Linke ist nach eigenen Angaben Opfer einer schweren Cyberattacke geworden und vermutet dahinter russischsprachige Hacker. Man habe am Donnerstag sofort reagiert und Teile der IT-Infrastruktur vom Netz genommen, teilte Bundesgeschäftsführer Janis Ehling mit. «Nach derzeitigen Erkenntnissen zielen die Täter darauf ab, sensible Daten […]
Bearlyfy Hits 70+ Russian Firms with Custom GenieLocker Ransomware
A pro-Ukrainian group called Bearlyfy has been attributed to more than 70 cyber attacks targeting Russian companies since it first surfaced in the threat landscape in January 2025, with recent attacks leveraging a custom Windows ransomware strain codenamed GenieLocker. “Bearlyfy (also known as Labubu) operates as a dual-purpose group aimed at inflicting maximum damage upon […]
8 steps CISOs can take to empower their teams
Many leaders know empowered teams deliver better results, but not all leaders understand how to get there. It all starts with knowing what empowerment truly means. Put simply: Empowerment is the absence of micromanagement. Empowerment provides the foundation for people to develop autonomy; to take action, responsibility, and accountability; and to have the room necessary […]
LangChain, LangGraph Flaws Expose Files, Secrets, Databases in Widely Used AI Frameworks
Cybersecurity researchers have disclosed three security vulnerabilities impacting LangChain and LangGraph that, if successfully exploited, could expose filesystem data, environment secrets, and conversation history. Both LangChain and LangGraph are open-source frameworks that are used to build applications powered by Large Language Models (LLMs). LangGraph is built on the foundations of
Was ist Social Engineering?
Mit Social-Engineering-Techniken manipulieren Cyberkriminelle die menschliche Psyche. Lesen Sie, wie das funktioniert und wie Sie sich schützen können. sp3n | shutterstock.com Selbst wenn Sie bei der Absicherung Ihres Rechenzentrums, Ihrer Cloud-Implementierungen und der physischen Sicherheit Ihres Firmengebäudes alle Register ziehen – mit Hilfe von Social Engineering finden gewiefte Cyberkriminelle meistens einen Weg, diese Maßnahmen zu […]
ISC Stormcast For Friday, March 27th, 2026 https://isc.sans.edu/podcastdetail/9868, (Fri, Mar 27th)
Post Content
Soap Box: Red teaming AI systems with SpecterOps
In this sponsored Soap Box edition of the show, Patrick Gray and James Wilson talk about red teaming AI systems with Russel Van Tuyl, Vice President of Services at elite penetration testing firm SpecterOps. SpecterOps is the company behind attack path enumeration tool Bloodhound and Bloodhound Enterprise, but they’re also a pentest and red teaming […]
Google: The quantum apocalypse is coming sooner than we thought
Google isn’t just responsible for the encryption of a big chunk of the communications on the internet. It is also building its own quantum computers, so it’s well placed to evaluate how close the technology is to fruition. Until now, the company has been aligned with the NIST timeline, which specifies 2030 for deprecating quantum-unsafe […]
Steven B. Caruso Comment On Regulatory Notice 26-06
Steven B. Caruso Comment On Regulatory Notice 26-06 fnrw-backend Thu, 03/26/2026 – 17:36 Steven B. Caruso FL US sbcaruso@aol.com Regulatory Notice 26-06 Core Official Date Thu, 03/26/2026 – 12:00 Comment File Finra_Comment.pdf
Cyber Alert - Ongoing Phishing Campaign Impersonating FINRA Employees
Cyber Alert – Ongoing Phishing Campaign Impersonating FINRA Employees DixonR Thu, 03/26/2026 – 15:28 Impact: All Firms Member firms should be aware of an ongoing phishing campaign that involves fraudulent emails purporting to be from FINRA employees. The goal of the threat actor is to trick the recipient into replying and participating in a Microsoft […]
The CISO’s guide to responding to shadow AI
Move over shadow IT; shadow AI is the new risk on the scene. The explosion of available AI tools, leadership’s enthusiasm for the new technology, the push for employees to do more with less, nascent governance and the sheer speed at which AI is evolving has created the perfect environment for shadow AI to flourish. […]
Leadership readiness isn’t a soft skill. It’s a transformation capability
Over the years, I’ve led and advised large-scale enterprise transformation efforts where the technology was solid, funding was approved and timelines were aggressive but achievable. On paper, everything looked right. And yet, some of those initiatives stalled, struggled to gain traction or quietly underdelivered long after go-live. What separated the programs that succeeded from the […]
Transforming diverse experiences into a storied CIO career
Denise Russell Fleming is an award-winning executive who has led successful business and technology transformations for premier global companies over the course of her storied career. Highly regarded as a transformative leader, Fleming currently serves as the CIO and EVP of technology and global services at BD (Becton, Dickinson and Co.). A member of BD’s […]
Why is infrastructure strategy becoming the ultimate enterprise intelligence decision?
As enterprises enter 2026, the data center is undergoing its most significant transformation since the rise of the internet. What was once a technical environment designed to run applications and store data is rapidly becoming the physical foundation of enterprise intelligence. For decades, data centers were built around predictable patterns: Transaction processing Storage growth Network […]
Vibe coding your own enterprise apps is edgy business
With AI coding assistants rapidly advancing, some organizations are pushing the AI-aided application development concept further by engineering enterprise-grade tools to replace or extend traditional software. While a trend toward vibe coding your own enterprise software appears to be in its infancy, some companies have reportedly replaced their traditional CRMs with homegrown applications. In recent […]
La dependencia tecnológica que más impacta en el CIO: el conocimiento
La soberanía tecnológica suele debatirse en términos de jurisdicción, cumplimiento o procedencia del proveedor. Todo eso es importante, pero deja fuera una cuestión que impacta directamente en el trabajo del CIO: qué conocimiento crítico conserva su departamento. El caso TSB: el problema no fue una migración compleja En abril de 2018, el banco británico TSB […]
From hierarchies to triaxial organizations: Designing AI-driven structures
Over time, organizations have evolved not only in structure but in the basic unit around which work is coordinated. Each dominant organizational model emerged as a response to concrete limits of control, specialization, coordination and adaptation, rather than as a management fashion. As Alfred D. Chandler showed, organizational structure is never neutral: it reflects the […]
From vibe coding to multi-agent AI orchestration: Redefining software development
Software development is experiencing its most consequential architectural shift since the emergence of open-source ecosystems and cloud-native computing. Generative AI has rapidly transitioned from an experimental productivity enhancer to a structural layer within modern engineering environments. What began as “vibe coding” — an intuitive collaboration between developers and AI assistants — has evolved into something […]
Salesforce AI Research identifies trends shaping agentic AI
Salesforce AI Research today showcased the three major agentic AI trends it predicts will shape AI in the enterprise through 2027. It also announced AI Foundry, a new initiative shaped by those trends and geared toward helping enterprises move from model-level AI to system-level AI that focuses on how AI components work together across teams, […]
La soberanía del dato ya no es únicamente una cuestión de ubicación
La “soberanía” de la información se ha convertido en uno de los temas más recurrentes en las conversaciones tecnológicas, aunque con frecuencia se le define de forma demasiado limitada. Para algunos, sigue significando residencia del dato. Para otros, se refiere a su alojamiento en una región concreta de nube soberana. La realidad es que, en […]
La IA doblará la rentabilidad de los concesionarios en apenas un lustro
Según las conclusiones del informe ‘Implementación de la IA en concesionarios de automóviles: impacto en rentabilidad y empleo’, elaborado a partir de datos de Faconauto, McKinsey, World Economic Forum (WEF), OCDE y Randstad, el margen neto del sector en España podría pasar, en 2030, del 1,3% actual al 2,8%, lo que significa que duplicará su […]
2018057297102_Kolta_5324620_NAC_jhjr.pdf
2018057297102_Kolta_5324620_NAC_jhjr.pdf Anonymous (not verified) Thu, 03/26/2026 – 14:55 Case ID 2018057297102 Document Number 6473d201 Document Type NAC Decisions Individuals Mark Sam Kolta Action Date Fri, 03/13/2026 – 12:00 Related Content On Attachment 2018057297102_Kolta_5324620_NAC_jhjr.pdf Individual CRD 5324620
25-02055.pdf
25-02055.pdf Anonymous (not verified) Thu, 03/26/2026 – 14:35 Case ID 25-02055 Forum FINRA Document Type Award Claimants Stephen Wedel Respondents LPL Financial LLC Neutrals Murray S. Levin Katherine Hendricks Alice E. Winkler Hearing Site Boca Raton, FL Award Document 25-02055.pdf Documentum DocID 06657280 Award Date Official Thu, 03/26/2026 – 12:00 Related Content Off Claimant Representatives […]
23-02063.pdf
23-02063.pdf Anonymous (not verified) Thu, 03/26/2026 – 14:35 Case ID 23-02063 Forum FINRA Document Type Award Claimants Richard Hall Sharon Hall Respondents Darien Bonney Neutrals Loren Scott Buell David S. Eisenberg David Alun Moody Hearing Site Phoenix, AZ Award Document 23-02063.pdf Documentum DocID d641f1c1 Award Date Official Thu, 03/26/2026 – 12:00 Related Content Off Claimant […]
TeamPCP Supply Chain Campaign: Update 001 - Checkmarx Scope Wider Than Reported, CISA KEV Entry, and Detection Tools Available, (Thu, Mar 26th)
This is the first update to the TeamPCP supply chain campaign threat intelligence report, “When the Security Scanner Became the Weapon” (v3.0, March 25, 2026). That report covers the full campaign from the February 28 initial access through the March 24 LiteLLM PyPI compromise. This update covers developments since publication.
China-Linked Red Menshen Uses Stealthy BPFDoor Implants to Spy via Telecom Networks
A long-term and ongoing campaign attributed to a China-nexus threat actor has embedded itself in telecom networks to conduct espionage against government networks. The strategic positioning activity, which involves implanting and maintaining stealthy access mechanisms within critical environments, has been attributed to Red Menshen, a threat cluster that’s also tracked as Earth Bluecrow,
[Webinar] Stop Guessing. Learn to Validate Your Defenses Against Real Attacks
Most teams have security tools in place. Alerts are firing, dashboards look clean, threat intel is flowing in. On the surface, everything feels under control. But one question usually stays unanswered: Would your defenses actually stop a real attack? That’s where things get shaky. A control exists, so it’s assumed to work. A detection rule […]
Claude Extension Flaw Enabled Zero-Click XSS Prompt Injection via Any Website
Cybersecurity researchers have disclosed a vulnerability in Anthropic’s Claude Google Chrome Extension that could have been exploited to trigger malicious prompts simply by visiting a web page. The flaw “allowed any website to silently inject prompts into that assistant as if the user wrote them,” Koi Security researcher Oren Yomtov said in a report shared […]
Databricks pitches Lakewatch as a cheaper SIEM — but is it really?
Databricks has previewed a new open agentic Security Information and Event Management software (SIEM) named Lakewatch that signals its first deliberate step beyond data warehousing into security analytics. The data warehouse-provider is pitching Lakewatch as a lower-cost alternative to traditional security tools, arguing that consolidating security analytics into its data platform can reduce overall spend. […]
WAGO GmbH & Co. KG Industrial Managed Switches
View CSAF Summary An unauthenticated remote attacker can exploit a hidden function in the CLI prompt to escape the restricted interface, leading to full compromise of the device. The following versions of WAGO GmbH & Co. KG Industrial Managed Switches are affected: WAGO Firmware versions prior to V1.2.1.S0 WAGO_Hardware_852-1812 (CVE-2026-3587) WAGO Firmware versions prior to […]
OpenCode Systems OC Messaging and USSD Gateway
View CSAF Summary Successful exploitation of this vulnerability could allow an authenticated low-privileged user to gain access to SMS messages outside of their authorized tenant scope via a crafted company or tenant identifier parameter. The following versions of OpenCode Systems OC Messaging and USSD Gateway are affected: OC Messaging 6.32.2 (CVE-2025-70614) USSD Gateway 6.32.2 (CVE-2025-70614) […]
PTC Windchill Product Lifecycle Management
View CSAF Summary Successful exploitation of this vulnerability could allow an attacker to achieve remote code execution. The following versions of PTC Windchill Product Lifecycle Management are affected: Windchill PDMLink 11.0_M030 (CVE-2026-4681) Windchill PDMLink 11.1_M020 (CVE-2026-4681) Windchill PDMLink 11.2.1.0 (CVE-2026-4681) Windchill PDMLink 12.0.2.0 (CVE-2026-4681) Windchill PDMLink 12.1.2.0 (CVE-2026-4681) Windchill PDMLink 13.0.2.0 (CVE-2026-4681) Windchill PDMLink 13.1.0.0 […]
CISA Adds One Known Exploited Vulnerability to Catalog
CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-33634 Aqua Security Trivy Embedded Malicious Code Vulnerability This type of vulnerability is a frequent attack vector for malicious cyber actors and poses significant risks to the federal enterprise. Binding Operational Directive (BOD) 22-01: Reducing the […]
Masters of Imitation: How Hackers and Art Forgers Perfect the Art of Deception
Unmasking impostors is something the art world has faced for decades, and there are valuable lessons from the works of Elmyr de Hory that can apply to the world of defensive cybersecurity. During the 1960s, de Hory gained infamy as a premier forger, passing off counterfeit masterworks of Picasso, Matisse, and Renoir to unsuspecting collectors […]
ThreatsDay Bulletin: PQC Push, AI Vuln Hunting, Pirated Traps, Phishing Kits & 20 More Stories
Some weeks in security feel loud. This one feels sneaky. Less big dramatic fireworks, more of that slow creeping sense that too many people are getting way too comfortable abusing things they probably shouldn’t even be touching. There’s a little bit of everything in this one, too. Weird delivery tricks, old problems coming back in […]
GitHub phishers use fake OpenClaw tokens to drain crypto wallets
Threat actors are actively exploiting OpenClaw’s viral popularity to run a phishing campaign that targets developers on GitHub with lures of free crypto tokens. According to a disclosure by OX Security, the campaign involves fake “CLAW” token airdrops that promise thousands of dollars in rewards. Developers are being tricked into malicious GitHub repositories and discussions, […]
Coruna iOS Kit Reuses 2023 Triangulation Exploit Code in Recent Mass Attacks
The kernel exploit for two security vulnerabilities used in the recently uncovered Apple iOS exploit kit known as Coruna is an updated version of the same exploit that was used in the Operation Triangulation campaign back in 2023, according to new findings from Kaspersky. “When Coruna was first reported, the public evidence wasn’t sufficient to […]
From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI
The hackers compromised GitHub Action tags, then shifted to NPM, Docker Hub, VS Code, and PyPI, and teamed with Lapsus$. The post From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI appeared first on SecurityWeek.
RSAC 2026 Conference Announcements Summary (Day 2)
A summary of the announcements made by vendors on the second day of the RSAC 2026 Conference. The post RSAC 2026 Conference Announcements Summary (Day 2) appeared first on SecurityWeek.
FCC Bans New Routers Made Outside the US Over National Security Risks
The ban aligns with a White House determination that all routers produced abroad are a threat to national security. The post FCC Bans New Routers Made Outside the US Over National Security Risks appeared first on SecurityWeek.
iOS, macOS 26.4 Roll Out With Fresh Security Patches
Apple released security fixes for older devices as well, in iOS 18.7.7, iPadOS 18.7.7, macOS Sequoia 15.7.5, and macOS Sonoma 14.8.5. The post iOS, macOS 26.4 Roll Out With Fresh Security Patches appeared first on SecurityWeek.
AI Speeds Attacks, But Identity Remains Cybersecurity’s Weakest Link
PwC finds AI is amplifying speed and scale of attacks, as identity theft evolves into a cybercriminal supply chain. The post AI Speeds Attacks, But Identity Remains Cybersecurity’s Weakest Link appeared first on SecurityWeek.
Russian Cybercriminal Gets 2-Year Prison Sentence in US
Ilya Angelov was a member of the cybercrime group tracked as TA-551, Shathak, Gold Cabin, Monster Libra, and ATK236. The post Russian Cybercriminal Gets 2-Year Prison Sentence in US appeared first on SecurityWeek.
Onit Security Raises $11 Million for Exposure Management Platform
The startup will invest in product development and go-to-market efforts as it expands into new sectors. The post Onit Security Raises $11 Million for Exposure Management Platform appeared first on SecurityWeek.
Dell and HP Roll Out Quantum-Resistant Device Security and AI-Era Cyber Resilience
The computer giants have announced new security capabilities for PCs and printers. The post Dell and HP Roll Out Quantum-Resistant Device Security and AI-Era Cyber Resilience appeared first on SecurityWeek.
Alleged RedLine Malware Administrator Extradited to US
Hambardzum Minasyan of Armenia has been accused of being involved in the development and administration of the infostealer malware. The post Alleged RedLine Malware Administrator Extradited to US appeared first on SecurityWeek.
One-Stop-Shop case digest on the legal basis of "legitimate interest"
One-Stop-Shop case digest on the legal basis of “legitimate interest” icolonnm Thu, 26/03/2026 – 11:27 26 March 2026 Since the entry into force of the GDPR, Data Protection Authorities (DPAs) have closely cooperated to adopt a growing number of one-stop-shop (OSS) decisions on the legal basis of “legitimate interest”, as shown by the decisions on […]
WebRTC Skimmer Bypasses CSP to Steal Payment Data from E-Commerce Sites
Cybersecurity researchers have discovered a new payment skimmer that uses WebRTC data channels as a means to receive payloads and exfiltrate data, effectively bypassing security controls. “Instead of the usual HTTP requests or image beacons, this malware uses WebRTC data channels to load its payload and exfiltrate stolen payment data,” Sansec said in a report […]
10 essenzielle Maßnahmen für physische Sicherheit
Wenn physische Security nur immer so simpel umzusetzen wäre… Foto: Leremy | shutterstock.com Obwohl CISOs im Allgemeinen eher selten mit dem gesamten Spektrum der Gesundheits- und Arbeitssicherheitsbelange betraut sind, spielen sie diesbezüglich doch eine wichtige, strategische Rolle – insbesondere, wenn es um physische Sicherheitssysteme mit IT-Anbindung und den direkten Zugang zu IT-Assets geht. Die wesentlichen […]
ISC Stormcast For Thursday, March 26th, 2026 https://isc.sans.edu/podcastdetail/9866, (Thu, Mar 26th)
Post Content
New critical Citrix NetScaler hole of similar severity to CitrixBleed2, says expert
A new critical vulnerability that is similar to the widely-exploited CitrixBleed and CitrixBleed2 holes should be patched in NetScaler devices immediately, say experts. The hole, CVE-2026-3055, is an out-of-bounds read vulnerability in customer-managed NetScaler ADC and NetScaler Gateway devices configured as SAML IDP for approving identity and authentication. It’s rated at 9.3 in severity on […]
Florida senator sues Booz Allen over his leaked tax returns
Gary Fineout reports: Sen. Rick Scott is suing a major government contractor for damages after his tax returns were leaked along with other prominent and wealthy figures, including President Donald Trump. The Florida Republican on Monday filed a lawsuit against Booz Allen Hamilton, a management and technology consulting company, and a former employee of the contractor who… […]
Apple Patches (almost) everything again. March 2026 edition., (Wed, Mar 25th)
Apple released the next version of its operating system, patching 85 different vulnerabilities across all of them. None of the vulnerabilities are currently being exploited. The last three macOS “generations” are covered, as are the last two versions of iOS/iPadOS. For tvOS, watchOS, and visionOS, only the current version received patches. This update also includes the […]
“우리가 알던 SaaS의 종말” AI 시대의 애플리케이션 전략을 위한 5가지 질문
2월을 앞두고 주요 상장 SaaS 업체의 주가는 약 10% 하락했고, 시가총액 약 3,000억 달러가 증발했다. 이런 흐름을 촉발한 요인 중 하나는 법무, 마케팅 등 업무 기능용 플러그인을 탑재한 앤트로픽의 ‘클로드 코워크’ 출시다. 여기에 클로드 코드의 90%를 AI가 작성한다는 점, 그리고 클로드 오푸스 4.5와 GPT-5.2 코덱스가 가 SWE-bench 벤치마크에서 80%를 웃도는 성과를 냈다는 사실도 투자 심리에 […]
CIO코리아·자브라, ‘AI 시대 업무 혁신’ 주제로 조찬 세미나 개최
약 30명의 기업 리더들이 참석한 이번 행사는 ‘AI 시대, 지식 노동의 재편과 음성 AI가 만드는 새로운 업무 경험’을 주제로, AI 도입 이후 조직과 일하는 방식이 어떻게 달라지고 있는지를 함께 탐색하는 자리로 마련됐다. 행사의 첫 번째 세션에서는 뇌과학자이자 미래탐험공동체 대표이사인 장동선 박사가 ‘AI 시대 조직과 일은 어떻게 바뀔까’를 주제로 발표했으며, 두 번째 세션에서는 자브라 APAC 엔터프라이즈 […]
Low code, no fear
Today’s CIOs have multi-dimensional strategic goals to achieve, enhancing speed of delivery and time-to-market, empowering more non-tech users (especially as they confront a crippling shortage of developers and limited engineering capacity), reducing cost of IT operations and building business agility, scalability and responsiveness. Low code/no code (LCNC) platforms are a powerful means to fulfil this […]
How to build products for the real world, not the market
Most successful product stories are told as a triumph of vision. We celebrate breakthrough ideas that seem to appear fully formed. But behind nearly every durable product is a quieter, more disciplined force: A small group of users whose feedback shaped the product long before it ever reached the market. In Building a product roadmap: From […]
The inside track on how boards evaluate their CIOs
When CIOs present to the board, they often assume directors evaluate their technology strategy. In reality, many boards evaluate something very different: how the CIO thinks about the business. Shawn Banerji, managing partner for the data, digital, and technology leaders practice at search firm Caldwell, says that in more than 75% of the enterprise CIO […]
How to rescue failing AI initiatives
In March 2023, automation company Zapier declared an internal code red, urging teams to sprint toward AI experimentation. Prototypes bloomed overnight. Workflows were rebuilt. “The energy was incredible,” says Brandon Sammut, the company’s chief people and AI transformation officer. “Teams were building AI-powered workflows.” Yet few of those automations made it to production. While the […]
What actually changes when reliability becomes a board-level problem
Every technology executive remembers the incident that changed how they think about reliability. Not a blip on a dashboard. Not a P2 bumped to P1 during a Monday morning review. The one that brought public attention, uncomfortable board questions and a sudden awareness that the reliability of your systems has much broader consequences than you […]
デュアルユースの現実:軍民両用技術が社会実装を加速し、難しさも増やす理由
デュアルユースとは何か、なぜ増えているのか デュアルユースとは、同じ技術や製品が民生にも防衛にも利用され得る状態を指す。言い換えれば、用途が一つに固定されず、状況や運用次第で社会的な意味合いが変わる技術のことだ。昔から「軍事から民生へ」「民生から軍事へ」という転用はあったが、近年デュアルユースが急速に存在感を増した背景には、技術の性質そのものの変化がある。 第一に、ソフトウェア化が進んだ。かつての軍事技術は専用ハードウェアに閉じていたが、いまや多くの価値はアルゴリズム、データ、システム統合に宿る。ソフトウェアは複製と展開が容易で、目的に応じた機能の付け替えも速い。第二に、汎用インフラが高度化した。クラウド、GPU、衛星通信、スマートセンサー、5G以降のネットワークなど、民間が整備した基盤がそのまま防衛用途の土台になり得る。第三に、グローバル化とサプライチェーンの分業が進み、技術が国境や産業の境界を軽々と越えるようになった。ある企業が「民生目的」で作った部品やソフトが、別の企業の手を経て別用途に組み込まれることも珍しくない。 このように、デュアルユースは倫理的な議論以前に、技術進化の必然として起きている。だからこそ単純な賛否で片付けにくい。否定しようとしても境界は曖昧になり、肯定しようとしても責任や管理の論点が膨らむ。重要なのは、デュアルユースを「例外」ではなく「標準状態」と捉え、最初から設計と運用に織り込む発想へ切り替えることだ。 研究開発が加速する“往復運動” デュアルユースがイノベーションを加速させる最大の理由は、研究開発が一方向ではなく“往復運動”になる点にある。防衛から民生へ、民生から防衛へという単純な矢印ではなく、双方の要求と市場の力学が互いに押し合い、技術を成熟させていく。 防衛側が押す力は「性能要求」と「過酷な条件」だ。通信が妨害される前提、情報が漏れてはならない前提、極端な温度や振動、限られた電力と重量。こうした条件は、技術を鍛え、信頼性や安全性の水準を引き上げる。一方で民生側が押す力は「量産」と「コスト」と「ユーザー体験」だ。市場が大きいほど製品は洗練され、部品は安くなり、供給網は厚くなる。使いやすさが磨かれ、運用や保守の仕組みも標準化される。 この二つが交互に効くことで、技術の発展は加速する。防衛の厳しさが技術の天井を押し上げ、民生の規模が技術を普及させる。たとえば、センサーや画像認識の性能は、防衛の厳しい要求で限界が押し上げられ、同時にスマートフォンや自動車などの民生市場が大量需要を生み、計算資源や部品のコストを押し下げる。すると防衛側は、民生由来の安価で高性能な部品を活用できるようになり、さらに運用要件に合わせて強化する。その成果が民生へ戻れば、より安全で堅牢な仕組みとして社会実装される可能性が高まる。 この往復運動の肝は「成熟の速度」だ。防衛は慎重で遅い、民生は速いが粗い、と一般化されがちだが、往復運動が成立すると両者の弱点が補われる。民生の速さが試行回数を増やし、防衛の慎重さが信頼性を底上げする。結果として、イノベーションは“最先端の発明”ではなく“社会実装される技術”として結実しやすくなる。 規制と輸出管理がイノベーション設計を変える デュアルユースが難しいのは、技術の可能性が広いほど、管理の論点が増えるからだ。特に企業活動に直結するのが規制と輸出管理である。多くの国は、安全保障や国際合意に基づき、特定技術の移転、輸出、提供を制限する枠組みを持っている。デュアルユース技術は、民生用途としては一般流通していても、特定の性能や用途に到達した瞬間に規制対象に入ることがある。この「境界を跨いだ瞬間にルールが変わる」性質が、製品開発や事業展開の設計を根本から変える。 具体的には、研究開発の初期から、どの国に販売できるのか、どの顧客が対象になるのか、共同研究の情報共有はどこまで許されるのかを見立てなければならない。後から対応しようとすると、仕様の変更が必要になったり、プロジェクトそのものが止まったりする。さらに、サプライチェーンの構成も重要になる。部品の原産国や設計情報の所在地、クラウドのデータ保存先、保守サポートの体制などが、規制上の論点になり得る。つまりデュアルユースでは、技術だけでなく「組み立て方」「流通の仕方」「運用の仕方」まで含めて、最初から設計対象になる。 ここで見落とされがちなのは、規制が単なる足枷ではなく、競争条件を再編する力も持つことだ。規制に耐える設計ができる企業は、参入障壁を築ける。逆に言えば、コンプライアンスを後付けにすると、競争優位を失いやすい。輸出管理や契約条件、監査対応を含めた“実装の設計”ができる企業ほど、長期的な信頼を獲得し、結果的に共同研究や大型案件を引き寄せる。 一方で、規制の存在は、研究開発のオープン性を下げる方向にも働く。情報共有が制限されれば、学術界やオープンソースとの連携が難しくなり、技術進化の速度が落ちることもある。このトレードオフをどう扱うかが、デュアルユース時代のイノベーション戦略の中心課題になる。 倫理とガバナンスが競争優位になる デュアルユースを語ると、必ず倫理の問題に行き当たる。技術そのものが善悪を持つわけではないが、用途が人命に関わる領域へ及ぶとき、企業や研究者は「自分たちは何に加担するのか」という問いから逃げられない。ここで重要なのは、倫理を抽象的な議論で終わらせず、組織のガバナンスとして具体化することだ。 ガバナンスとは、単に禁止事項を並べることではない。どの用途を受け入れ、どの用途を拒否するのかを判断する手続きであり、判断の根拠を説明できる状態であり、判断が組織の中で一貫して運用される仕組みだ。デュアルユースでは、用途が複雑に分岐するため、場当たり的な判断は必ず破綻する。営業が受注してしまった案件を後から止めることは難しく、共同研究で共有した情報は取り戻せない。だからこそ、意思決定の前段階で判断できる仕組みが必要になる。 この仕組みを整えることは、結果として競争優位になり得る。理由は二つある。第一に、組織としてリスクを予見できるため、プロジェクトが途中で頓挫しにくくなる。規制違反や社会的批判で計画が止まることは、技術力以前に信頼を失う致命傷になる。第二に、パートナーが安心して連携できる。大学、企業、政府機関、投資家にとって、デュアルユースの案件は“炎上リスク”も含む。判断プロセスが明確で、説明責任を果たせる組織は、連携先として選ばれやすい。 倫理とガバナンスを競争優位に変えるには、透明性が鍵になる。すべての情報を公開するという意味ではない。機微情報は守りつつ、どのような価値観と手続きで判断するのかを外部に説明できる形にすることが、信頼の基盤になる。デュアルユースでは、技術の高度さよりも、技術を社会の中でどう扱うかの成熟度が問われる場面が増える。 “オープン”と“クローズ”の最適解 デュアルユース時代のイノベーション戦略で、最後に避けて通れないのが「オープン」と「クローズ」の設計である。オープンにすれば技術は進化しやすい。標準化や共同研究、オープンソースは、多様な知恵を集め、試行回数を増やし、社会実装の速度を上げる。しかしオープンは、機微情報の漏洩や悪用の可能性も増やす。クローズにすれば守れるが、技術は閉じた環境でしか育たず、コストも高止まりし、普及も遅れる。 最適解は、単純な二択ではない。むしろ、どこをオープンにし、どこをクローズにするかを階層的に設計することが重要になる。たとえば、基盤となるインターフェースやデータ形式はオープンにして相互運用性を確保し、運用ノウハウや特定用途に直結する設定はクローズにする、といった切り分けである。ソフトウェアでも、汎用ライブラリは共有しつつ、用途固有のモデルやデータは管理された環境に置く、という構造が考えられる。こうした分割は、技術の拡張性と安全性を両立させるための設計思想になる。 さらに重要なのは、オープンとクローズの境界を固定しないことだ。技術が成熟し、社会的な合意や規制の枠組みが変われば、境界は動く。初期はクローズで守り、成熟とともにオープンにして普及を狙う戦略もあるし、逆に普及後に悪用が顕在化してクローズ側の管理を強めるケースもあり得る。デュアルユースの戦略とは、境界を一度決めて終わりではなく、環境変化に応じて境界を再設計し続ける能力そのものだ。 デュアルユースは、イノベーションを速める。防衛の厳しい要求が技術の上限を押し上げ、民生の規模が技術を普及させ、両者の往復運動が成熟を加速する。しかし同時に、規制と輸出管理が事業設計を変え、倫理とガバナンスが組織の信頼を左右し、オープンとクローズの最適解を常に問い直す必要がある。だからデュアルユースは、技術のテーマであると同時に、経営と社会のテーマでもある。イノベーションを“起こす”だけでなく、“扱い切る”こと。そこに、これからの防衛産業と民生産業が共有する課題と可能性がある。
Advancing Industrial All Intelligence
Industrial organizations are at a critical juncture as a new era dawns: Will networks simply consume data, or drive an infrastructure that thinks, senses, and acts autonomously? Huawei’s presentation at MWC Barcelona 2026 marked a step toward a future where AI shifts from pilot experiments to full-scale industrial transformation, both digitally and intelligence-wise. While the announcement carried the […]
AI machine speed is breaking VPN security
Remote access isn’t a new problem. VPN risk isn’t a new conversation. What’s new, and what the Zscaler ThreatLabz 2026 VPN Risk Report makes unmistakably clear, is the speed at which the threat landscape is changing. Why this matters now: The #1 fear among defenders is AI speed, and it’s already showing up in the field. […]
Chained vulnerabilities in Cisco Catalyst switches could induce denial-of-service
Cisco’s widely deployed Catalyst 9300 Series enterprise switches have four security vulnerabilities, two of which could be chained to cause a denial-of-service outage, infrastructure security company Opswat has revealed. The two most operationally significant are CVE-2026-20114 and CVE-2026-20110, which the researchers found could be chained to make possible a dangerous privilege escalation. Opswat’s Unit 515 […]
LeakBase Admin Arrested in Russia Over Massive Stolen Credential Marketplace
The alleged administrator of the LeakBase cybercrime forum has been arrested by Russian law enforcement authorities, state media reported Thursday. According to TASS and MVD Media, a news website linked to the Russian Interior Ministry, the suspect is a resident of the city of Taganrog. The suspect is said to have been detained for creating […]
2023079613601 BTIG, LLC CRD 122225 AWC vrp.pdf
2023079613601 BTIG, LLC CRD 122225 AWC vrp.pdf Anonymous (not verified) Wed, 03/25/2026 – 13:20 Case ID 2023079613601 Document Number 877c0e87 Document Type AWCs (Letters of Acceptance, Waiver, and Consent) Action Date Wed, 03/25/2026 – 12:00 Related Content Off Attachment 2023079613601 BTIG, LLC CRD 122225 AWC vrp.pdf
Holiday Reminder Regarding FINRA Market Transparency Reporting Systems
Technical Notice Holiday Reminder Regarding FINRA Market Transparency Reporting Systems March 25, 2026 K30658 Wed, 03/25/2026 – 12:13 In observance of Good Friday, FINRA’s Market Transparency Reporting Systems will be closed on Friday, April 3, 2025. Affected applications include: Alternative Display Facility (ADF) Over-the-Counter Reporting Facility (ORF) Trade Reporting and Compliance Engine (TRACE) FINRA/Exchange Trade Reporting […]
GlassWorm Malware Uses Solana Dead Drops to Deliver RAT and Steal Browser, Crypto Data
Cybersecurity researchers have flagged a new evolution of the GlassWorm campaign that delivers a multi-stage framework capable of comprehensive data theft and installing a remote access trojan (RAT), which deploys an information-stealing Google Chrome extension masquerading as an offline version of Google Docs. “It logs keystrokes, dumps cookies and session tokens, captures screenshots, and
Delaware Supreme Court Reverses, Holds Cyber Insurers Sufficiently Pled Collective Subrogation Claim Resulting from Blackbaud Data Breach
The fallout from the massive Blackbaud breach is not over, it seems. Lydia Mills of Wiley Rein writes: Reversing the decision below, the Delaware Supreme Court held that a group of cyber liability insurers sufficiently pled a complaint for subrogation based on breach of contract. Travelers Cas. & Sur. Co. of Am. v. Blackbaud, Inc., 2026… […]
TeamPCP Hits Trivy, Checkmarx, and LiteLLM in Credential Theft Campaign
Deeba Ahmed reports on some of TeamPCP’s dangerously effective recent activities: What Happened? The trouble began on 19 March 2026, when a hacking group calling themselves TeamPCP managed to break into Trivy, a popular tool used by developers to scan their code for security vulnerabilities. This was a supply chain attack, which occurs when hackers sneak malicious code… […]
Companies face difficult choices in blaming hackers for an attack
Eric Geller reports: Businesses need to think carefully about when they publicly blame a threat actor for a cyberattack, lest they invite unwanted consequences, experts said at a panel at the RSAC 2026 Conference here on Tuesday. “The rush to attribute is a risky one,” Megan Stifel, the chief strategy officer at the Institute for… […]
Utimaco Survey Finds 78% of US Companies Name Legacy Data Breaches the Top Gen AI Risk
From a press release by Utimaco: 57% of respondents have not yet implemented a solution to address these concerns Post quantum cryptography (PQC) readiness shows an even wider gap: while 72% identify legacy data attacks as the greatest quantum issue, 75% remain unprepared Data Sovereignty is front of mind: 80% of respondents rank protecting customer… […]
Malware on Luxembourg public sector devices was active for almost a month
Alex Stevensson reports: Thousands of devices owned by the Luxembourg public sector found to be infected with malware at the end of February have since been updated and secured, digitalisation minister Stéphanie Obertin has said. The security breach was confirmed on 27 February but details were scant at the time, with LSAP deputy Ben Polidori… […]
Anime streaming giant Crunchyroll says hacker stole data related to customer service tickets
Jonathan Greig reports: The popular anime streaming platform Crunchyroll confirmed on Monday evening that a batch of customer information leaked online over the weekend is legitimate. In a statement to Recorded Future News, a spokesperson for the company said their investigation into the stolen documents is ongoing alongside cybersecurity experts. “At this time, we believe… […]
Handala Hackers Alleges Massive Data Breach of Tamir Pardo, Former Mossad Chief
As posted by the Iranian news agency, WANA: The hacker group Handala announced that it has released 14 gigabytes of personal and highly confidential documents belonging to Tamir Pardo as proof of concept (PoC). A message from Handala that accompanies some screengrabs offered as proof of claims states, in part: Today, Handala proudly announces that… […]
Infinite Campus Security Incident Awareness: No Impact to Student Data According to Infinite Campus
There was some understandable panic and concern in the k-12 sector when the ShinyHunters threat actors announced they had compromised and would leak data from edtech vendor Infinite Campus. Was this going to be another massive breach like the PowerSchool breach that affected tens of millions of students? At the present time, the Infinite Campus… […]
Trivy supply chain breach compromises over 1,000 SaaS environments, Lapsus$ joins the extortion wave
What started as a supply chain attack on Trivy, a widely used security scanner, has become a Lapsus$-linked extortion campaign, with more than 1,000 enterprise SaaS environments already compromised. Charles Carmakal, CTO of Mandiant Consulting, made the assessment at a Google-hosted threat briefing held alongside the RSA Conference 2026 in San Francisco on Tuesday. “We […]
CISA Adds One Known Exploited Vulnerability to Catalog
CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-33017 Langflow Code Injection Vulnerability This type of vulnerability is a frequent attack vector for malicious cyber actors and poses significant risks to the federal enterprise. Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of […]
The Kill Chain Is Obsolete When Your AI Agent Is the Threat
In September 2025, Anthropic disclosed that a state-sponsored threat actor used an AI coding agent to execute an autonomous cyber espionage campaign against 30 global targets. The AI handled 80-90% of tactical operations on its own, performing reconnaissance, writing exploit code, and attempting lateral movement at machine speed. This incident is worrying, but there’s a […]
Russian Hacker Sentenced to 2 Years for TA551 Botnet-Driven Ransomware Attacks
The U.S. Department of Justice (DoJ) said a Russian national has been sentenced to two years in prison for managing a botnet that was used to launch ransomware attacks against U.S. companies. Ilya Angelov, 40, of Tolyatti, Russia, was also fined $100,000. Angelov, who went by the online aliases “milan” and “okart,” is said to […]
Device Code Phishing Hits 340+ Microsoft 365 Orgs Across Five Countries via OAuth Abuse
Cybersecurity researchers are calling attention to an active device code phishing campaign that’s targeting Microsoft 365 identities across more than 340 organizations in the U.S., Canada, Australia, New Zealand, and Germany. The activity, per Huntress, was first spotted on February 19, 2026, with subsequent cases appearing at an accelerated pace since then. Notably, the campaign […]
PyPI warns developers after LiteLLM malware found stealing cloud and CI/CD credentials
PyPI is warning of possible credential theft from AI applications and developer pipelines after two malicious versions of the widely used Python middleware for large language models, LiteLLM, were briefly published. “Anyone who has installed and run the project should assume any credentials available to the LiteLLM environment may have been exposed, and revoke/rotate them […]
3.1 Million Impacted by QualDerm Data Breach
Hackers stole personal, medical, and health insurance information from the company’s internal systems. The post 3.1 Million Impacted by QualDerm Data Breach appeared first on SecurityWeek.
Webinar Today: Putting CIS Controls and Benchmarks into Practice
Learn how the CIS Critical Security Controls and the CIS Benchmarks can be used together to support secure configuration at scale. The post Webinar Today: Putting CIS Controls and Benchmarks into Practice appeared first on SecurityWeek.
Chrome 146 Update Patches High-Severity Vulnerabilities
The software refresh fixes eight memory safety bugs affecting seven Chrome components. The post Chrome 146 Update Patches High-Severity Vulnerabilities appeared first on SecurityWeek.
Extortion Group Claims It Hacked AstraZeneca
The Lapsus$ hackers allegedly compromised internal code repositories, credentials, and employee data. The post Extortion Group Claims It Hacked AstraZeneca appeared first on SecurityWeek.
RSAC 2026 Conference Announcements Summary (Day 1)
A summary of the announcements made by vendors on the first day of the RSAC 2026 Conference. The post RSAC 2026 Conference Announcements Summary (Day 1) appeared first on SecurityWeek.
Poland Faced a Surge in Cyberattacks in 2025, Including a Major Assault on the Energy Sector
The attacks included a destructive infiltration of Poland’s energy system in December and was suspected of originating in Russia. The post Poland Faced a Surge in Cyberattacks in 2025, Including a Major Assault on the Energy Sector appeared first on SecurityWeek.
Why Agentic AI Systems Need Better Governance – Lessons from OpenClaw
Agentic AI platforms are shifting from passive recommendation tools to autonomous action-takers with real system access, The post Why Agentic AI Systems Need Better Governance – Lessons from OpenClaw appeared first on SecurityWeek.
DoE Publishes 5-Year Energy Security Plan
CESER’s Project Armor is a five year initiative to harden the US critical energy infrastructure, including strengthening energy systems ‘to prevent and recover from wildfires and other hazards’. The post DoE Publishes 5-Year Energy Security Plan appeared first on SecurityWeek.
HackerOne Employee Data Exposed in Massive Navia Breach
The cybersecurity firm said the personal information of hundreds of employees was stolen in the hacker attack targeting Navia. The post HackerOne Employee Data Exposed in Massive Navia Breach appeared first on SecurityWeek.
US Prisons Russian Access Broker for Aiding Ransomware Attacks
Aleksei Volkov has been sentenced to 81 months in prison for his role in Yanluowang ransomware attacks. The post US Prisons Russian Access Broker for Aiding Ransomware Attacks appeared first on SecurityWeek.
6 key trends reshaping the IAM market
The identity and access management (IAM) market has shifted its focus from traditional “login and MFA” mechanisms toward treating identity as a security control plane. Buyers are prioritizing phishing-resistant authentication, including passkeys, and the management of non-human identities, according to an array of experts quizzed on developments in the market by CSO. “Workforce access is […]
AI is breaking traditional security models — Here’s where they fail first
Traditionally, enterprise security operating models operated a fixed and regular cycle: Findings surfaced through periodic scans, security teams triaged results and remediation followed through ticket-based workflows. It was almost an SOP of sorts; the accountability existed, but it was often implicit and fragmented. The remediation would travel across tools, teams and handoffs rather than designed […]
FCC Bans New Foreign-Made Routers Over Supply Chain and Cyber Risk Concerns
The U.S. Federal Communications Commission (FCC) said on Monday that it was banning the import of new, foreign-made consumer routers, citing “unacceptable” risks to cyber and national security. The action was designed to safeguard Americans and the underlying communications networks the country relies on, FCC Chairman Brendan Carr said in a post on X. The […]
Risky Business #830 -- LiteLLM and security scanner supply chains compromised
On this week’s show, Patrick Gray, Adam Boileau and James WIlson discuss the week’s cybersecurity news. They talk through: TeamPCP’s supply chain attack on Github, and they threw in an anti-Iran wiper, because why not?! Anthropic hooks up its models to just… use your whole computer After Stryker’s Very Bad Day, CISA says maybe add […]
Empathie trifft IT-Sicherheit: Der Weg zu gelebter Compliance
CISOs sollten Sicherheitsrichtlinien mit Blick auf die Belegschaft gestalten. earthphotostock – shutterstock.com In vielen Unternehmen stoßen IT-Sicherheitsrichtlinien auf Widerstand, da Mitarbeitende sie als hinderlich oder praxisfern empfinden. Dies erschwert die Umsetzung, untergräbt die Wirksamkeit und belastet die Zusammenarbeit zwischen der Sicherheitsabteilung und den Fachbereichen. Statt als Partner wird Cybersecurity oft als Bremser wahrgenommen – ein […]
ISC Stormcast For Wednesday, March 25th, 2026 https://isc.sans.edu/podcastdetail/9864, (Wed, Mar 25th)
Post Content
SmartApeSG campaign pushes Remcos RAT, NetSupport RAT, StealC, and Sectop RAT (ArechClient2), (Wed, Mar 25th)
Introduction
2021073044801 Aegis Capital Corp. CRD 15007 AWC ks.pdf
2021073044801 Aegis Capital Corp. CRD 15007 AWC ks.pdf Anonymous (not verified) Tue, 03/24/2026 – 17:40 Case ID 2021073044801 Document Number 74eff189 Document Type AWCs (Letters of Acceptance, Waiver, and Consent) Action Date Tue, 03/24/2026 – 12:00 Related Content Off Attachment 2021073044801 Aegis Capital Corp. CRD 15007 AWC ks.pdf
Florida Medicare members’ data exposed as Mirra Health improperly outsourced records overseas
Skyler Shepard reports: State investigators say Mirra Health jeopardized the safety of thousands of Floridians by sharing their sensitive health data with unauthorized companies overseas. Florida Insurance Commissioner Mike Yaworsky suspended Mirra Health Care LLC on Tuesday after investigators found the company sent private medical information to unlicensed companies in India and the Philippines. Mirra Health handles important claims… […]
25-01728.pdf
25-01728.pdf Anonymous (not verified) Tue, 03/24/2026 – 16:05 Case ID 25-01728 Forum FINRA Document Type Award Claimants Carine Smith Respondents TIAA-CREF Individual & Institutional Ser Neutrals Seth L. Finkel Jan Preece Gaddis Michael S. Yauch Hearing Site Houston, TX Award Document 25-01728.pdf Documentum DocID f4773f6b Award Date Official Tue, 03/24/2026 – 12:00 Related Content Off […]
트럼프 행정부, 연방 차원의 AI 정책 틀 공개…주별 규제 무력화 겨냥
도널드 트럼프 미국 대통령 행정부는 20일 ‘국가 인공지능 정책 프레임워크: 입법 권고안(National Policy Framework for Artificial Intelligence: Legislative Recommendations)’라는 문서를 공개했다. 이 문서는 최근 각 주(州)가 잇달아 채택하고 있는 AI 안전 중심 청사진과는 결이 다르다. 주 정부의 접근 방식과 달리, AI 거버넌스에 대한 연방 차원의 통제권을 강화하기 위한 전략 문서에 가깝다. 이번 발표는 의회 내 […]
오픈텍스트, 공공부문 ‘에이전틱 AI’ 도입 논의 속 거버넌스 필요성 강조
기존 인공지능이 주로 데이터 분석과 예측에 활용되어 왔다면, 에이전틱 AI는 일정 수준의 판단과 실행 기능을 포함한다는 점에서 차별화된 개념으로 소개되고 있다. 이에 따라 민원 처리, 행정 절차 자동화, 내부 업무 효율화 등 다양한 분야에서 활용 가능성이 거론된다. 오픈텍스트는 공공 영역에서의 AI 도입이 민간 대비 높은 수준의 책임성과 투명성을 요구받는 만큼, 기술 적용과 함께 거버넌스 체계 […]
The AI information gap and the CIO’s mandate for transparency
B2B buyers have entered 2026 with enough AI experience to have developed a healthy skepticism about it. As CIOs, we see it firsthand: buyers are no longer wowed by AI hype. They want clarity and transparency. From model functionality and training data to privacy, customers are peppering our teams with in-depth questions. The trouble is, […]
The AI data dilemma every CIO must address
Getting data right for AI is essential for CIOs to deliver successful outcomes from AI initiatives. That part is clear. What’s less clear is what that process entails given the nature of AI data use — and how to pay for the foundational work necessary to ensure the organization has data that’s “good” for AI. […]
Autonomous agents are coming: What it will take to make them work
For most of my career as a customer experience (CX) executive, every major shift has followed the same pattern: Early hype, loud skepticism, uneven execution — and then, quietly, a moment when the industry realizes there is no going back. Autonomous CX agents will follow the same path. I have watched IVRs shift to and […]
Is AI the end of SaaS as we know it?
Shares in several prominent public SaaS companies fell approximately 10% heading into February, wiping out $300 billion in value. One of the instigators was Anthropic’s release of Claude Cowork with plugins in legal, marketing, and other business functions. Investors also read how AI writes 90% of Claude’s code, while technologists noticed that Claude Opus 4.5 […]
Are we living in an AI bubble? Applying lessons from the dot-com era
We’ve seen this economy before. Rapid innovation followed by unprecedented growth, all fueled by investors hungry for ROI. Remembering the dot-com era and the housing market of 07-’08, today many are wondering: Is today’s AI boom another bubble? And if so, is it vulnerable enough to pop soon? In 2025 alone, roughly two-thirds of U.S. […]
Oracle bets on agentic apps in Fusion suite to ‘fully’ automate business processes
Oracle is recasting its Fusion Cloud Applications suite as something that not just flags insights for humans to act on. The debut of Fusion Agentic Applications, an upgraded set of applications that embeds AI agents directly into transactional business workflows, is designed to make decisions without human intervention. Where its earlier generative AI-based copilots and […]
防衛産業はなぜイノベーションの“エンジン”になり得るのか
防衛需要が持つ“特殊な市場設計” 防衛産業を語るとき、しばしば「軍事だから特殊だ」という印象だけが先行する。しかしイノベーションの観点から重要なのは、軍事というラベルではなく、市場としての設計が他の産業と決定的に異なる点にある。防衛の調達は、多くの国で国家の安全保障を支える公共目的に基づき、単年度の売上や流行によって需要が激しく上下する一般消費財とは異なるリズムで動く。もちろん政治や国際情勢に左右される側面はあるが、少なくとも企業が短期的なブームに乗るだけで成果が出る世界ではない。 この「短期の収益競争だけで回らない」構造が、研究開発の意思決定に独特の余白を与える。民生市場では、投資家や株主の視線、競合との価格競争、顧客の嗜好変化によって、研究開発はしばしば「早く売れるもの」に引き寄せられる。対して防衛分野では、装備品の寿命が長く、開発から配備までに時間がかかり、運用期間も十年単位に及ぶことが多い。結果として、研究開発は単なる新機能追加ではなく、長期にわたって維持・改良・更新されるシステムとして設計される。 さらに、防衛調達には「安さ」だけでなく「確実性」「継続供給」「安全性」「相互運用性」といった、目に見えにくい価値が強く求められる。ここで重要なのは、これらの価値が単なる条件ではなく、技術開発の方向性そのものを規定することだ。たとえば、性能を最大化するだけなら実験室レベルの尖った技術で良い場合もある。しかし、防衛で求められるのは、過酷な環境で確実に動き、故障時の影響を最小化し、運用部隊が扱える形に落とし込まれた「実装された技術」である。つまり、防衛産業はイノベーションを“発明”ではなく“実用化”として推進する装置になりやすい。 この点を押さえると、防衛産業がイノベーションのエンジンたり得る理由が見えてくる。それは防衛が「技術の最高到達点」を競うだけの世界ではなく、「不確実性の高い状況で機能し続けること」を目的に、研究開発から運用までを一つの連続体として設計する世界だからだ。その連続体が、技術を磨き上げ、周辺領域を巻き込み、最終的に民生にも波及する力を持つ。 要求性能が研究開発を押し上げる イノベーションは、しばしば「困難な要求」によって生まれる。防衛分野の要求は、まさに困難の塊だ。高温・低温、振動、衝撃、塩害、砂塵、電磁環境、通信途絶、電源制約、重量制約、そして敵対的な妨害。こうした条件が同時に課される中で、一定以上の性能を保証しなければならない。民生でも厳しい要求はあるが、極限条件が重なり合う密度は防衛が突出している。 この“無理難題”が、研究開発を押し上げるメカニズムは単純で、既存技術の延長では達成できない目標が設定されるからだ。たとえば、通信が不安定な環境で情報共有を成立させるには、単に通信速度を上げるだけでは足りない。ネットワークが途切れる前提で、必要最小限のデータを優先順位づけして送り、途絶後もシステムが破綻しない設計が求められる。そこで、通信技術だけでなく、データ圧縮、分散処理、フォールバック設計、暗号と認証、ユーザーインターフェースまで含めた全体最適が必要になる。 要求性能が高いほど、技術の改良は“点”ではなく“面”になる。材料だけ、センサーだけ、ソフトウェアだけを良くしても目標に届かない。結果として、複数領域を横断した研究開発が誘発され、異なる専門性の接続点で新しいアイデアが生まれる。たとえば、軽量化という課題一つとっても、材料工学の改善に加え、構造設計の見直し、製造プロセスの革新、部品点数の削減、さらにはソフトウェア側での補正や制御による性能確保が連動する。こうした連動は、技術の“組み合わせ”を通じて新しい価値を生む典型であり、まさにイノベーションの起点になる。 しかも、防衛分野では性能要求が「理想」ではなく「生死に関わる現実」として扱われる。ここが大きい。民生では性能が多少不足しても、顧客が不満を抱く程度で済むケースがある。しかし防衛では、性能不足が任務の失敗や人的被害につながり得る。だからこそ要求は厳しく、検証も徹底される。その厳しさが、技術を“動けばよい”から“確実に動く”へと押し上げる。そして「確実に動く」ための知見は、医療機器、航空、エネルギー、インフラ、災害対応など、信頼性が価値になる領域に横展開しやすい。 長期投資と“技術成熟”の論理 防衛産業がイノベーションのエンジンになり得るもう一つの理由は、技術成熟に時間がかかることを前提に投資が組まれやすい点にある。新技術は、最初から完成形として現れない。研究室では動いても、現場では動かない。試作品では動いても、量産では品質が揃わない。単体では動いても、システムとしては不安定になる。こうした“成熟までの谷”を越えるには、繰り返しの試験と改良が必要であり、そこに時間も費用もかかる。 民生市場にも長期投資はあるが、競争環境が激しいほど、企業は短期の売上やシェアを優先しやすくなる。すると、成熟が遅い技術は途中で打ち切られたり、別用途に転用されたりする。防衛分野は、その一部を吸収できる構造を持ち得る。装備は長期運用が前提で、改良も継続的に行われるため、技術は“買って終わり”ではなく“育てる”対象になりやすい。 この「育てる」視点が、イノベーションを生む。なぜなら、育てる過程で見つかる課題や失敗が、次の技術につながるからだ。試験で初めて露呈する弱点、運用現場で初めて見える使いづらさ、整備段階で初めて発覚する交換性の問題。これらは研究室からは見えにくいが、現場に持ち込むことで可視化される。そして可視化された課題は、次の改善の具体的な目標になる。こうして技術は“現実に耐える形”へと鍛えられる。 長期投資のもう一つの側面は、基礎技術の蓄積である。防衛システムは複雑で、何か一つの部品を入れ替えるだけでも、全体の再検証が必要になることが多い。そのため、企業は基盤技術を自社内に蓄積し、設計変更の影響を理解し、システムの整合を取れる体制を維持しようとする。これは短期最適の外注では得にくい能力だ。基盤技術の厚みは、平時にはコストに見えるかもしれない。しかし、技術の転換点が来たとき、蓄積が一気に価値へ変わる。新しいセンサー、新しい材料、新しい通信方式が登場したとき、それを既存システムに統合し、運用に落とし込み、信頼性を保証する力は、蓄積からしか生まれない。 この意味で、防衛産業が生むイノベーションは「一発の発明」ではなく、「成熟と統合の積み上げ」によるものが多い。そして成熟と統合の積み上げは、医療・航空・宇宙・インフラなど、同じく長期運用と高信頼が求められる領域にそのまま転写される。 システム統合が生む新価値 防衛で価値を生む技術は、単体の性能だけでは語れない。むしろ重要なのは、複数の技術を束ね、目的に沿った形で機能させる「統合」である。現代の防衛システムは、センサーが状況を捉え、通信が情報を運び、指揮統制が意思決定を助け、プラットフォームが行動し、補給と整備が継続性を支える。その全体が連携して初めて価値が立ち上がる。 統合が難しいのは、要素ごとに最適化の方向が異なるからだ。センサーは感度を上げたいが、上げるほど誤検知やデータ量が増える。通信は帯域を増やしたいが、増やすほど秘匿や妨害対策が難しくなる。処理は高性能化したいが、電力や熱、重量の制約がある。人間の判断を支援したいが、情報を出しすぎると認知負荷が増える。こうしたトレードオフを、現実の運用を見据えて調整する過程で、新しい設計思想やアーキテクチャが生まれる。 統合の革新は、しばしば“見えない発明”として現れる。たとえば、データの優先度設計、冗長系の切り替えロジック、障害時の縮退運転のシナリオ、ソフトウェア更新の手順、ログの取り方、運用者の教育体系。こうした要素は、派手な新素材や新アルゴリズムほど注目されないが、システムの価値を決定づける。防衛分野は、この“見えない発明”に投資しやすい。なぜなら、システムの失敗が許されず、運用が長期に及び、外部環境が敵対的であるため、見えない部分の設計こそが生存条件になるからだ。 そしてこの“統合の知恵”は民生に移植されやすい。スマートシティ、交通管制、エネルギーマネジメント、工場の自動化、遠隔医療、災害対応。これらも複数の技術が絡み、システム全体の整合が価値になる。防衛の統合で鍛えられた能力は、こうした領域で「複雑さを扱う力」として競争優位に転化する。 高信頼・安全設計が民生の競争力になる 防衛産業がイノベーションのエンジンたり得ることを、最後に“品質と安全”の視点から整理したい。防衛分野は、性能が高いだけでは不十分で、信頼できることが必須になる。信頼とは、故障しにくいことだけではない。故障したときにどう振る舞うか、予兆をどう検知するか、回復にどれだけ時間がかかるか、誰が何をすれば復旧できるかまで含む。つまり「壊れない」ではなく「壊れ方を設計する」世界である。 この世界では、フェイルセーフ、冗長設計、監視と診断、変更管理、トレーサビリティといった概念が、机上の理想ではなく実務の中心になる。設計段階でのレビュー、試験段階での検証、運用段階でのフィードバックが連続し、改善が続く。ここで生まれるイノベーションは、製品の新機能ではなく、信頼を生むプロセスそのものだ。 民生側でも、社会の重要インフラがデジタル化し、AIが意思決定に関与し、サイバー攻撃が現実の脅威になるほど、「確実に動くこと」の価値は急速に上がっている。スマートフォンのアプリなら落ちても笑い話で済むが、病院のシステム、発電所の制御、交通網の最適化が落ちれば社会は止まる。こうした領域では、防衛で磨かれた高信頼設計が直接の競争力になる。しかも高信頼設計は、顧客の信頼だけでなく、規制対応や監査、保険、契約条件にも影響し、事業としての持続性を左右する。 防衛産業がイノベーションのエンジンになり得る理由は、ここに集約できる。防衛は、最先端技術を追うだけでなく、長期投資で技術を成熟させ、統合によって実装価値を生み、高信頼の設計思想を社会に持ち込む。その結果として、民生へ波及する技術と方法論が生まれる。防衛とイノベーションの関係を理解するとは、兵器の話をすることではない。極限の要求条件の中で、技術を「使える形」に鍛え上げる仕組みを理解することだ。そしてその仕組みは、これからの社会が直面する不確実性の時代において、産業全体にとっての学びになり得る。
Sólo el 11% de los bancos cuenta con sistemas verdaderamente fiables de IA y confía en ellos
IDC ha dado a conocer los resultados del estudio de SAS Data and AI Impact Report: The Trust Imperative, cuya principal conclusión es que la mayoría de las entidades bancarias está implementando la inteligencia artificial sin la supervisión y la infraestructura necesarias para ganarse esa confianza. Y eso a pesar de que los bancos han […]
50 Israeli companies ‘digitally erased’
On March 9, The Jerusalem Post reported that the Israel National Cyber Directorate had received a growing number of reports of cyberattacks aimed at destroying information and systems to disrupt the functioning of the home front economy. At that point, National Cyber Directorate Head Yossi Karadi said that no organization essential to the functioning of… […]
TeamPCP Backdoors LiteLLM Versions 1.82.7–1.82.8 via Trivy CI/CD Compromise
TeamPCP, the threat actor behind the recent compromises of Trivy and KICS, has now compromised a popular Python package named litellm, pushing two malicious versions containing a credential harvester, a Kubernetes lateral movement toolkit, and a persistent backdoor. Multiple security vendors, including Endor Labs and JFrog, revealed that litellm versions 1.82.7 and 1.82.8 were published […]
Family of UMMC patient speaks out after cyberattack during lifesaving surgery
WBAL reports: A Mississippi family is sharing their story for the first time after a cyberattack disrupted operations at a major hospital system in the middle of a lifesaving surgery. At the University of Mississippi Medical Center, patient Wade Watts was undergoing a liver transplant just as critical systems across the hospital began to fail…. […]
243,000 French Public School Employees Victims of Hack
La Revue Technique reports: A cyberattack on a French Education Ministry HR system has exposed personal information tied to roughly 243,000 public education employees, most of them teachers, raising fears of targeted scams and identity fraud. French officials say the breach hit a platform called Compas, used to manage student-teachers and other trainees in the… […]
Tax Search Ads Deliver ScreenConnect Malware Using Huawei Driver to Disable EDR
A large-scale malvertising campaign active since January 2026 has been observed targeting U.S.-based individuals searching for tax-related documents to serve rogue installers for ConnectWise ScreenConnect that drop a tool named HwAudKiller to blind security programs using the bring your own vulnerable driver (BYOVD) technique. “The campaign abuses Google Ads to serve rogue ScreenConnect (
5 Learnings from the First-Ever Gartner Market Guide for Guardian Agents
On February 25, 2026, Gartner published its inaugural Market Guide for Guardian Agents, marking an important milestone for this emerging category. For those unfamiliar with the various Gartner report types, “a Market Guide defines a market and explains what clients can expect it to do in the short term. With the focus on early, more […]
Hackers Use Fake Resumes to Steal Enterprise Credentials and Deploy Crypto Miner
An ongoing phishing campaign is targeting French-speaking corporate environments with fake resumes that lead to the deployment of cryptocurrency miners and information stealers. “The campaign uses highly obfuscated VBScript files disguised as resume/CV documents, delivered through phishing emails,” Securonix researchers Shikha Sangwan, Akshay Gaikwad, and Aaron Beardslee said in a report shared
Detecting IP KVMs, (Tue, Mar 24th)
I have written about how to use IP KVMs securely, and recently, researchers at Eclypsium published yet another report on IP KVM vulnerabilities. But there is another issue I haven’t mentioned yet with IP KVMs: rogue IP KVMs. IP KVMs are often used by criminals. For example, North Koreans used KVMs to connect remotely to laptops sent […]
DDoS-Angriffe haben sich verdoppelt
srcset=”https://b2b-contenthub.com/wp-content/uploads/2026/03/DDoS-Attack-COunt_16-9.png?quality=50&strip=all 2200w, https://b2b-contenthub.com/wp-content/uploads/2026/03/DDoS-Attack-COunt_16-9.png?resize=300%2C168&quality=50&strip=all 300w, https://b2b-contenthub.com/wp-content/uploads/2026/03/DDoS-Attack-COunt_16-9.png?resize=768%2C432&quality=50&strip=all 768w, https://b2b-contenthub.com/wp-content/uploads/2026/03/DDoS-Attack-COunt_16-9.png?resize=1024%2C576&quality=50&strip=all 1024w, https://b2b-contenthub.com/wp-content/uploads/2026/03/DDoS-Attack-COunt_16-9.png?resize=1536%2C864&quality=50&strip=all 1536w, https://b2b-contenthub.com/wp-content/uploads/2026/03/DDoS-Attack-COunt_16-9.png?resize=2048%2C1152&quality=50&strip=all 2048w, https://b2b-contenthub.com/wp-content/uploads/2026/03/DDoS-Attack-COunt_16-9.png?resize=1240%2C697&quality=50&strip=all 1240w, https://b2b-contenthub.com/wp-content/uploads/2026/03/DDoS-Attack-COunt_16-9.png?resize=150%2C84&quality=50&strip=all 150w, https://b2b-contenthub.com/wp-content/uploads/2026/03/DDoS-Attack-COunt_16-9.png?resize=854%2C480&quality=50&strip=all 854w, https://b2b-contenthub.com/wp-content/uploads/2026/03/DDoS-Attack-COunt_16-9.png?resize=640%2C360&quality=50&strip=all 640w, https://b2b-contenthub.com/wp-content/uploads/2026/03/DDoS-Attack-COunt_16-9.png?resize=444%2C250&quality=50&strip=all 444w” width=”1024″ height=”576″ sizes=”auto, (max-width: 1024px) 100vw, 1024px”>Die Menge der DDoS-Attacken hat sich laut Gcore 2025 in der zweiten Jahreshälfte verdoppelt. Gcore Radar Laut dem halbjährlich erscheinenden Radar-Report des luxemburgischen Softwareanbieters Gcore haben sich […]
HP launches TPM Guard to help defeat physical TPM attacks
The Trusted Platform Module (TPM), developed by the Trusted Computing Group (TCG), is a mandatory security component in any computer running Windows 11. It stores sensitive information such as encryption keys in a separate, secure chip, passing it to the CPU as required. However, there’s a problem. If an attacker can get physical access to […]
Foster City goes offline after cybersecurity breach
The Daily Journal reports: Days after a cybersecurity breach that was “widely impacting city services,” the city of Foster City has moved its network offline, an action that disrupted its phone and email systems outside of emergency response, according to the city. City staff cannot make or receive calls or respond to emails but will… […]
Ghost Campaign Uses 7 npm Packages to Steal Crypto Wallets and Credentials
Cybersecurity researchers have uncovered a new set of malicious npm packages that are designed to steal cryptocurrency wallets and sensitive data. The activity is being tracked by ReversingLabs as the Ghost campaign. The list of identified packages, all published by a user named mikilanjillo, is below – react-performance-suite react-state-optimizer-core react-fast-utilsa ai-fast-auto-trader
Grassroots DICOM (GDCM)
View CSAF Summary Successful exploitation of this vulnerability could allow an attacker to send a specially crafted file, and when parsed, could result in a denial-of-service condition. The following versions of Grassroots DICOM (GDCM) are affected: Grassroots DICOM (GDCM) 3.2.2 (CVE-2026-3650) CVSS Vendor Equipment Vulnerabilities v3 7.5 Grassroots Grassroots DICOM (GDCM) Missing Release of Memory […]
Schneider Electric EcoStruxure Foxboro DCS
View CSAF Summary Schneider Electric is aware of a vulnerability in its EcoStruxure Foxboro DCS Control Software on Foxboro DCS workstations and servers. Control Core Services and all runtime software, like FCPs, FDCs, and FBMs, are not affected. The EcoStruxure Foxboro DCS ([https://www.se.com/ww/en/product-range/63680-ecostruxure-foxboro-dcs/](https://www.se.com/ww/en/product-range/63680-ecostruxure-foxboro-dcs/)) product is an innovative family of fault-tolerant, highly available control components, which […]
Schneider Electric Plant iT/Brewmaxx
View CSAF Summary Successful exploitation of these vulnerabilities could risk privilege escalation, which could result in remote code execution. The following versions of Schneider Electric Plant iT/Brewmaxx are affected: Plant iT/Brewmaxx 9.60_and_above (CVE-2025-49844, CVE-2025-46817, CVE-2025-46818, CVE-2025-46819) CVSS Vendor Equipment Vulnerabilities v3 9.9 Schneider Electric Schneider Electric Plant iT/Brewmaxx Use After Free, Integer Overflow or Wraparound, […]
Pharos Controls Mosaic Show Controller
View CSAF Summary Successful exploitation of this vulnerability could allow an unauthenticated attacker to execute arbitrary commands with root privileges. The following versions of Pharos Controls Mosaic Show Controller are affected: Mosaic Show Controller Firmware 2.15.3 (CVE-2026-2417) CVSS Vendor Equipment Vulnerabilities v3 9.8 Pharos Controls Pharos Controls Mosaic Show Controller Missing Authentication for Critical Function […]
New ‘StoatWaffle’ malware auto‑executes attacks on developers
A newly disclosed malware strain dubbed “StoatWaffle” is giving fresh teeth to the notorious, developer-targeting “Contagious Interview” threat campaign. According to NTT Security findings, the malware marks an evolution from the long-running campaign’s user-triggered execution to a near-frictionless compromise embedded directly in developer workflows. Attackers are using blockchain-themed project repositories as decoys, embedding a malicious […]
QNAP Patches Four Vulnerabilities Exploited at Pwn2Own
The flaws could allow attackers to access sensitive information, execute code, or cause unexpected behavior. The post QNAP Patches Four Vulnerabilities Exploited at Pwn2Own appeared first on SecurityWeek.
Aqua’s Trivy Vulnerability Scanner Hit by Supply Chain Attack
Hackers published a malicious scanner release and replaced tags to point to information-stealer malware. The post Aqua’s Trivy Vulnerability Scanner Hit by Supply Chain Attack appeared first on SecurityWeek.
Chip Services Firm Trio-Tech Says Subsidiary Hit by Ransomware
The semiconductor company says hackers deployed file-encrypting ransomware on the network of a subsidiary in Singapore. The post Chip Services Firm Trio-Tech Says Subsidiary Hit by Ransomware appeared first on SecurityWeek.
M-Trends 2026: Initial Access Handoff Shrinks From Hours to 22 Seconds
The latest M-Trends report is based on insights from over 500,000 hours of Mandiant incident response investigations in 2025. The post M-Trends 2026: Initial Access Handoff Shrinks From Hours to 22 Seconds appeared first on SecurityWeek.
RSAC 2026 Conference Announcements Summary (Pre-Event)
A summary of the announcements made by vendors in the days leading up to the RSAC 2026 Conference. The post RSAC 2026 Conference Announcements Summary (Pre-Event) appeared first on SecurityWeek.
Stryker Says Malicious File Found During Probe Into Iran-Linked Attack
The FBI has published an alert describing the malware used by Iranian government hackers. The post Stryker Says Malicious File Found During Probe Into Iran-Linked Attack appeared first on SecurityWeek.
Mazda Says Employee, Partner Information Stolen in Cyberattack
The hackers stole internal IDs, names, email addresses, and business partner IDs from an internal management system. The post Mazda Says Employee, Partner Information Stolen in Cyberattack appeared first on SecurityWeek.
EDPB conference on cross-regulatory cooperation: what we learned
EDPB conference on cross-regulatory cooperation: what we learned icolonnm Tue, 24/03/2026 – 11:55 24 March 2026 EDPB Brussels, 23 March – On 17 March 2026, the EDPB conference “Cross-regulatory interplay and cooperation in the EU: a data protection perspective” took place in Brussels. The event showcased high-level discussions, featuring contributions from representatives of key EU […]
Citing HIPAA, Groups Oppose Renewed Federal Plan to Amass Millions of Workers’ Health Data
Theresa Defino of the Health Care Compliance Association reports: Calling the proposal “unprecedented in its scope and lack of specificity,” CVS Health—owner of Aetna—is among a chorus of firms and organizations opposing a renewed effort by the Office of Personnel Management (OPM) to establish what CVS termed a “wholesale collection of vast amounts of granular… […]
The Hidden Cost of Cybersecurity Specialization: Losing Foundational Skills
Cybersecurity has changed fast. Roles are more specialized, and tooling is more advanced. On paper, this should make organizations more secure. But in practice, many teams struggle with the same basic problems they faced years ago: unclear risk priorities, misaligned tooling decisions, and difficulty explaining security issues in terms the business understands. These challenges do not
Autonomous AI adoption is on the rise, but it’s risky
Two AI releases early this year are prompting users to give up control and let autonomous agentic tools complete tasks on their behalf. IT leaders should be ready to deal with the consequences. Anthropic rolled out its agentic platform Claude Cowork in January for macOs and February for Windows, and use of agentic tool OpenClaw […]
TeamPCP Hacks Checkmarx GitHub Actions Using Stolen CI Credentials
Two more GitHub Actions workflows have become the latest to be compromised by credential-stealing malware by a threat actor known as TeamPCP, the cloud-native cybercriminal operation also behind the Trivy supply chain attack. The workflows, both maintained by the supply chain security company Checkmarx, are listed below – checkmarx/ast-github-action checkmarx/kics-github-action Cloud security
Streamline physical security to enable data center growth in the era of AI
AI is the new space race for data centers, and consistency at speed is the rocket fuel that colocation and hyperscale providers need to reach orbit. Everything you already know about physical security still applies but it won’t matter unless you have the right plan and partnerships in place to scale without sacrificing quality. Growth […]
Why CISOs should embrace AI honeypots
The nightmare begins with our protagonist trying to find a way inside to get to the firm’s files, but every door is bolted shut. Then they spot a back entrance and they’re in, first walking, then running down one corridor, then another, and another, feeling that they’re getting ever closer to that file and a […]
U.S. Sentences Russian Hacker to 6.75 Years for Role in $9M Ransomware Damage
A 26-year-old Russian citizen has been sentenced in the U.S. to 6.75 years (81 months) in prison for his role in assisting major cybercrime groups, including the Yanluowang ransomware crew, in conducting numerous attacks against U.S. companies and other organizations. According to the U.S. Department of Justice (DoJ), Aleksei Olegovich Volkov facilitated dozens of ransomware […]
Citrix Urges Patching Critical NetScaler Flaw Allowing Unauthenticated Data Leaks
Citrix has released security updates to address two vulnerabilities in NetScaler ADC and NetScaler Gateway, including a critical flaw that could be exploited to leak sensitive data from the application. The vulnerabilities are listed below – CVE-2026-3055 (CVSS score: 9.3) – Insufficient input validation leading to memory overread CVE-2026-4368 (CVSS score: 7.7) – Race condition […]
ISO und ISMS: Darum gehen Security-Zertifizierungen schief
Mit einer ISO 27001-Zertifizierung weisen Unternehmen nach, dass sie ein wirksames Informationssicherheits-Managementsystems (ISMS) betreiben. Lesen Sie, weshalb der Zertifizierungsprozess häufig schief geht. Foto: mentalmind – shutterstock.com ISO-Zertifizierungen, aber auch die Einführung eines Informationssicherheits-Managementsystems (ISMS) nach IT-Grundschutz, werden von vielen Unternehmen als Beweis für ihre Qualität und ihren professionellen Ansatz bei der Durchführung ihrer Geschäftstätigkeit angesehen. […]
ISC Stormcast For Tuesday, March 24th, 2026 https://isc.sans.edu/podcastdetail/9862, (Tue, Mar 24th)
Post Content
Palo Alto updates security platform to discover AI agents
As CISOs worry about AI agent sprawl, Palo Alto Networks has announced an update to its Prisma AIRS security platform and enterprise browser to include the ability to discover AI agents, models, and connections across the entire IT environment, to scan agents for vulnerabilities, and to allow admins to simulate red team tests for agents. […]
Initial Access Broker sentenced to 81 months in prison for enabling Yanluowang ransomware gang
A press release from the U.S. Department of Justice about a Russian initial access broker who pleaded guilty in November, 2025: A court in the Southern District of Indiana today sentenced a Russian citizen, Aleksei Volkov, to 81 months in prison for assisting major cybercrime groups, including the Yanluowang ransomware group, in carrying out numerous… […]
Hackers increasingly target school districts
Nolan Keegan reports: Hackers are increasingly treating school districts like easy ATMs for personal data, and Bronx families are squarely in the crosshairs. A recent Turn To Tara segment on News 12 New York spotlighted a sharp jump in cyberattacks on schools and highlighted warnings from Check Point security analysts about exposed Social Security numbers,… […]
25-01584.pdf
25-01584.pdf Anonymous (not verified) Mon, 03/23/2026 – 18:30 Case ID 25-01584 Forum FINRA Document Type Award Claimants Adam Quarello Respondents Oppenheimer & Co., Inc. UBS Financial Services Inc. Neutrals Steven N. Ainbinder Steven H. Vogel Joseph J. Dougherty Hearing Site Los Angeles, CA Award Document 25-01584.pdf Documentum DocID bf44b6e6 Award Date Official Mon, 03/23/2026 – […]
25-01676.pdf
25-01676.pdf Anonymous (not verified) Mon, 03/23/2026 – 18:30 Case ID 25-01676 Forum FINRA Document Type Award Claimants Ramona Ivy Respondents Edward Jones Neutrals Leah Murray Albert Diane Ciccone Theresa Joan Rosenberg Hearing Site Los Angeles, CA Award Document 25-01676.pdf Documentum DocID c28ec509 Award Date Official Mon, 03/23/2026 – 12:00 Related Content Off Claimant Representatives Ryan […]
Securities Arbitration Clinic at St. John’s University School of Law Comment On Regulatory Notice 26-02
Securities Arbitration Clinic at St. John’s University School of Law Comment On Regulatory Notice 26-02 fnrw-backend Mon, 03/23/2026 – 17:09 Anonymous Elissa Germaine <germaine@stjohns.edu> Securities Arbitration Clinic at St. John’s University School of Law Regulatory Notice 26-02 Core Official Date Mon, 03/23/2026 – 12:00 Comment File St. John’s Comment RN 26-02.pdf
Bob Hansohn Comment On Regulatory Notice 26-06
Bob Hansohn Comment On Regulatory Notice 26-06 fnrw-backend Mon, 03/23/2026 – 16:56 Bob Hansohn Robert Hansohn <robert.hansohn@gmail.com> Regulatory Notice 26-06 Core Official Date Mon, 03/23/2026 – 12:00 Comment File Bob Hansohn_Suggestions to Modernize and Streamline the Arbitration Process.pdf
Tool updates: lots of security and logic fixes, (Mon, Mar 23rd)
So, I’ve been slow to get on the Claude Code/OpenCode/Codex/OpenClaw bandwagon, but I had some time last week so I asked Claude to review (/security-review) some of my python scripts. He found more than I’d like to admit, so I checked in a bunch of updates. In reviewing his suggestions, he was right, I made […]
AIが雇用に与える衝撃は、まだ始まったばかりだ
大量解雇より「仕事の再設計」が先に来る 米国の決済・フィンテック企業Blockが「AIが業務を代替した」としてエンジニアを中心に数千人規模のレイオフを実施したことは、記憶に新しい。同様の動きは他の企業にも広がっており、AI導入を理由とした人員削減が注目を集めている。しかしGartnerは、AIによる生産性向上を理由とした大規模な人員削減の傾向は見られないと指摘する。2025年に追跡した140万件のレイオフのうち、AIの生産性向上に起因するものは1%未満だったという。 GartnerのAI戦略チームのアナリスト、Nate Suda氏はこう言う。「AIは仕事を削減しているというより、仕事を変えている意味合いが強い。近い将来起きるのは大量解雇ではない。仕事の再設計、採用の抑制、役割の統合だ」。 最もリスクにさらされているのは、ワークフロー中心の職種だ。サービスデスク、ビジネスアナリスト、プロジェクトマネージャーなどが該当する。「チケット、ドキュメント、ステータステンプレートといった成果物を生み出す定型業務は、自動化が進むだろう。人員は圧縮され、人間の役割はナレッジの整理、例外処理、ワークフロー設計、そして特に部門横断的な業務へとシフトする」とSuda氏は言う。 採用抑制と役割統合が静かに進む 約1000人の米国ビジネスリーダーを対象にしたResume.orgの調査でも、採用抑制の傾向が確認されている。AIを理由にエントリーレベルの採用を停止した企業はすでに21%に上り、2027年までに半数が停止すると回答。2026年末までにエントリーレベルのポジションが廃止されると予想する企業も3社に1社に達した。 AIと直接関係のないレイオフも存在する。Oracleが数千人規模のレイオフを計画しているとされるが、これはAI関連データセンターへの投資のためだ。大手テック企業は「既存事業の縮小と、AIが生む新市場への転換」を進めているとSuda氏は言う。 ただし大手テック以外の企業には注意を促す。「大手テックの動きは、他業界の企業が参考にすべきシグナルではない。AI関連のハードウェアやソフトウェア、サービスを扱っていない企業——たとえば運送会社——が同じことをしても意味がない」とSuda氏。 AIは仕事を奪うのではなく、変える 多くのITプロフェッショナル、特にシニア層は、AIが単純作業を引き受けることで仕事の範囲が広がり、より部門横断的な役割を担うようになるとSuda氏は予測する。例えば、シニアソフトウェアエンジニアなら、ビジネスアナリストやプロダクトマネージャーの領域にまで仕事を広げられるようになる。 「これまで時間を理由にできなかったことでも、できるようになる。コアコンピテンシーが高いからこそ、AIを使ってその能力を他の領域に広げられる。これが『役割の統合』の本質だ」とSuda氏は言う。 一方、若手ITワーカーに対しては、AIを積極的に活用して、これまでより速くスキルを伸ばすことを勧める。Gartnerは今後起こりうるAI時代の働き方として、以下の4つのシナリオを想定している。 ①少人数の人間がAIを補完しながら働く②多くの人間がAIを使ってより質の高い仕事をする③革新的な働き手がAIと協働して知の最前線を切り開く④ほぼAIだけで組織が機能する 一つの組織の中でも、事業部門によって当てはまるシナリオは異なる。すべてのシナリオが同時に存在することも珍しくないとSuda氏は言う。 CIOへのメッセージとして、次のように伝える。「AI戦略の成否は、人事部門との連携にかかっている」。さらに、AIがITの職種ごとに与える影響は大きく異なるため、サービスデスク、コーディング、プロジェクトマネジメントをそれぞれ別々に考えた人員計画が必要だと強調する。 ITリーダーたちの見方 Gartnerの予測に共感するITリーダーは多い。 HRプラットフォームプロバイダーClick BoardingのCTO、Adam Wachtel氏は、ジュニアエンジニア、エントリーレベルのQAテスター、ネットワーク管理者など若手IT職種が近い将来AIの影響を受けると見る。 「これらの仕事がなくなるとは思わないが、統合は進む。エージェンティックAIのフレームワークを活用して定型業務を自動化し、ナレッジ移転を促進し、時間外サポートを補助することで、少ない人数でより多くをこなせるようになる。ただし当面は、人間の介入と監視は依然として必要だ」とWachtel氏は言う。 データプラットフォームDomoのチーフデザインオフィサー兼フューチャリスト、Chris Willis氏はこう言う。「大きな組織は、人々を自分のレーンに留めるように設計されている。AIはそのレーンを気にしない」。 Willis氏は、AIがデータ準備、ダッシュボードのメンテナンス、チケット対応といった定型業務を引き受けることで、ITはより高付加価値な戦略的責任——AIシステムのガバナンス、ビジネスロジックの定義、データ品質の確保、モデルリスクの管理——へとシフトすると予測する。 「AIはITを置き換えるのではなく、ITの摩擦を取り除く。役割のシフトが起きている」とWillis氏。CIOはチームのAIリテラシーに投資し、乱立するAIツールを統合・ガバナンスされたプラットフォームに集約し、重要なプロセスにおける人間の関与の範囲を明確に定めるべきだと助言する。 「大きな技術的変革に対する正しい対応は、『人員削減』ではなく『ケイパビリティの再設計』だ。当面は、システムを構築し、ガバナンスし、導く人材がむしろ増えて必要になるだろう」とWillis氏は述べた。
자율형 AI 도입 확산…효율성 기대 만큼 리스크도 커져
연초 등장한 두 건의 AI 출시가 사용자의 통제권 일부를 AI에 넘기고, 자율형 에이전틱 도구가 대신 업무를 수행하도록 하는 트렌드를 자극하고 있다. 이에 따라 IT 리더가 그에 따른 파장을 본격적으로 대비해야 할 시점이라는 분석이 나온다. AI 기업 앤트로픽(Anthropic)은 1월 맥OS용, 2월 윈도우용 에이전틱 플랫폼 ‘클로드 코워크(Claude Cowork)’를 출시했다. 오픈소스 프로젝트 ‘오픈클로(OpenClaw)’도 2025년 말 공개한 뒤, 올해 […]
Where your data team sits matters more than the code they write
From what I’ve seen, the magic of data engineering isn’t just in the pipelines — it’s in aligning incentives across the company. When I first came across Monte Carlo Data’s blog post, “5 proven best practices for measuring data team ROI,” it gave me a hands-on framework I could actually apply. The approach helped me […]
AGI skepticism: Tellers vs. toll booth workers
Artificial general intelligence (AGI) is a hot topic lately, and here’s what it assumes: When machines can do a job, humans get replaced. It’s intuitive. It’s obvious. And for a great many jobs, it’s completely wrong. If you’re a leader in an organization establishing success criteria for AI projects, the real question isn’t whether AI […]
The operational tempo driving private equity CIOs
Private equity has long held a certain appeal for enterprise CIOs. For technology leaders operating inside large organizations, the prospect of clearer alignment to enterprise value, outsized equity upside, and a defined liquidity horizon can be compelling. For those in transition, it can represent a more concentrated chapter of impact. The hesitation is rarely about […]
10 things keeping IT leaders up at night
There’s a lot for CIOs to stress about these days — from longstanding concerns about uptime and availability to the quantum revolution on the horizon. Of course, there are plenty of other issues worrying CIOs here and now, too. “Where do I even begin?” asks Dan Inbar, senior vice president and CIO at Symbotic, which […]
미스트랄, 기업 맞춤형 AI 모델 구축 플랫폼 ‘포지’ 공개…자체 데이터 학습 지원
미스트랄은 기업이 자체 데이터를 기반으로 AI 모델을 학습하고 조정할 수 있도록 지원하는 신규 플랫폼 ‘포지(Forge)’를 선보였다. 범용 AI 시스템의 한계를 넘어, 기업 환경에 특화된 모델 구축을 지원하겠다는 전략이다. 현재 대부분의 AI 시스템은 공개 인터넷 데이터를 활용해 개발되며, 다양한 일반 업무를 수행하도록 설계돼 있다. 그러나 기업은 고유 프로세스, 규제 요건, 맞춤형 소프트웨어 환경, 조직에 축적된 경험 […]
The end of cloud-first: What compute everywhere actually looks like
In 2016, I was working on software for field area network gateways — routers installed in substations and roadside utility cabinets and expected to run unattended for years. Each gateway sat at the root of a low-power wireless mesh connecting thousands of smart meters. The radios were slow, the links were lossy and the backhaul […]
初心者でもわかる量子アルゴリズム超入門 速くならないものある?
「アルゴリズムが速い」とはどういう意味か 量子コンピューターの話題で最も誤解が生まれやすいのが「量子は速い」という言い方です。速いかどうかは、機械の性能だけでなく、問題の解き方であるアルゴリズムが大きく左右します。しかも「速い」の意味は、単に処理時間が短いというだけではありません。入力が大きくなったときに、必要な計算量がどう増えるか、つまり伸び方が違うことが重要になります。古典コンピューターでも、賢いアルゴリズムを使うと劇的に速くなる例がたくさんあります。同じ問題でも、やり方次第で現実的に解けたり、到底無理になったりします。量子アルゴリズムが注目されるのは、ある種の問題で「伸び方そのもの」を変えられる可能性があるからです。ただし、量子アルゴリズムが理論上速いとしても、実機でその恩恵を得るには条件があります。量子ビットの誤りが十分に小さいこと、計算途中の状態を長く保てること、そしてエラー訂正を含めて実行できる規模が必要です。つまり、アルゴリズムの“理論上の優位”と、現場で役に立つ“実用上の優位”の間には距離があり、ここを分けて理解することが、量子の情報に振り回されないコツになります。 ショアのアルゴリズムと暗号への影響 量子アルゴリズムでもっとも有名なのが、ショアのアルゴリズムです。これは大きな整数の素因数分解や、離散対数問題を効率よく解く手法として知られています。ここがなぜ重要かというと、現在広く使われている公開鍵暗号の一部は、素因数分解や離散対数が古典計算では難しいことを安全性の根拠にしているからです。ショアのアルゴリズムが与えるインパクトは、「量子が速い」よりも具体的です。安全性の前提が変わる可能性があり、しかも移行には時間がかかるため、技術の進歩を待ってから考えるのでは遅いケースがある、という点が産業的に大きいのです。一方で、初心者が注意したいのは「明日すぐ暗号が終わる」という話ではないことです。ショアのアルゴリズムで現実に脅威となるには、十分な規模の誤り訂正付き量子計算が必要になります。現在の量子機は研究・検証の段階にあり、実務で使われる鍵サイズを一気に解くところまで到達しているわけではありません。だからこそ現実的には、暗号の移行計画を立て、更新のタイミングで耐量子暗号へ置き換えていく、といった備えが中心になります。ショアは、量子の価値が「計算を速くする」だけでなく「社会の仕組みを更新させる圧力になる」例だと捉えると、位置づけが理解しやすくなります。 グローバーのアルゴリズムは万能検索ではない もう一つ有名なのが、グローバーのアルゴリズムです。よく「探索を高速化する」と言われますが、ここにも誤解が入り込みます。グローバーが速くするのは、整列されていない候補の中から目的のものを探すタイプの探索で、探索回数を大幅に減らせるのが特徴です。ただし、ここでの高速化は「指数的に速くなる」タイプではなく、探索回数がある種の形で減る、という性質です。言い換えると、劇的に世界を変えるというより、探索を含む多くの処理を少しずつ押し上げる可能性がある、という立ち位置に近いです。さらに重要なのは、探索の対象を量子的に呼び出す仕組みが必要になる点です。現実のシステムでは、データはメモリやストレージにあり、そこから必要な情報を取り出して判定します。量子アルゴリズムの世界では、その取り出しを「量子的に扱える」前提で議論されることがあり、ここが実装上の難しさになります。だからグローバーは、量子が“何でも検索して瞬時に答える”というイメージを支える道具ではありません。むしろ、量子の得意分野が「構造を持つ問題に対して、干渉を使って確率を偏らせる」ことにあると理解するための教材です。適用できる場面では効くが、データアクセスや問題設定がネックになる場面もある、と冷静に捉えるのが正しい距離感です。 量子アニーリングとゲート方式は別物として理解する 量子の文脈では「量子アニーリング」という言葉もよく登場します。ここで初心者が混乱しやすいのは、量子アニーリングを量子コンピューター全体と同一視してしまうことです。量子アニーリングは、主に最適化問題を解くための計算モデルで、ある形式に問題を落とし込んで、エネルギーが低い状態、つまり良い解に落ち着くように振る舞いを設計します。一方、ショアやグローバーが動く世界は、ゲート方式と呼ばれる汎用の量子回路モデルです。ゲート方式は、量子ビットに対する操作を順番に組み合わせて計算を組み立てます。理論上の表現力は非常に高い反面、誤り訂正を含めた本格的な実用には高いハードルがあります。量子アニーリングの魅力は、最適化に焦点が当たっている分、問題設定が合えば試しやすいことです。ただし、扱える問題の形式が限られ、万能ではありません。また、量子効果がどこまで性能に寄与しているかを評価するのが難しい場合もあります。ここで大切なのは、どちらが優れているかを一言で決めることではなく、用途と時間軸で考えることです。現時点で企業が触れやすいのは、最適化に寄ったアニーリング的アプローチや、ノイズを前提にしたゲート方式のハイブリッド手法かもしれません。一方で、暗号や本格的な量子シミュレーションのように、ゲート方式のスケールが効いてくる未来を見据えた研究開発も進みます。両者は競合というより、性格の違う道具箱だと捉えると整理できます。 NISQ向け手法の狙い VQEとQAOAがやろうとしていること 現在の量子機はノイズが避けられないため、理論上の美しいアルゴリズムをそのまま走らせるのが難しい場面が多くあります。そこで登場するのが、ノイズを前提に「量子でできる範囲を使い、古典で補って価値を引き出す」NISQ向けの手法です。代表例としてよく名前が挙がるのがVQEとQAOAです。VQEは、量子状態をうまく作って評価し、その評価結果を古典コンピューター側で使いながら、より良い状態に調整していく枠組みです。狙いは、分子や材料などの性質に関係する量を推定することにあります。量子の表現力を使って候補となる状態を作り、古典の最適化でパラメータを更新し、再び量子で評価する、という往復が基本になります。量子が全部を解くのではなく、量子が“評価に強い部分”を担う設計思想だと理解すると腑に落ちます。QAOAは、最適化問題に向けたアプローチで、量子回路の形をある程度固定し、パラメータを調整して良い解が出る確率を上げます。こちらも古典との往復でパラメータを学習します。理屈としては最適化に強い未来像につながりますが、現時点では問題のサイズ、ノイズ、回路の深さ、評価のコストなど、実務に直結する壁が多く残っています。これらの手法を初心者がどう捉えるべきかというと、「量子の黎明期における試行錯誤の中心」と見るのが近いです。今すぐ決定的な置き換えが起きるというより、どの問題設定で、どんな評価指標で、古典に対して優位が生まれるのかを探している段階です。つまり、NISQ向け手法は、量子の産業応用を現実へ近づけるための橋のような存在です。 結局、どの問題が“量子向き”なのか 量子向きかどうかを考えるとき、初心者が最初に持つべき問いは「この問題の難しさはどこから来ているのか」です。候補の数が膨大で組み合わせ爆発しているのか、自然現象の量子的な相互作用を正確に扱う必要があるのか、それともデータ量やモデルの複雑さが支配的なのか。この見立てによって、量子が入り込む余地は変わります。次に重要なのは、問題を“量子が扱える形”に落とし込めるかです。最適化なら、目的関数と制約を適切な形に定式化し、近似しても価値が保てるかを見極めます。シミュレーションなら、求める精度と計算資源のバランスを取り、どの量を推定できれば研究開発の判断が改善するかを決めます。量子は万能計算機ではなく、特定の形式に落とせたときに初めて強みが出やすい道具です。そして最後に、実用の視点では「評価ができるか」が決定的になります。量子の結果が良かったと言うには、古典手法との比較、再現性、運用上のコスト、意思決定への影響を測る必要があります。ここが曖昧だと、量子を使ったこと自体が目的になり、産業インパクトにつながりません。量子向きの問題は、技術的に面白いだけでなく、評価軸がビジネスの言葉に翻訳できる問題でもあります。 まとめ 有名アルゴリズムは「期待値の置き方」を教えてくれる ショアは暗号という社会基盤に影響し得る具体例であり、グローバーは探索の加速がどこまで現実に効くかを考える題材です。量子アニーリングとゲート方式の違いは、量子が一枚岩ではないことを示し、VQEやQAOAはノイズのある現実で価値を取りにいく設計思想を教えてくれます。量子アルゴリズムを学ぶ最大のメリットは、派手な言葉に踊らされずに「どの条件で、何が、どれくらい変わり得るのか」を見極める目が育つことです。次の記事では、その目を企業の意思決定に接続し、量子時代にどう備えるかをロードマップとして整理します。
Agotamiento silencioso de los trabajadores, ¿la nueva lacra de la IA?
La inteligencia artificial ha tenido una rápida adopción en el sector empresarial, impulsada por sus versiones generativa y agentiva. Según datos del uso de TIC en empresas del Instituto Nacional de Estadística, un 21,1% de firmas de más de 10 trabajadores utilizaba IA en el primer trimestre de 2025, un dato que estaba cerca de […]
North Korean Hackers Abuse VS Code Auto-Run Tasks to Deploy StoatWaffle Malware
The North Korean threat actors behind the Contagious Interview campaign, also tracked as WaterPlum, have been attributed to a malware family tracked as StoatWaffle that’s distributed via malicious Microsoft Visual Studio Code (VS Code) projects. The use of VS Code “tasks.json” to distribute malware is a relatively new tactic adopted by the threat actor since […]
25-01127.pdf
25-01127.pdf Anonymous (not verified) Mon, 03/23/2026 – 12:45 Case ID 25-01127 Forum FINRA Document Type Award Claimants Frank Tenteromano Respondents J.P. Morgan Securities, LLC Neutrals Stephany Adriene Watson Catherine Esther Bocskor Peter M. Cosel Hearing Site New York, NY Award Document 25-01127.pdf Documentum DocID c3749981 Award Date Official Fri, 03/20/2026 – 12:00 Related Content Off […]
‘CanisterWorm’ Springs Wiper Attack Targeting Iran
A financially motivated data theft and extortion group is attempting to inject itself into the Iran war, unleashing a worm that spreads through poorly secured cloud services and wipes data on infected systems that use Iran’s time zone or have Farsi set as the default language. Experts say the wiper campaign against Iran materialized this […]
Faster attacks and ‘recovery denial’ ransomware reshape threat landscape
Mandiant’s M-Trends 2026 report, released today at the RSA Conference, shows that attackers are moving faster, operating more collaboratively, and increasingly focusing on the systems organizations rely on to recover from breaches. The report, based on more than 500,000 hours of incident response engagements in 2025, finds that attackers are compressing key phases of the […]
Opinion 8/2026 on the draft decision of the Dutch Supervisory Authority regarding the Controller Binding Corporate Rules of the IBM Group
Opinion 8/2026 on the draft decision of the Dutch Supervisory Authority regarding the Controller Binding Corporate Rules of the IBM Group icolonnm Mon, 23/03/2026 – 16:37 10 March 2026 Opinion 8/2026 182.6KB English Download Members: Netherlands Topics: Binding Corporate Rules International Transfers of Data
Opinion 7/2026 on the draft decision of the Dutch Supervisory Authority regarding the Controller Binding Corporate Rules of the BCD Travel Group
Opinion 7/2026 on the draft decision of the Dutch Supervisory Authority regarding the Controller Binding Corporate Rules of the BCD Travel Group icolonnm Mon, 23/03/2026 – 16:33 10 March 2026 Opinion 7/2026 181.9KB English Download Members: Netherlands Topics: Binding Corporate Rules International Transfers of Data
High-Level Debate: From Omnibus to Opportunity, European Data Protection Supervisor (EDPS), the German Federal Commissioner for Data Protection and Freedom of Information (BfDI)
High-Level Debate: From Omnibus to Opportunity, European Data Protection Supervisor (EDPS), the German Federal Commissioner for Data Protection and Freedom of Information (BfDI) icolonnm Mon, 23/03/2026 – 15:41 8 June 2026 Brussels
Nordic meeting
Nordic meeting icolonnm Mon, 23/03/2026 – 15:35 21 May 2026 Participation in conferenceStockholm
Computers, Privacy and Data Protection - CPDP Brussels
Computers, Privacy and Data Protection – CPDP Brussels icolonnm Mon, 23/03/2026 – 15:33 19 May 2026 Participation in conferenceBrussels
Privacy Symposium
Privacy Symposium icolonnm Mon, 23/03/2026 – 15:30 20 April 2026 Participation in conference, Deputy Chair, Zdravko VukićVenice
Committee on Civil Liberties, Justice and Home Affairs (LIBE) meeting
Committee on Civil Liberties, Justice and Home Affairs (LIBE) meeting icolonnm Mon, 23/03/2026 – 15:28 8 April 2026 Presentation of the EDPB annual reportBrussels
IAPP Global Summit 2026: Privacy, AI governance, Cybersecurity law
IAPP Global Summit 2026: Privacy, AI governance, Cybersecurity law icolonnm Mon, 23/03/2026 – 15:24 30 March 2026 Participation in conferenceWashington DC
Stakeholder event on political advertising, EDPB
Stakeholder event on political advertising, EDPB icolonnm Mon, 23/03/2026 – 15:22 27 March 2026 Opening remarksOnline
Cross- regulatory interplay and cooperation in the EU: a data protection perspective, EDPB Conference
Cross- regulatory interplay and cooperation in the EU: a data protection perspective, EDPB Conference icolonnm Mon, 23/03/2026 – 15:20 17 March 2026 Brussels and online
If threat actors gave you a chance to redact the patient data they hacked before they leak it, would you take them up on the offer? Read about the Woundtech incident.
On January 2, while many were still greeting each other with “Happy New Year,” Wound Technology Network (“Woundtech”), a Florida-headquartered mobile wound treatment provider, was not off to a great start for the year. On or about December 6, 2025, they had become aware of unusual activity in their network. An investigation confirmed that unauthorized… […]
3.7 Million Telehealth Patients Allegedly Affected By Two Recent Breaches
He hasn’t attracted much attention or media coverage yet, and he doesn’t have any leak site or Telegram account. However, those reporting breaches involving patient data should note a threat actor known as “Stuckin2019” (or simply “Stuck”). Two of his recent attacks allegedly affected telehealth entities and 3.7 million patients. OpenLoop Health On January 7,… […]
GitHub is starting to have a real malware problem
Catalin Cimpanu reports: GitHub is slowly becoming a very dangerous website as more and more threat actors are starting to use it to host and distribute malware disguised as legitimate software repositories. What started as an infrequent sighting in early 2024 is now at the center of an increasing number of infosec and malware reports. The tactic… […]
Hackers target schools, towns in alarming attacks. Why aren’t more using New Jersey’s MS-ISAC ybersecurity service?
If you’re asking, “What MS-ISAC service?”, you’re not alone. Brianna Kudisch reports: A nationwide data breach exposing millions of K-12 students’ information, including kids in Cranford and Millburn. […] In November 2025, New Jersey signed on as a statewide member of the Multi-State Information Sharing and Analysis Center. It pays $795,000 for its annual membership, according to… […]
AU: Fairfield Council obtains injunction against unknown threat actors in ransomware incident
Anthony Segaert reports: A western Sydney council is communicating with anonymous hackers by sending Dropbox links into a chatroom, after it suffered a major data breach. In October last year, Fairfield Council’s servers – which contained personal, financial and property information about councillors, ratepayers, residents and staff – were illegally accessed by hackers, who are… […]
⚡ Weekly Recap: CI/CD Backdoor, FBI Buys Location Data, WhatsApp Ditches Numbers & More
Another week, another reminder that the internet is still a mess. Systems people thought were secure are being broken in simple ways, showing many still ignore basic advisories. This edition covers a mix of issues: supply chain attacks hitting CI/CD setups, long-abused IoT devices being shut down, and exploits moving quickly from disclosure to real […]
We Found Eight Attack Vectors Inside AWS Bedrock. Here's What Attackers Can Do with Them
AWS Bedrock is Amazon’s platform for building AI-powered applications. It gives developers access to foundation models and the tools to connect those models directly to enterprise data and systems. That connectivity is what makes it powerful – but it’s also what makes Bedrock a target. When an AI agent can query your Salesforce instance, trigger […]
Chrome ABE bypass discovered: New VoidStealer malware steals passwords and cookies
A new infostealer is bypassing Chrome’s Application-Bound Encryption (ABE), using a debugger-based technique researchers say hasn’t been seen in the wild before. Called “VoidStealer,” the stealer seems to have found a way around ABE, introduced in Chrome 127 in 2024, a security control aimed at locking sensitive browser data like passwords and cookies behind tighter […]
Oracle Releases Emergency Patch for Critical Identity Manager Vulnerability
CVE-2026-21992 can be used without authentication for remote code execution and it may have been exploited in the wild. The post Oracle Releases Emergency Patch for Critical Identity Manager Vulnerability appeared first on SecurityWeek.
Tycoon 2FA Fully Operational Despite Law Enforcement Takedown
Attack volumes are back to pre-disruption levels, and the adversary tactics have remained unchanged. The post Tycoon 2FA Fully Operational Despite Law Enforcement Takedown appeared first on SecurityWeek.
Microsoft Warns IRS Phishing Hits 29,000 Users, Deploys RMM Malware
Microsoft has warned of fresh campaigns that are capitalizing on the upcoming tax season in the U.S. to harvest credentials and deliver malware. The email campaigns take advantage of the urgency and time-sensitive nature of emails to send phishing messages masquerading as refund notices, payroll forms, filing reminders, and requests from tax professionals to deceive […]
Behavioral XDR and threat intel nab North Korean fake IT worker within 10 days of hire
The North Korea fake IT worker scheme has become a pernicious threat across several industries. While best practices emphasize precautions throughout the hiring phase, once onboarded such operatives can be challenging to detect. Combinations of behavioral analytics, threat intelligence, and other points of information are taking shape as essential defenses, as a recent case attests. […]
Why US companies must be ready for quantum by 2030: A practical roadmap
Last year, I asked a room of infrastructure, identity and application leaders a simple question: “Where in our environment do we rely on RSA or elliptic curve cryptography?” The first answers were the usual suspects: TLS on the edge, our VPN and the certificates on laptops. Then we pulled up a dependency map and the […]
Trivy Hack Spreads Infostealer via Docker, Triggers Worm and Kubernetes Wiper
Cybersecurity researchers have uncovered malicious artifacts distributed via Docker Hub following the Trivy supply chain attack, highlighting the widening blast radius across developer environments. The last known clean release of Trivy on Docker Hub is 0.69.3. The malicious versions 0.69.4, 0.69.5, and 0.69.6 have since been removed from the container image library. “New image tags […]
The insider threat rises again
Insider threats are coming back in a consequential way. According to the State of Human Risk Report from Mimecast, 42% of organizations have experienced an increase in malicious insider incidents over the past year, with 42% also reporting a rise in negligent incidents for the first time. The report further found that organizations experienced an […]
Hackers Exploit CVE-2025-32975 (CVSS 10.0) to Hijack Unpatched Quest KACE SMA Systems
Threat actors are suspected to be exploiting a maximum-severity security flaw impacting Quest KACE Systems Management Appliance (SMA), according to Arctic Wolf. The cybersecurity company said it observed malicious activity starting the week of March 9, 2026, in customer environments that’s consistent with the exploitation of CVE-2025-32975 on unpatched SMA systems exposed to the internet. […]
ISC Stormcast For Monday, March 23rd, 2026 https://isc.sans.edu/podcastdetail/9860, (Mon, Mar 23rd)
Post Content
Are nations ready to be the cybersecurity insurers of last resort?
A senior member of the Cyber Monitoring Center (CMC), an organization formed last year to monitor, define and classify cyber events impacting UK organizations, this week questioned whether a £1.5 billion (about $2 billion) government loan guarantee provided to Jaguar Land Rover (JLR) should have happened in the first place. Speaking at an event hosted […]
CIO 100 Leadership Live Atlanta: AI spending enters a reckoning phase
After two years of heavy investment in artificial intelligence, corporate technology budgets are hitting a moment of truth, with executives facing mounting pressure to show that early AI commitments are generating measurable returns rather than accumulating as sunk costs. That market reality framed nearly every conversation at the CIO 100 Leadership Live conference held March […]
FBI Warns Russian Hackers Target Signal, WhatsApp in Mass Phishing Attacks
Threat actors affiliated with Russian Intelligence Services are conducting phishing campaigns to compromise commercial messaging applications (CMAs) like WhatsApp and Signal to seize control of accounts belonging to individuals with high intelligence value, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) and Federal Bureau of Investigation (FBI) said Friday. “The campaign
Navia Data Breach Impacts 2.7 Million
Between late December 2025 and mid-January 2026, hackers stole personal and health plan information from Navia’s environment. The post Navia Data Breach Impacts 2.7 Million appeared first on SecurityWeek.
Cape Raises $100 Million for Protection Against Cellular Security Threats
Cape offers a privacy-focused mobile virtual network operator (MVNO) service for consumers, enterprises, and governments. The post Cape Raises $100 Million for Protection Against Cellular Security Threats appeared first on SecurityWeek.
US Confirms Handala Link to Iran Government Amid Takedown of Hackers’ Sites
The US has seized several domains used by Handala in cyber-enabled psychological operations. The post US Confirms Handala Link to Iran Government Amid Takedown of Hackers’ Sites appeared first on SecurityWeek.
Eclypsium Raises $25 Million for Device Supply Chain Security
The company will use the investment to expand its platform’s capabilities and grow channel partnerships. The post Eclypsium Raises $25 Million for Device Supply Chain Security appeared first on SecurityWeek.
3 Men Charged With Conspiring to Smuggle US Artificial Intelligence to China
The men violated U.S. export controls laws by scheming to divert massive quantities of the high-performance servers assembled in the United States to China. The post 3 Men Charged With Conspiring to Smuggle US Artificial Intelligence to China appeared first on SecurityWeek.
In Other News: New Android Safeguards, Operation Alice, UK Toughens Cyber Reporting
Other noteworthy stories that might have slipped under the radar: vulnerabilities found in KVM devices, Claudy Day Claude vulnerabilities, The Gentlemen ransomware group. The post In Other News: New Android Safeguards, Operation Alice, UK Toughens Cyber Reporting appeared first on SecurityWeek.
Critical Quest KACE Vulnerability Potentially Exploited in Attacks
The vulnerability is tracked as CVE-2025-32975 and it may have been exploited in attacks against the education sector. The post Critical Quest KACE Vulnerability Potentially Exploited in Attacks appeared first on SecurityWeek.
Oracle Patches Critical CVE-2026-21992 Enabling Unauthenticated RCE in Identity Manager
Oracle has released security updates to address a critical security flaw impacting Identity Manager and Web Services Manager that could be exploited to achieve remote code execution. The vulnerability, tracked as CVE-2026-21992, carries a CVSS score of 9.8 out of a maximum of 10.0. “This vulnerability is remotely exploitable without authentication,” Oracle said in an […]
CISA Flags Apple, Craft CMS, Laravel Bugs in KEV, Orders Patching by April 3, 2026
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added five security flaws impacting Apple, Craft CMS, and Laravel Livewire to its Known Exploited Vulnerabilities (KEV) catalog, urging federal agencies to patch them by April 3, 2026. The vulnerabilities that have come under exploitation are listed below – CVE-2025-31277 (CVSS score: 8.8) – A […]
Trivy Supply Chain Attack Triggers Self-Spreading CanisterWorm Across 47 npm Packages
The threat actors behind the supply chain attack targeting the popular Trivy scanner are suspected to be conducting follow-on attacks that have led to the compromise of a large number of npm packages with a previously undocumented self-propagating worm dubbed CanisterWorm. The name is a reference to the fact that the malware uses an ICP […]
Trivy vulnerability scanner backdoored with credential stealer in supply chain attack
Attackers have compromised the widely used open-source Trivy vulnerability scanner, injecting credential-stealing malware into official releases and GitHub Actions used by thousands of CI/CD workflows. The breach could trigger a cascade of additional supply-chain compromises if impacted projects and organizations don’t rotate their secrets immediately. The attack, disclosed by Trivy maintainers today, results from an […]
Are nations ready to be the cybersecurity insurers of last resort?
A senior member of the Cyber Monitoring Center (CMC), an organization formed last year to monitor, define and classify cyber events impacting UK organizations, this week questioned whether a £1.5 billion (about $2 billion) government loan guarantee provided to Jaguar Land Rover (JLR) should have happened in the first place. Speaking at an event hosted […]
25-00176.pdf
25-00176.pdf Anonymous (not verified) Fri, 03/20/2026 – 18:15 Case ID 25-00176 Forum FINRA Document Type Award Claimants Mitchell Felton Respondents Fidelity Brokerage Services LLC Neutrals Steven Gerard Goerke Hearing Site Boca Raton, FL Award Document 25-00176.pdf Documentum DocID fe6b9a14 Award Date Official Fri, 03/20/2026 – 12:00 Related Content Off Claimant Representatives Kristian P. Kraszewski Respondent […]
24-01931.pdf
24-01931.pdf Anonymous (not verified) Fri, 03/20/2026 – 18:15 Case ID 24-01931 Forum FINRA Document Type Award Claimants Elton Simoes Respondents Truist Investment Services, Inc. Neutrals Patrick J. Halter Katherine L Sidener Frederick Allan Kaseburg Hearing Site Seattle, WA Award Document 24-01931.pdf Documentum DocID 0a433c0b Award Date Official Fri, 03/20/2026 – 12:00 Related Content Off Claimant […]
23-00824(2).pdf
23-00824(2).pdf Anonymous (not verified) Fri, 03/20/2026 – 18:15 Case ID 23-00824 Forum FINRA Document Type Order to Vacate Claimants Marc Torres Respondents Wells Fargo Clearing Services, LLC Neutrals Keely D. Parr Alfreida B. Kenny Rajeev Suresh Shah Hearing Site New York, NY Award Document 23-00824(2).pdf Documentum DocID 5f87e97b Award Date Official Thu, 03/20/2025 – 12:00 […]
Weill Cornell Medicine discloses an insider data breach
On February 23, HHS received a breach submission from Weill Cornell Medicine in New York. The submission reported that 516 patients were affected by an incident involving Unauthorized Access/Disclosure of data in Electronic Medical Records (EMR). DataBreaches emailed the hospital to request an explanation and received the following statement from a spokesperson: After thorough investigation,… […]
2025088031501 Anthony Sica CRD 1332626 AWC ks.pdf
2025088031501 Anthony Sica CRD 1332626 AWC ks.pdf Anonymous (not verified) Fri, 03/20/2026 – 15:35 Case ID 2025088031501 Document Number 3e90b4fd Document Type AWCs (Letters of Acceptance, Waiver, and Consent) Individuals Anthony Sica Action Date Fri, 03/20/2026 – 12:00 Related Content Off Attachment 2025088031501 Anthony Sica CRD 1332626 AWC ks.pdf Individual CRD 1332626
이란 전쟁, 올해 글로벌 IT 지출 둔화…AI·사이버보안은 방어적 투자 유지
IDC는 미국과 이스라엘, 이란 간 무력 충돌이 장기화하면 올해 글로벌 IT 지출이 위축될 수 있다고 경고했다. 다만 AI와 사이버 보안은 기업이 끝까지 지키려는 전략 예산으로 남을 가능성이 크다고 분석했다. IDC에 따르면, 중동 지역 분쟁은 유가 상승으로 이어져 세계 경제 전반에 부담을 줄 수 있다. GDP 성장률을 끌어내리고, 결국 기업과 소비자의 기술 지출 축소로 이어질 수 […]
공장·마케팅·코딩까지…생성형 AI로 성과 낸 글로벌 기업 사례 4선
생성형 AI는 프롬프트를 기반으로 텍스트, 코드, 음성, 이미지, 영상 등 다양한 콘텐츠를 생성하는 AI 기술이다. 2021년 이미지 생성 모델 달리(DALL-E)가 공개된 데 이어, 이듬해에는 텍스트 생성 모델 챗GPT, 이미지 생성 모델 미드저니와 스테이블 디퓨전이 등장했다. 이후 기업은 생성형 AI가 고객 문의에 보다 정확히 대응하고, 직원 업무 속도를 높이며, 코드 작성을 자동화하고, 나아가 과학자의 단백질 3차원 […]
‘바이브 디자인’ 지원 강화···구글, AI 디자인 캔버스 ‘스티치’ 전면 개편
구글 랩스(Google Labs) 소속 러스틴 뱅크스 프로덕트 매니저는 3월 18일 공식 블로그를 통해 “지난 1년간 AI가 소프트웨어 구축 방식을 근본적으로 바꿔놓았다”며 스티치의 새로운 방향성을 공개했다. 이번 업데이트의 가장 두드러진 특징은 ‘바이브 디자인(vibe design)’이라는 개념의 도입이다. 기존 디자인 워크플로우에서는 와이어프레임부터 시작하는 것이 일반적이었으나, 스티치에서는 비즈니스 목표나 사용자에게 전달하고 싶은 감정, 혹은 참고하고 싶은 레퍼런스를 자연어로 설명하는 […]
6 innovation curves are rewriting enterprise IT strategy
Enterprise transformation doesn’t happen overnight, nor does it typically happen all at once. Yet sometimes business leaders must confront the reality of simultaneous technology shifts. Each shift follows its own roadmap and requires attention to ensure that changes aren’t too disruptive. To ensure smooth sailing, businesses must manage parallel changes that evolve. Today’s business landscape […]
Why enterprises aren’t seeing AI ROI — and what CIOS can do about it
Artificial intelligence is the most transformative technological development, changing the broader global operating environment. AI spending is projected to reach $2.52 trillion, which is a 44 percent year-over-year increase, according to Gartner’s 2026 Trend Report. Enterprises are positioning AI as a primary lever for value creation in response to emerging trends, aiming to drive revenue […]
How a Spanish brewing company uses tech to guide its business strategy
Known for brands such as Estrella Galicia, 1906, and Cabreiroá, Hijos de Rivera has maintained a legacy for over a century as a family-owned, independent company that has successfully expanded internationally without losing its identity. In addition to preserving its tradition, the group also looks ahead, and is deeply invested in digitalization as a strategic […]
Autonomous AI adoption is on the rise, but it’s risky
Two AI releases early this year are prompting users to give up control and let autonomous agentic tools complete tasks on their behalf. IT leaders should be ready to deal with the consequences. Anthropic rolled out its agentic platform Claude Cowork in January for macOs and February for Windows, and use of agentic tool OpenClaw […]
El 80% de los Gobiernos implementará agentes de IA en 2028 para automatizar la toma de decisiones rutinarias
Al menos el 80% de los Gobiernos implementará agentes de IA para automatizar la toma de decisiones rutinarias, mejorando la eficiencia y la prestación de servicios para 2028. Es la conclusión a la que llega Gartner en su último estudio. No obstante, la obtención de decisiones más rápidas, coherentes y explicables a gran escala pasa […]
PwC US tells staff to opt out of company, not AI
PwC partners will need to embrace AI or face being replaced. The consultancy firm has made clear that it doesn’t see AI as a disruptive force and is set to amend its tax and consulting services into AI-powered automated tools, reducing the requirement for PwC US staff. PwC US CEO Paul Griggs told the Financial […]
Trump’s federal AI policy framework aims to undercut state laws
US President Donald Trump’s administration today released its National Policy Framework for Artificial Intelligence: Legislative Recommendations, a document that reads less like the AI safety blueprints that states are increasingly adopting and more like a playbook for asserting federal control over AI governance. It is part of a coordinated push with congressional allies, most notably […]
2022076038801 Stash Capital LLC CRD 287728 AWC ks.pdf
2022076038801 Stash Capital LLC CRD 287728 AWC ks.pdf Anonymous (not verified) Fri, 03/20/2026 – 14:55 Case ID 2022076038801 Document Number d234131f Document Type AWCs (Letters of Acceptance, Waiver, and Consent) Action Date Fri, 03/20/2026 – 12:00 Related Content Off Attachment 2022076038801 Stash Capital LLC CRD 287728 AWC ks.pdf
Cyber OpSec Fail: Beast Gang Exposes Ransomware Server
Robert Lemos writes: An open server hosted on a German cloud provider’s systems has been discovered, containing the entire toolset of a member of the Beast ransomware group. The find exposes the tactics, techniques, and procedures of the threat actor, but also reveals that Beast shares many of those TTPs with other ransomware gangs. According… […]
Strengthening Cybersecurity in Canada’s Municipal Sector: A Verified Analysis
From the Nonprofit Tech Support: When the City of Hamilton suffered a ransomware attack on February 25, 2024, it marked a sobering milestone in Canadian municipal cybersecurity. The attack crippled roughly 80% of Hamilton’s network, impacting services from business licensing to the fire department’s records. Attackers demanded an $18.5 million ransom, which the city refused… […]
Water utilities strengthen cybersecurity through cooperation
Water utilities are finding that letting information flow can flush out cybersecurity problems. The water industry has a security issue: Many utilities operate with ageing systems and minimal IT or cybersecurity personnel. But by coordinating responses to cyber-attacks, participants in a pilot program run by the Cyber Readiness Institute (CRI) and the Center on Cyber […]
Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD Secrets
Trivy, a popular open-source vulnerability scanner maintained by Aqua Security, was compromised a second time within the span of a month to deliver malware that stole sensitive CI/CD secrets. The latest incident impacted GitHub Actions “aquasecurity/trivy-action” and “aquasecurity/setup-trivy,” which are used to scan Docker container images for vulnerabilities and set up GitHub Actions workflow
Jaguar Land Rover’s cyber bailout sets worrying precedent, watchdog warns
Carly Page reports: The UK’s cyber watchdog has warned that the government’s £1.5 billion bailout of Jaguar Land Rover (JLR) risks setting a troubling precedent for how Britain handles major cyber crises. Speaking at an event marking the Cyber Monitoring Centre’s (CMC) first operational year, Ciaran Martin, chair of the CMC’s technical committee and a distinguished fellow… […]
Stop using AI to submit bug reports, says Google
Google will no longer accept AI-generated submissions to a program it funded to find bugs in open-source software. However, it is contributing to a separate program that uses AI to strengthen security in open-source code. The Google Open Source Software Vulnerability Reward Program team is increasingly concerned about the low quality of some AI-generated bug […]
Critical Langflow Flaw CVE-2026-33017 Triggers Attacks within 20 Hours of Disclosure
A critical security flaw impacting Langflow has come under active exploitation within 20 hours of public disclosure, highlighting the speed at which threat actors weaponize newly published vulnerabilities. The security defect, tracked as CVE-2026-33017 (CVSS score: 9.3), is a case of missing authentication combined with code injection that could result in remote code execution. “The […]
Global cybercrime crackdown: over 373,000 dark web sites shut down
From Europol, some impressive results: On 9 March 2026, a global operation led by German authorities and supported by Europol was launched against one of the largest networks of fraudulent platforms in the dark web. The investigation began in mid-2021 against the dark web platform “Alice with Violence CP”. During the investigation, authorities discovered that… […]
University College of Dublin staff member due in court over accessing student data
Paul Reynolds provides today’s reminder of the insider threat. This one involves a univeristy in Dublin, Ireland. A UCD staff member is due in court this morning charged in connection with unlawfully accessing student data at the college. The man, who is in his 50s, was arrested this morning following an investigation by the Garda… […]
Russian Intelligence Services Target Commercial Messaging Application Accounts
CISA and the Federal Bureau of Investigation released a Public Service Announcement (PSA) warning about ongoing phishing campaigns by cyber actors associated with the Russian Intelligence Services targeting commercial messaging applications (CMAs). These campaigns aim to bypass encryption to compromise to individual user accounts with targets including current and former U.S. government officials, military personnel, […]
CISA Adds Five Known Exploited Vulnerabilities to Catalog
CISA has added five new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2025-31277 Apple Multiple Products Buffer Overflow Vulnerability CVE-2025-32432 Craft CMS Code Injection Vulnerability CVE-2025-43510 Apple Multiple Products Improper Locking Vulnerability CVE-2025-43520 Apple Multiple Products Classic Buffer Overflow Vulnerability CVE-2025-54068 Laravel Livewire Code Injection Vulnerability These types […]
DDoS-Attacken: Schlag gegen internationale Cyberkriminelle
DDos bleibt ein Evergreen unter den Security-Bedrohungen. Karsten Kunert mit ChatGPT In einem großangelegten Schlag gegen ein internationales Hacker-Netzwerk haben Sicherheitsbehörden in Nordamerika und Deutschland die beiden weltgrößten Botnetze zerschlagen. Die Infrastruktur der Kriminellen war vor allem für sogenannte Denial-of-Services-Attacken (DDoS), verwendet worden, teilte das Bundeskriminalamt mit. Dabei versuchen die Cyberkriminellen, die Webseiten und Apps […]
Marquis Data Breach Affects 672,000 Individuals
It was previously estimated that more than 1.6 million people may be affected by the Marquis data breach. The post Marquis Data Breach Affects 672,000 Individuals appeared first on SecurityWeek.
Iran Readied Cyberattack Capabilities for Response Prior to Epic Fury
Analysis reveals a six-month buildup of Iran-linked cyber infrastructure, including US-based shell companies, designed to weather kinetic strikes and ensure the resilience of its global hacking operations. The post Iran Readied Cyberattack Capabilities for Response Prior to Epic Fury appeared first on SecurityWeek.
Privacy Platform Cloaked Raises $375M to Expand Enterprise Reach
Cloaked plans to introduce AI agents designed to act on behalf of users to monitor, manage, and enforce privacy preferences and security postures. The post Privacy Platform Cloaked Raises $375M to Expand Enterprise Reach appeared first on SecurityWeek.
Critical ScreenConnect Vulnerability Exposes Machine Keys
Latest ScreenConnect version adds encrypted storage and management to prevent unauthorized access to machine keys. The post Critical ScreenConnect Vulnerability Exposes Machine Keys appeared first on SecurityWeek.
1stProtect Emerges From Stealth With $20 Million in Funding
The company’s endpoint security platform monitors behavior and verifies user intent to stop cyberattacks in real time. The post 1stProtect Emerges From Stealth With $20 Million in Funding appeared first on SecurityWeek.
Oasis Security Raises $120 Million for Agentic Access Management
The company will invest in R&D, product expansion across AI frameworks, and in scaling go-to-market and sales efforts. The post Oasis Security Raises $120 Million for Agentic Access Management appeared first on SecurityWeek.
Aisuru and Kimwolf DDoS Botnets Disrupted in International Operation
The lesser-known JackSkid and Mossad botnets have also been targeted in the operation. The post Aisuru and Kimwolf DDoS Botnets Disrupted in International Operation appeared first on SecurityWeek.
Critical Langflow Vulnerability Exploited Hours After Public Disclosure
Because attacker-supplied flow data is used in public flows, the bug leads to unauthenticated remote code execution. The post Critical Langflow Vulnerability Exploited Hours After Public Disclosure appeared first on SecurityWeek.
Allure Security Raises $17 Million for Online Brand Protection
The company will invest in expanding its digital brand protection platform and in scaling its go-to-market efforts. The post Allure Security Raises $17 Million for Online Brand Protection appeared first on SecurityWeek.
Thousands of Magento Sites Hit in Ongoing Defacement Campaign
The attacks started on February 27 and have targeted e-commerce platforms, global brands, and government services. The post Thousands of Magento Sites Hit in Ongoing Defacement Campaign appeared first on SecurityWeek.
Google Adds 24-Hour Wait for Unverified App Sideloading to Reduce Malware and Scams
Google on Thursday announced a new “advanced flow” for Android sideloading that requires a mandatory 24-hour wait period to install apps from unverified developers in an attempt to balance openness with safety. The new changes come against the backdrop of a developer verification mandate the tech giant announced last year that requires all Android apps […]
Stellenausschreibung: Finance & HR Admin Manager
Wir suchen eine/n Finance & HR Admin Manager/in für unser Berliner Team.
The Importance of Behavioral Analytics in AI-Enabled Cyber Attacks
Artificial Intelligence (AI) is changing how individuals and organizations conduct many activities, including how cybercriminals carry out phishing attacks and iterate on malware. Now, cybercriminals are using AI to generate personalized phishing emails, deepfakes and malware that evade traditional detection by impersonating normal user activity and bypassing legacy security models. As a result,
Magento PolyShell Flaw Enables Unauthenticated Uploads, RCE and Account Takeover
Sansec is warning of a critical security flaw in Magento’s REST API that could allow unauthenticated attackers to upload arbitrary executables and achieve code execution and account takeover. The vulnerability has been codenamed PolyShell by Sansec owing to the fact that the attack hinges on disguising malicious code as an image. There is no evidence […]
GSocket Backdoor Delivered Through Bash Script, (Fri, Mar 20th)
Yesterday, I discovered a malicious Bash script that installs a GSocket backdoor on the victim’s computer. I don’t know the source of the script not how it is delivered to the victim.
The espionage reality: Your infrastructure is already in the collection path
Threat actors have always sought advantage over their targets. Recently we’ve seen two efforts designed for long-term intelligence gain. This activity surfaced right where you would expect inside the enterprise. Enterprises now sit directly in the adversary’s collection path. They don’t have to be the target; they are on the board and in play because […]
DoJ Disrupts 3 Million-Device IoT Botnets Behind Record 31.4 Tbps Global DDoS Attacks
The U.S. Department of Justice (DoJ) on Thursday announced the disruption of command-and-control (C2) infrastructure used by several Internet of Things (IoT) botnets like AISURU, Kimwolf, JackSkid, and Mossad as part of a court-authorized law enforcement operation. The effort also saw authorities from Canada and Germany targeting the operators behind these botnets, with a number […]
Apple Warns Older iPhones Vulnerable to Coruna, DarkSword Exploit Kit Attacks
Apple is urging users who are still running an outdated version of iOS to update their iPhones to secure against web-based attacks carried out via powerful exploit kits like Coruna and DarkSword. These attacks employ malicious web content to target out-of-date versions of iOS, triggering an infection chain that leads to the theft of sensitive […]
Die besten IAM-Tools
Identity & Access Management ist für sicherheitsbewusste Unternehmen im Zero-Trust-Zeitalter Pflicht. Das sind die besten IAM-Anbieter und -Tools. Foto: ne2pi – shutterstock.com Identität wird zum neuen Perimeter: Unternehmen verlassen sich immer seltener auf die traditionelle Perimeter-Verteidigung und forcieren den Umstieg auf Zero-Trust-Umgebungen. Sicherer Zugriff und Identity Management bilden die Grundlage jeder Cybersicherheitsstrategie. Gleichzeitig sorgt die […]
North Carolina tech worker found guilty of insider attack netting $2.5M ransom
Matt Kapko reports: A 27-year-old North Carolina man was found guilty of six counts of extortion for a series of crimes he committed while working as a data analyst contractor for a D.C.-based international technology company, the Justice Department said Thursday. Cameron Nicholas Curry, also known as “Loot,” stole a trove of corporate data, including sensitive… […]
ISC Stormcast For Friday, March 20th, 2026 https://isc.sans.edu/podcastdetail/9858, (Fri, Mar 20th)
Post Content
Feds Disrupt IoT Botnets Behind Huge DDoS Attacks
The U.S. Justice Department joined authorities in Canada and Germany in dismantling the online infrastructure behind four highly disruptive botnets that compromised more than three million Internet of Things (IoT) devices, such as routers and web cameras. The feds say the four botnets — named Aisuru, Kimwolf, JackSkid and Mossad — are responsible for a […]
CISA urges IT to harden endpoint management systems after cyberattack by pro-Iranian group
The US is urging infosec leaders to harden their endpoint management system configurations after last week’s hack of American medical supplies provider Stryker by pro-Iranian threat actor Handala. The warning from the US Cybersecurity and Infrastructure Security Agency (CISA) is principally for organizations using Microsoft Intune, a cloud-based unified endpoint management (UEM) service that Handala, […]
That cheap KVM device could expose your network to remote compromise
Researchers have found nine vulnerabilities in four popular low-cost KVM-over-IP devices, ranging from unauthenticated command injection to weak authentication defenses and insecure firmware updates. The flaws are particularly concerning given the growing presence of such devices in business environments, whether deployed intentionally by IT administrators and managed service providers or introduced as shadow IT. KVM-over-IP […]
25-01623.pdf
25-01623.pdf Anonymous (not verified) Thu, 03/19/2026 – 18:55 Case ID 25-01623 Forum FINRA Document Type Award Claimants Thomas Wangness Respondents Robinhood Financial, LLC. Neutrals Ian S. Greig Hearing Site Columbia, SC Award Document 25-01623.pdf Documentum DocID a53c8667 Award Date Official Thu, 03/19/2026 – 12:00 Related Content Off Claimant Representatives Thomas V Wangness Respondent Representatives Samer […]
Justice Department Disrupts Iranian Cyber Enabled Psychological Operations
A Court-Authorized Domain Seizure Removes Four Websites Facilitating the Islamic Republic of Iran’s Ministry of Intelligence and Security’s Hacking Efforts Tied to Psychological Operations and Transnational Repression WASHINGTON – Today, the Justice Department announced the seizure of four domains as part of an ongoing effort to disrupt hacking and transnational repression schemes conducted by the Islamic Republic… […]
2024081563501 Avinesh Shankar CRD 6232970 Order Accepting Offer of Settlement vrp.pdf
2024081563501 Avinesh Shankar CRD 6232970 Order Accepting Offer of Settlement vrp.pdf Anonymous (not verified) Thu, 03/19/2026 – 16:35 Case ID 2024081563501 Document Number 0b62393e Document Type Orders Accepting Offers of Settlement Individuals Avinesh Shankar Action Date Thu, 03/19/2026 – 12:00 Related Content On Attachment 2024081563501 Avinesh Shankar CRD 6232970 Order Accepting Offer of Settlement vrp.pdf […]
2021072094901 Alpaca Securities LLC CRD 288202 AWC ks.pdf
2021072094901 Alpaca Securities LLC CRD 288202 AWC ks.pdf Anonymous (not verified) Thu, 03/19/2026 – 16:30 Case ID 2021072094901 Document Number 99d32ed9 Document Type AWCs (Letters of Acceptance, Waiver, and Consent) Action Date Tue, 03/17/2026 – 12:00 Related Content Off Attachment 2021072094901 Alpaca Securities LLC CRD 288202 AWC ks.pdf
FINRA Makes Revised Communications Pilot Permanent
FINRA Makes Revised Communications Pilot Permanent K31999 Thu, 03/19/2026 – 15:48 Following a successful six-month pilot, FINRA will now allow all firms to voluntarily upload a revised retail marketing communication and have it reviewed free of charge. Part of our FINRA Forward initiative to empower member firm compliance, this new program is designed to reduce […]
Streamlining Data Requests While Enhancing Oversight
Streamlining Data Requests While Enhancing Oversight K31999 Thu, 03/19/2026 – 15:27 FINRA has unique access to data across markets and our membership. As part of FINRA Forward, we are evolving our procedures and harnessing technology to make better use of this data internally. This FINRA-wide effort has allowed us to reduce the volume and scope […]
Speagle Malware Hijacks Cobra DocGuard to Steal Data via Compromised Servers
Cybersecurity researchers have flagged a new malware dubbed Speagle that hijacks the functionality and infrastructure of a legitimate program called Cobra DocGuard. “Speagle is designed to surreptitiously harvest sensitive information from infected computers and transmit it to a Cobra DocGuard server that has been compromised by the attackers, masking the data exfiltration process as legitimate
AI without sovereignty is just outsourced intelligence
There’s a quiet assumption baked into most AI adoption conversations: that access equals advantage. Buy the API. Plug in the model. Watch productivity soar. Brief the board on your AI transformation. Repeat. It’s a compelling narrative, and for vendors, it’s a lucrative one. But there’s a harder question that most enterprises haven’t yet asked loudly […]
What it takes to level up your org’s AI maturity
Over the past 12 months I’ve engaged with hundreds of CIOs to understand where they are in their AI transformation journeys. Through this process, interesting patterns have emerged. First, companies generally fall along three levels of the AI maturity curve. A small number of organizations are at the “101 level,” implementing AI copilots, seeing some […]
Federal enterprise architecture in the age of AI
Federal enterprise architecture (FEA) has long served as a foundational framework for orchestrating the complex interplay of processes, technologies and organizational structures within government entities. As artificial intelligence (AI) continues to reshape the technological landscape, the relevance of FEA has become even more pronounced. The adoption of AI introduces new dimensions of complexity, opportunity and […]
16 organizations advancing women in tech
Despite national conversations about a lack of women in IT, women remain largely underrepresented in technology roles, according to recent data from Women Tech Network. The report found that women aren’t just underrepresented, they’re 1.6 times more likely to face layoffs, which has pushed many to leave the tech industry entirely, furthering the gender gap. Women have […]
What happens if SAP’s S/4HANA roadmap doesn’t suit?
The news that Kingfisher rejected migrating to SAP S/4HANA reverberated around the internet in late 2025. The retail giant — which shifted its core ECC system to Google Cloud with support from Rimini Street and added AI, personalization, and recommendation engines— is already seeing benefits. “It’s a perfect example of an evaluation of the cost […]
¿Qué ocurre si la hoja de ruta de S/4HANA de SAP no se adapta a las necesidades de los CIO?
La noticia de The Register de la negativa de Kingfisher a migrar a SAP S/4HANA se expandió por Internet a finales de 2025. El gigante minorista —que trasladó su sistema ECC principal a Google Cloud con el apoyo de Rimini Street y añadió IA, personalización y motores de recomendación— ya está viendo los frutos. “Es […]
MS, AI 조직 개편 단행…코파일럿 통합 조직 신설
마이크로소프트(MS)가 고위 AI 리더십에 대한 조직 개편을 단행했다. MS 최고경영자(CEO) 사티아 나델라는 공식 블로그를 통해 상업용과 소비자용 코파일럿 시스템을 하나의 신규 부문으로 통합하고, 이를 제이콥 안드레우가 총괄한다고 17일 밝혔다. 안드레우는 MS AI에서 제품 및 성장 부문을 이끌어온 전 기업부사장(CVP)이다. 나델라는 사내 공지를 통해 해당 조직이 네 가지 축을 중심으로 운영된다고 설명했다. 코파일럿 경험, 코파일럿 플랫폼, […]
Cuatro casos de éxito de IA generativa
La IA generativa es una IA que se caracteriza por generar contenido —texto, código, voz, imágenes y vídeos— a partir de indicaciones. Desde el lanzamiento de DALL-E para imágenes en 2021, y posteriormente, al año siguiente, de ChatGPT para texto, y de Midjourney y Stable Diffusion para imágenes, no son pocas las empresas que han […]
The memory demand crunch: creating a device strategy that meets the challenge
Datacom Enterprise IT leaders building 2026 budgets face a hardware procurement challenge unlike anything since the pandemic-era chip shortage. But unlike 2020–2021, this is not a short-term event. The AI boom has triggered an ongoing structural shift in memory supply. AI systems consume memory at 10 to 20 times the rate of traditional PCs, and […]
La tecnología como motor de confianza, crecimiento y competitividad
La verdadera madurez digital de una compañía no se mide únicamente por las herramientas que utiliza, sino por su capacidad para poner la tecnología al servicio de las personas, anticipándose al mañana. Evolucionar solo cuando surge la necesidad implica asumir riesgos crecientes: sistemas rígidos, arquitecturas difíciles de integrar y plataformas complejas de mantener que limitan […]
54 EDR Killers Use BYOVD to Exploit 35 Signed Vulnerable Drivers and Disable Security
A new analysis of endpoint detection and response (EDR) killers has revealed that 54 of them leverage a technique known as bring your own vulnerable driver (BYOVD) by abusing a total of 35 vulnerable drivers. EDR killer programs have been a common presence in ransomware intrusions as they offer a way for affiliates to neutralize […]
Ransomware group exploited Cisco firewall vulnerability as a zero day, weeks before a patch appeared
One of the world’s most active ransomware groups, Interlock, started exploiting a critical-rated Cisco firewall vulnerability as a zero day weeks before it was patched in early March, Amazon has revealed. The vulnerability in question is CVE-2026-20131, a remotely exploitable deserialization flaw in Cisco Secure Firewall Management Center (FMC) Software which was given a maximum […]
Beijing wants its own quantum-resistant encryption standards rather than adopt NIST’s
China is reportedly planning to develop its own national post-quantum cryptography standards within the next three years, even as most of the world has already begun migrating to those finalized by the US in 2024. Post-quantum cryptography deals with algorithms that can protect data from the threat proposed by future quantum computers, which are expected […]
UMMC continues investigating cyberattack and recovering from impact.
In February, the University of Mississippi Medical Center (UMMC) announced it was closing dozens of its clinics statewide after a cyberattack disrupted multiple IT systems and cut off access to its Epic EMR platform, which contained patients’ medical records. The attack resulted in a nine-day service suspension, during which most outpatient clinics statewide were closed,… […]
Russian hackers exploit Zimbra flaw in Ukrainian govt attacks
Sergiu Gatlan reports: Hackers part of APT28, a state-backed threat group linked to Russia’s military intelligence service (GRU), are exploiting a Zimbra Collaboration Suite (ZCS) vulnerability in attacks targeting Ukrainian government entities. This high-severity security flaw (tracked as CVE-2025-66376 and patched in early November) stems from a stored cross-site scripting (XSS) that unauthenticated attackers can exploit to gain remote… […]
Telnet vulnerability opens door to remote code execution as root
A critical Telnet vulnerability with a CVSS rating of 9.8 enables attackers to take full control of affected systems before authentication even kicks in, security researchers at Dream Security have warned. Tracked as CVE-2026-32746, the vulnerability is in GNU inetutils telnetd, is a widely deployed implementation of the Telnet remote access protocol found across legacy […]
ThreatsDay Bulletin: FortiGate RaaS, Citrix Exploits, MCP Abuse, LiveChat Phish & More
ThreatsDay Bulletin is back on The Hacker News, and this week feels off in a familiar way. Nothing loud, nothing breaking everything at once. Just a lot of small things that shouldn’t work anymore but still do. Some of it looks simple, almost sloppy, until you see how well it lands. Other bits feel a […]
SpyCloud’s 2026 Identity Exposure Report Reveals Explosion of Non-Human Identity Theft
New Report Highlights Surge in Exposed API Keys, Session Tokens, and Machine Identities, and more. SpyCloud, the leader in identity threat protection, today released its annual 2026 Identity Exposure Report, one of the most comprehensive analyses of stolen credentials and identity exposure data circulating in the criminal underground and highlighting a sharp expansion in non-human […]
New Perseus Android Banking Malware Monitors Notes Apps to Extract Sensitive Data
Cybersecurity researchers have disclosed a new Android malware family called Perseus that’s being actively distributed in the wild with an aim to conduct device takeover (DTO) and financial fraud. Perseus is built upon the foundations of Cerberus and Phoenix, at the same time evolving into a “more flexible and capable platform” for compromising Android devices […]
Deaconess patients’ sensitive data stolen in vendor breach
Houston Harwood reports: A data breach at a third-party medical records vendor exposed the personal and health information of patients at two Deaconess Health System hospitals in Western Kentucky, the Evansville-based health system disclosed nearly two months after the breach itself occurred. The breach did not affect Deaconess’s internal computer systems or its electronic medical… […]
Cyberattack leaves drivers with required breathalyzer test systems in 46 states unable to start vehicles
Brad Rogers reports: A cyberattack has shut down a nationwide breathalyzer test system found in vehicles of OUI offenders, impacting thousands of drivers in Maine and 45 other states. Intoxalock is the company targeted by the attack. Once the device is installed, drivers have to pass a breathalyzer test before they can start their vehicle…. […]
CISA Adds One Known Exploited Vulnerability to Catalog
CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-20131 Cisco Secure Firewall Management Center (FMC) Software and Cisco Security Cloud Control (SCC) Firewall Management Deserialization of Untrusted Data Vulnerability This type of vulnerability is a frequent attack vector for malicious cyber actors and poses […]
Schneider Electric EcoStruxure PME and EPO
View CSAF Summary Schneider Electric is aware of a vulnerability in its EcoStruxure Power Monitoring Expert (PME) and EcoStruxure Power Operation (EPO) products. EcoStruxure Power Monitoring Expert (PME) is an on-premises software used to help power critical and energy-intensive facilities maximize uptime and operational efficiency. EcoStruxure Power Operation (EPO) are on-premises software offers that provides […]
CTEK Chargeportal
View CSAF Summary Successful exploitation of these vulnerabilities could enable attackers to gain unauthorized administrative control over vulnerable charging stations or disrupt charging services through denial-of-service attacks. The following versions of CTEK Chargeportal are affected: Chargeportal vers:all/* CVSS Vendor Equipment Vulnerabilities v3 9.4 CTEK CTEK Chargeportal Missing Authentication for Critical Function, Improper Restriction of Excessive […]
IGL-Technologies eParking.fi
View CSAF Summary Successful exploitation of these vulnerabilities could enable attackers to gain unauthorized administrative control over vulnerable charging stations or disrupt charging services through denial-of-service attacks. The following versions of IGL-Technologies eParking.fi are affected: eParking.fi vers:all/* CVSS Vendor Equipment Vulnerabilities v3 9.4 IGL-Technologies IGL-Technologies eParking.fi Missing Authentication for Critical Function, Improper Restriction of Excessive […]
Mitsubishi Electric CNC Series
View CSAF Summary Successful exploitation of this vulnerability could allow a remote attacker to cause an out-of-bounds read, resulting in a denial-of-service condition in the affected products. The following versions of Mitsubishi Electric CNC Series are affected: M800VW (BND-2051W000) <=BB M800VS (BND-2052W000) <=BB M80V (BND-2053W000) <=BB M80VW (BND-2054W000) <=BB M800W (BND-2005W000) <=FM M800S (BND-2006W000) <=FM […]
Schneider Electric EcoStruxure Automation Expert
View CSAF Summary Schneider Electric is aware of a vulnerability in its EcoStruxure™ Automation Expert product. The EcoStruxure™ Automation Expert product is plant automation software designed for digital control systems in discrete, hybrid and continuous industrial processes. A totally integrated automation solution designed to enhance your flexibility, efficiency and scalability. Failure to apply the remediation […]
Automated Logic WebCTRL Premium Server
View CSAF Summary Successful exploitation of these vulnerabilities could allow an attacker to read, intercept, or modify communications. The following versions of Automated Logic WebCTRL Premium Server are affected: WebCTRL Premium Server CVSS Vendor Equipment Vulnerabilities v3 9.1 Automated Logic Automated Logic WebCTRL Premium Server Multiple Binds to the Same Port, Authentication Bypass by Spoofing, […]
Schneider Electric Modicon M241, M251, and M262
View CSAF Summary Successful exploitation of this vulnerability could allow an attacker to cause a denial-of-service condition on the product. The following versions of Schneider Electric Modicon M241, M251, and M262 are affected: Modicon M241 versions prior to 5.4.13.12 Modicon_Controller_M241 Modicon M251 versions prior to 5.4.13.12 Modicon_Controller_M251 Modicon M262 versions prior to 5.4.10.12 Modicon_Controller_M262 CVSS […]
Schneider Electric Modicon Controllers M241, M251, M258, and LMC058
View CSAF Summary Successful exploitation of this vulnerability may risk a Cross-site Scripting or an open redirect attack which could result in an account takeover scenario or the execution of code in the user browser. The following versions of Schneider Electric Modicon Controllers M241, M251, M258, and LMC058 are affected: Modicon M241 versions prior to […]
Personal information of 16,000 individuals leaked from Seoul National University Hospital
Jung Si-Nae reports: Patient records of around 16,000 individuals were partially leaked from Seoul National University Hospital due to a clerical error. The hospital announced the data breach on its website on Thursday. A staff member mistakenly entered the wrong email address while sending an internal message at 2:07 p.m. on Saturday, resulting in patient… […]
Chilling Effects: NZ GP stops uploading patient notes to MyIndici as a precaution
Kate Green reports: A Wellington GP clinic has stopped uploading consultation notes to patient portal MyIndici as an extra layer of protection for patients’ data. MyIndici said it hasn’t been compromised, but there have been two high-profile security breaches involving health data at other companies in the past few months – ManageMyHealth, and then MediMap. Newlands Medical… […]
Shadow AI Risk: How SaaS Apps Are Quietly Enabling Massive Breaches
From Chaos to Control examines the chaos that often comes from shadow AI hidden in SaaS apps and urges better visibility and control over agentic AI. The post Shadow AI Risk: How SaaS Apps Are Quietly Enabling Massive Breaches appeared first on SecurityWeek.
EU Sanctions Chinese, Iranian Firms Supporting Hacking Operations
The sanctions target two Chinese individuals, two Chinese companies, and one Iranian firm involved in hacking EU member states. The post EU Sanctions Chinese, Iranian Firms Supporting Hacking Operations appeared first on SecurityWeek.
Virtual Summit Today: Supply Chain & Third-Party Risk Summit
Cyber risk doesn’t stop at your perimeter. Today’s most dangerous threats could be hiding in your software supply chain. The post Virtual Summit Today: Supply Chain & Third-Party Risk Summit appeared first on SecurityWeek.
‘DarkSword’ iOS Exploit Kit Used by State-Sponsored Hackers, Spyware Vendors
Targeting six iOS vulnerabilities and leading to full device compromise, the exploit chain is meant for surveillance. The post ‘DarkSword’ iOS Exploit Kit Used by State-Sponsored Hackers, Spyware Vendors appeared first on SecurityWeek.
Cloud Security Startup Native Exits Stealth With $42 Million in Funding
Phil Venables, former CISO of Google Cloud and now a venture partner at Ballistic Ventures, has joined Native’s board of directors. The post Cloud Security Startup Native Exits Stealth With $42 Million in Funding appeared first on SecurityWeek.
Autonomous Offensive Security Firm XBOW Raises $120M at $1B+ Valuation
The company has developed an AI-powered platform that autonomously discovers and validates software vulnerabilities. The post Autonomous Offensive Security Firm XBOW Raises $120M at $1B+ Valuation appeared first on SecurityWeek.
The Collapse of Predictive Security in the Age of Machine-Speed Attacks
With exploitation of vulnerabilities taking just days, preemptive security must be the new model for defenders. The post The Collapse of Predictive Security in the Age of Machine-Speed Attacks appeared first on SecurityWeek.
Cisco Firewall Vulnerability Exploited as Zero-Day in Interlock Ransomware Attacks
Amazon found evidence that the FMC software vulnerability has been exploited since late January, and found links to Russia. The post Cisco Firewall Vulnerability Exploited as Zero-Day in Interlock Ransomware Attacks appeared first on SecurityWeek.
CISA Warns of Attacks Exploiting Recent SharePoint Vulnerability
The SharePoint remote code execution vulnerability CVE-2026-20963, which Microsoft patched in January, has been exploited in the wild. The post CISA Warns of Attacks Exploiting Recent SharePoint Vulnerability appeared first on SecurityWeek.
Raven Emerges From Stealth With $20 Million in Funding
Raven’s platform observes applications at runtime to detect anomalous behavior and prevent cyberattacks. The post Raven Emerges From Stealth With $20 Million in Funding appeared first on SecurityWeek.
How Ceros Gives Security Teams Visibility and Control in Claude Code
Security teams have spent years building identity and access controls for human users and service accounts. But a new category of actor has quietly entered most enterprise environments, and it operates entirely outside those controls. Claude Code, Anthropic’s AI coding agent, is now running across engineering organizations at scale. It reads files, executes shell commands, […]
EDPB-EDPS Joint Opinion 4/2026 on the Proposal for a Cybersecurity Act 2 and the Proposal on amendments to the NIS 2 Directive
EDPB-EDPS Joint Opinion 4/2026 on the Proposal for a Cybersecurity Act 2 and the Proposal on amendments to the NIS 2 Directive ipayotfr Thu, 19/03/2026 – 11:47 19 March 2026 EDPB-EDPS Joint Opinion 4/2026 2.4MB English Download Topics: Certification Cybersecurity and data breach EU Legislative proposal and strategy GDPR
EDPB and EDPS support strengthening EU’s cybersecurity and easing compliance while protecting individuals’ personal data
EDPB and EDPS support strengthening EU’s cybersecurity and easing compliance while protecting individuals’ personal data ipayotfr Thu, 19/03/2026 – 11:47 19 March 2026 EDPB EDPS Brussels, 19 March 2026 – The European Data Protection Board (EDPB) and the European Data Protection Supervisor (EDPS) have adopted a Joint Opinion on the European Commission’s proposal for a […]
The multi-billion dollar mistake: Why cloud misconfigurations are your biggest security threat
Last year, most businesses faced a cloud security incident. Here’s what stands out — it wasn’t sophisticated cybercriminals behind these events. Instead, basic errors opened the door. According to the Cloud Security Alliance’s 2024 report on risks in cloud computing, misconfigured settings caused nearly every single breach. Just one wrong switch — that’s all it […]
5 key priorities for your RSAC 2026 agenda
RSA Conference 2026 arrives at a significant inflection point for the cybersecurity industry — one that will see its more than 43,000 attendees and 600-plus exhibitors navigating an agenda that has fundamentally shifted in character. For the first time, “AI” is not a track at RSAC. It is the event. Of the 450-plus sessions across […]
DarkSword iOS Exploit Kit Uses 6 Flaws, 3 Zero-Days for Full Device Takeover
A new exploit kit for Apple iOS devices designed to steal sensitive data from is being wielded by multiple threat actors since at least November 2025, according to reports from Google Threat Intelligence Group (GTIG), iVerify, and Lookout. According to GTIG, multiple commercial surveillance vendors and suspected state-sponsored actors have utilized the full-chain exploit kit, […]
Your MFA isn’t broken — it’s being bypassed, and your employees can’t tell the difference
Multi-factor authentication was supposed to be the solution. For years, security teams have told employees that MFA would keep them safe. Password stolen? No problem — attackers still need that second factor. But adversary-in-the-middle (AiTM) phishing has changed everything. These attacks do not try to steal passwords and MFA codes separately. They capture the entire […]
CEF 2026: EDPB launches coordinated enforcement action on transparency and information obligations under the GDPR
CEF 2026: EDPB launches coordinated enforcement action on transparency and information obligations under the GDPR ipayotfr Thu, 19/03/2026 – 09:53 19 March 2026 EDPB Brussels, 19 March – The EDPB has launched its Coordinated Enforcement Framework (CEF) action for 2026*. Following a year-long coordinated action on the right to erasure in 2025, the CEF’s focus […]
Anthropic ban heralds new era of supply chain risk — with no clear playbook
The Trump administration’s decision to ban AI company Anthropic from Pentagon assets and other government systems as a “supply chain risk” could force CISOs into a position few have faced before: preparing to identify, isolate, and potentially remove a specific AI technology from across their organizations without a clear understanding of where it resides or […]
CISA Warns of Zimbra, SharePoint Flaw Exploits; Cisco Zero-Day Hit in Ransomware Attacks
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has urged government agencies to apply patches for two security flaws impacting Synacor Zimbra Collaboration Suite (ZCS) and Microsoft Office SharePoint, stating they have been actively exploited in the wild. The vulnerabilities in question are as follows – CVE-2025-66376 (CVSS score: 7.2) – A stored cross-site scripting
Cloud Access Security Broker – ein Kaufratgeber
Lesen Sie, worauf es bei der Wahl eines Cloud Access Security Broker ankommt – und welche Anbieter was genau zu bieten haben. Jack the sparow | shutterstock.com Ein Cloud Access Security Broker (CASB) sitzt zwischen Enterprise-Endpunkten und Cloud-Ressourcen und fungiert dabei als eine Art Monitoring-Gateway. Eine CASB-Lösung: gewährt Einblicke in Benutzeraktivitäten in der Cloud, setzt […]
ISC Stormcast For Thursday, March 19th, 2026 https://isc.sans.edu/podcastdetail/9856, (Thu, Mar 19th)
Post Content
Interesting Message Stored in Cowrie Logs, (Wed, Mar 18th)
This activity was found and reported by BACS student Adam Thorman as part of one of his assignments which I posted his final paper [1] last week. This activity appeared to only have occurred on the 19 Feb 2026 where at least 2 sensors detected on the same day by DShield sensor in the cowrie logs […]
“조직의 문제는 그대로” 멀티 에이전트 협업이 동작하지 않는 이유
진정한 의미의 멀티 에이전트 협업은 아직 제대로 작동하지 않는다는 지적이 나왔다. 일부 AI 업계 옹호론자들은 수십 개의 에이전트가 거의 인간 개입 없이 함께 움직이며 복잡한 문제를 해결하는 미래를 제시하고 있다. 하지만 현재까지는 이런 시나리오가 환상에 가깝다는 평가다. 멀티 에이전트 AI에 관한 새로운 연구 결과에 따르면, AI 에이전트는 각각 분리된 작업을 순차적으로 처리할 때는 효과적이지만, 여러 […]
USAT to Dominate Times Square with St. Patrick’s Day Digital Dollar Activation
On St. Patrick’s Day, as 2 million spectators flood the streets of New York City, USAT, a digital dollar issued by Anchorage Digital Bank, is taking over Times Square. The brand activation combines synchronized digital billboards with a street-level campaign designed to introduce digital dollar payments to a mainstream audience. The activation coincides with the […]
“AI가 실수하면 보험으로 보장” 일레븐랩스, AI 에이전트 리스크 보장 체계 공개
인공지능(AI) 오디오 연구 및 개발 기업 일레븐랩스가 AI 리스크 평가 전문 기업 AIUC(Artificial Intelligence Underwriting Company)와 협력해 AI 음성 에이전트 전용 보험 제도를 도입한다고 18일 밝혔다. 이번 제도는 기업의 고객지원이나 영업 현장에서 활용되는 일레븐랩스의 AI 에이전트 ‘일레븐에이전트(ElevenAgents)’가 잘못된 정보를 제공하거나 부적절한 대응으로 인해 손해가 발생할 경우, 이에 대한 보장을 제공하는 구조를 갖추고 있다. 이를 통해 […]
Why hardware + software development fails
Hardware and software together form one of the most powerful ways to interact with an environment. The potential is enormous. Executives see the business opportunities, the technology looks feasible and the plan seems straightforward: allocate money, assign engineers, set timelines and watch the product come to life. That’s the high point, however. From there, projects […]
AI is coming for your office productivity suite, too
Office-style productivity tools are due for a major disruption from AI over the next year, with competing products and new user interfaces coming soon, several experts say. Generative AI and AI agents will bring the first real challenge in the past 30 years to mainstream productivity tools such as Microsoft 365 and Google Workspace, with […]
Mistral launches Forge to help enterprises build their own AI models
Mistral has introduced Forge, a new platform aimed at helping enterprises move beyond generic AI systems by enabling them to train and adapt models on proprietary data. Today’s AI systems are largely developed using open internet data and are built to handle a wide variety of general tasks. However, enterprises depend on deeply embedded internal […]
The 5 mission-critical checkpoints before taking AI applications live
In my work advising technology leaders, I’ve seen a subtle yet dangerous pattern emerging in how organizations are adopting AI coding tools. As we lower the barrier between imagination and implementation, developers and founders are finding that they can create applications faster than ever with the tools that are becoming increasingly available. This has exploded […]
How CIOs can use AI to overcome M&A integration headaches
One of the hardest parts of M&A activity is integrating systems and data, and inheriting a company’s IT architecture means absorbing a complex array of platforms and processes. However, research suggests growth-focused companies can use targeted AI to overcome M&A challenges. McKinsey reported last year that 42% of business leaders believe gen AI has the […]
The post-cloud data center: Back in fashion, but not like before
For most of the last decade, I watched enterprise infrastructure strategy follow a simple arc: abstract complexity, speed up provisioning, move as much as possible into the cloud. That shift delivered real value. It shortened deployment cycles, empowered product teams and removed capital friction that had slowed change. Cloud did not eliminate the need for […]
量子で何が変わる 産業別ユースケースを「効くところ」から理解する
産業インパクトを生む「三つの問題タイプ」 量子コンピューターの話題は、しばしば「速いか遅いか」で語られますが、産業での価値はもっと立体的です。重要なのは、計算が難しい理由が何か、そしてその難しさに量子の性質が噛み合うかどうかです。初心者が最初に押さえるべき見取り図として、産業インパクトにつながりやすい問題タイプは大きく三つに分けて考えると整理しやすくなります。最適化、シミュレーション、そして機械学習やデータ解析です。最適化は、膨大な選択肢の中から条件を満たす最良の組み合わせを探す問題です。工場の生産順序、物流の配車、電力の需給計画、金融の資産配分など、現場の意思決定はほとんど最適化に分解できます。シミュレーションは、自然現象や物理・化学的な振る舞いを計算で再現する問題で、材料設計や創薬、反応プロセスの設計など研究開発の中核にあります。機械学習やデータ解析は、データから予測や分類、生成を行う枠組みですが、学習の裏側には巨大な最適化があり、特徴量やモデルの表現力の限界とも戦っています。この三つは別々に見えて、実務では絡み合います。例えば材料開発では、候補物質の性質をシミュレーションで見積もり、目的特性が最大になる配合やプロセス条件を最適化し、実験データで機械学習モデルを育てて探索を加速します。量子が効く余地は、この連鎖のどこに計算の壁があるかで決まります。 量子が効く条件は「構造がある難しさ」 量子コンピューターは、何でもかんでも速くする装置ではありません。むしろ、総当たりをそのまま置き換える発想だと、期待が先行して失望につながります。量子が力を発揮しやすいのは、問題の中に規則性や構造があり、その構造を利用して“欲しい答えの確率を上げる”ように計算を設計できる場合です。産業の問題は、多くが構造を持っています。制約条件は法規、設備能力、納期、品質基準などで定義され、目的関数もコストや収益、エネルギー効率といった形で定量化できます。さらに、現場には「この制約はほぼ固定」「この変数は連続値」「このパラメータは季節性がある」といった性質があり、これはアルゴリズムの工夫につながります。量子は、この工夫の中で特定の計算を短縮したり、古典では扱いにくい状態空間を自然に表現したりする役割を担います。ただしここで重要なのは、量子が単独で答えを出すとは限らない点です。現時点では、古典コンピューターと組み合わせたハイブリッド型の考え方が中心になりやすく、量子は“難所の一部を担当するアクセラレータ”として位置づけるほうが現実的です。だからこそ、産業別のユースケースを考えるときは、業務フロー全体のどこに計算の壁があり、どこを量子に任せると価値が出るのかを見抜くことが肝心になります。 製造業と物流での期待 計画と配車だけではない 製造業と物流は、量子が話題になると真っ先に挙がる領域です。理由は単純で、組み合わせが増えすぎる問題が多いからです。工場の生産計画は、機械の空き時間、段取り替え、作業者スキル、材料供給、検査工程、納期といった制約が複雑に絡み、最適な順序を探すほど候補が爆発します。物流でも、車両の容量、積載制約、配送窓、交通状況、ドライバーの労務条件などが絡み、単純な最短経路問題では済みません。ここで量子に期待されるのは、完璧な最適解を一発で出すことより、良い解を早く出して意思決定の回転を上げることです。現場は計画が一度決まって終わりではなく、遅延や欠品、急な注文変更が起きます。変更が起きたときに、手戻りを小さく抑えながら計画を再最適化できると価値が出ます。さらに見落とされがちなのが、工程設計や設備投資の意思決定です。新ラインのレイアウト、搬送ロボットの導入台数、バッファ設計、保全計画など、長期の意思決定も最適化の塊です。短期のスケジューリングだけではなく、中期・長期の設計問題にまで視野を広げると、量子が効く可能性のある論点は増えていきます。とはいえ、最適化は古典計算でも手法が成熟している分野でもあるため、量子を使う意義は「古典では計算が間に合わない領域」に絞って見極める必要があります。古典の高度な近似やヒューリスティクスと比較して、どこで差が出るのかを測る姿勢が欠かせません。 化学・材料は量子の本丸になり得る 化学・材料領域が「量子の本丸」と言われるのは、扱いたい対象そのものが量子的だからです。分子や材料の性質は電子の振る舞いで決まり、その電子は量子力学のルールで動きます。ところが、電子の相互作用を正確に計算するのは古典コンピューターにとって非常に重い仕事です。近似法は多く存在しますが、求めたい精度や対象の複雑さによっては、計算コストが急激に増え、探索のボトルネックになります。もし量子コンピューターが十分に安定し、必要な規模で動作するようになれば、反応経路の評価や触媒設計、電池材料の候補探索などで、計算の信頼性や探索速度が上がる可能性があります。これが実現すると、実験の回数を減らすというより、実験で試す候補の質を上げる方向で効いてきます。外れ候補を早期に落とし、有望候補の絞り込みを精緻化できれば、研究開発のサイクル全体が短くなり得ます。ただし、ここでも過度な期待は禁物です。材料開発は計算だけで完結せず、合成の難易度、加工性、耐久性、コスト、供給網といった“現実の制約”が最後に立ちはだかります。量子計算が強くなるほど、逆に「計算でわかった性質を、製造可能な形に落とす」工程が重要になります。量子の価値は、研究開発の一部を置き換えるのではなく、探索の地図をより確かなものにして意思決定を変える、と捉えるほうが現実に近いでしょう。 金融は何が変わるのか 速さより「不確実性の扱い」が焦点 金融で量子が語られるとき、最適化やシミュレーションが主役になります。資産配分の最適化は制約の多い組み合わせ問題になりやすく、またリスク評価は多数のシナリオを回して損失分布を推定するシミュレーションになりやすいからです。特に実務で重いのは、将来の不確実性をどう扱うかという点です。市場は常に揺れ、モデルは完全ではなく、規制や資本制約も絡みます。ここで量子に期待されるのは、単に計算を速めることに留まりません。より多くのシナリオやより複雑なモデルを扱えるようになれば、見落としがちなリスクを早期に検出できる可能性があります。また、意思決定に使う時間が短縮されれば、市場変動に対する反応を改善できるかもしれません。一方で、金融は説明責任が強い領域です。モデルの妥当性、結果の再現性、監査への対応が求められ、ブラックボックスへの耐性は高くありません。量子を導入するなら、結果の評価方法や、古典手法との整合、そして運用上のガバナンスまで含めて設計する必要があります。言い換えると、金融での量子は、技術の優秀さだけでは採用されません。業務プロセスと規制環境に耐える形に落とせるかが勝負になります。 創薬・医療での価値の出方 「分子設計」と「現場」は別の課題 創薬で量子が期待される理由は、分子の相互作用や反応性の評価が難しく、ここが研究開発の不確実性を生むからです。候補分子を設計しても、目的の標的に効くか、毒性はないか、体内で安定か、といった要件は多く、実験は高コストです。量子計算が分子の性質推定を改善できれば、候補探索の初期段階で判断精度が上がり、遠回りを減らせる可能性があります。ただし、医療の現場に直接量子コンピューターが入って診断を変える、という話は現実的には距離があります。医療現場の課題はデータ統合、制度、責任分界、現場運用など多面的で、計算の速さだけでは解決しません。創薬や材料と同様に、量子が効くのは“研究開発の探索”であり、臨床や患者ケアの意思決定は別の条件で動いています。だからこそ、医療分野で量子のインパクトを語るなら、研究開発のどの工程で、どの指標が改善すると価値になるかを明確にする必要があります。探索期間の短縮、成功確率の改善、候補の質の向上といった形で価値が語れると、現実の投資判断につながります。 暗号とセキュリティは「脅威」と「対策」が同時に進む 産業への影響という観点で、量子が最も社会に近い場所に触れるのがセキュリティです。量子計算が進むと、現在広く使われている公開鍵暗号の一部が将来的に破られる可能性が指摘されています。ここで重要なのは、脅威が現実化してから対策を始めても遅い場合がある点です。機密情報は長期間守る必要があり、さらにシステムの暗号移行は大規模で時間がかかります。そのため、セキュリティ領域では、量子コンピューターの性能向上と並行して、量子に強い暗号方式への移行準備が進みます。企業にとっての実務的なポイントは、量子がいつ来るかを当てることより、移行に時間がかかる資産を洗い出し、更新計画に組み込むことです。量子は“来たら考える技術”ではなく、“来る前に変えておく必要がある領域がある技術”だという点で、他のユースケースと性格が異なります。 結局、どの企業が何から始めるべきか 量子の産業インパクトは、派手なユースケースの数ではなく、計算の壁が実際に利益や時間や品質を圧迫しているかで決まります。まずは自社の業務や研究開発の流れを眺め、計算がボトルネックになっている箇所を特定し、その難しさが最適化、シミュレーション、機械学習のどれに近いかを整理することが出発点になります。そのうえで、古典手法でどこまで改善できるか、量子を使うならどの部分を任せるのが自然か、結果をどう評価するかを設計していく流れが現実的です。次の記事では、量子アルゴリズムの代表例を取り上げ、なぜ「全部同時に試す」ではないのか、どの問題で速くなる可能性があるのかを、誤解が生まれやすいポイントを避けながら解説します。ここまでの産業別の見取り図とつなげて読むことで、量子への期待を現実の判断に落とし込みやすくなるはずです。
2025086670901 Roger Roemmich CRD 1293322 AWC ks.pdf
2025086670901 Roger Roemmich CRD 1293322 AWC ks.pdf Anonymous (not verified) Wed, 03/18/2026 – 14:50 Case ID 2025086670901 Document Number 21769fdd Document Type AWCs (Letters of Acceptance, Waiver, and Consent) Individuals Roger Roemmich Action Date Wed, 03/18/2026 – 12:00 Related Content Off Attachment 2025086670901 Roger Roemmich CRD 1293322 AWC ks.pdf Individual CRD 1293322
OFAC Sanctions DPRK IT Worker Network Funding WMD Programs Through Fake Remote Jobs
The U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC) has sanctioned six individuals and two entities for their involvement in the Democratic People’s Republic of Korea (DPRK) information technology (IT) worker scheme with an aim to defraud U.S. businesses and generate illicit revenue for the regime to fund its weapons of mass […]
Hackers can raid iOS 18 with an infected link. Have you updated yet to iOS26?
Emma Roth reports: If you’ve been putting off an update to iOS 26, now might be the time to do it. On Wednesday, security researchers published findings on a new hacking tool that targets iPhones running iOS 18.4 to 18.6.2, as reported earlier by Wired. The “DarkSword” exploit allows bad actors to scoop up the personal information… […]
The “Internet YIFF Machine” leaks millions of “anonymous” tips to DDoSecrets
Mikael Thalen reports: A California resident had an urgent message for the police. A family tied to Mexico’s notorious Sinaloa drug cartel was trafficking hundreds of pounds of marijuana at a time, and the tipster knew how the police could apprehend these “highly violent” people who “always carry weapons.” Equally urgent to the tipster: secrecy…. […]
UK Watchdog Tightens Cyber Incident Reporting Rules as Attacks Surge
Yaminin Kahlia reports: Britain’s finance regulator confirmed new incident and third-party reporting rules on Wednesday, giving firms 12 months to prepare for clearer requirements aimed at strengthening resilience against cyber attacks and third-party disruptions. The new rules, which take effect on March 18, 2027, come after over 40% of cyber incidents reported to the Financial… […]
24-02162(2).pdf
24-02162(2).pdf Anonymous (not verified) Wed, 03/18/2026 – 13:10 Case ID 24-02162 Forum FINRA Document Type Order to Confirm Claimants Tyler Pratt Respondents RBC Capital Markets LLC Neutrals Steven H. Vogel Stephany Adriene Watson Kirtley M. Thiesmeyer Hearing Site Los Angeles, CA Award Document 24-02162(2).pdf Documentum DocID a1603779 Award Date Official Thu, 09/04/2025 – 12:00 Related […]
24-00438.pdf
24-00438.pdf Anonymous (not verified) Wed, 03/18/2026 – 12:20 Case ID 24-00438 Forum FINRA Document Type Award Claimants Sonenshine & Company LLC Sonenshine Partners LLC Respondents Cosmos Merger Sub Inc. Enghouse Interactive, Inc. Enghouse Systems Ltd Qumu Corporation Neutrals Karen J. Orlin Thomas M. Madden Charles L Brutten Hearing Site New York, NY Award Document 24-00438.pdf […]
Alexander Yon Comment On Regulatory Notice 26-02
Alexander Yon Comment On Regulatory Notice 26-02 fnrw-backend Wed, 03/18/2026 – 12:19 Alexander Yon alexanderyon@gmail.com Regulatory Notice 26-02 Core Official Date Mon, 03/09/2026 – 12:00 Comment File Alexander Yon_26-02_3.9.2026 [REDACTED].pdf
Regulatory Notice 26-08
Regulatory Notice 26-08 K30658 Wed, 03/18/2026 – 12:03 Summary In February 2012, pursuant to an SEC order, FINRA established an accounting support fee (GASB Accounting Support Fee) to adequately fund the annual budget of the Governmental Accounting Standards Board (GASB). The GASB Accounting Support Fee is collected on a quarterly basis from member firms that […]
Interlock Ransomware Exploits Cisco FMC Zero-Day CVE-2026-20131 for Root Access
Amazon Threat Intelligence is warning of an active Interlock ransomware campaign that’s exploiting a recently disclosed critical security flaw in Cisco Secure Firewall Management Center (FMC) Software. The vulnerability in question is CVE-2026-20131 (CVSS score: 10.0), a case of insecure deserialization of user-supplied Java byte stream, which could allow an unauthenticated, remote attacker to
Scans for "adminer", (Wed, Mar 18th)
A very popular target of attackers scanning our honeypots is “phpmyadmin”. phpMyAdmin is a script first released in the late 90s, before many security concepts had been discovered. It’s rich history of vulnerabilities made it a favorite target. Its alternative, “adminer”, began appearing about a decade later (https://www.adminer.org). One of its main “selling” points was simplicity. […]
Reco targets AI agent blind spots with new security capability
SaaS security platform Reco has decided to address the “agent sprawl” challenge from the increased adoption of AI-driven tools by enterprises. It argues that enterprises are faced with a security situation as numerous autonomous agents now traverse multiple systems, accessing sensitive data, and executing actions without direct human oversight. To help contain this risk, the […]
CISA Adds One Known Exploited Vulnerability to Catalog
CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-20963 Microsoft SharePoint Deserialization of Untrusted Data Vulnerability This type of vulnerability is a frequent attack vector for malicious cyber actors and poses significant risks to the federal enterprise. Binding Operational Directive (BOD) 22-01: Reducing the […]
CISA Urges Endpoint Management System Hardening After Cyberattack Against US Organization
CISA is aware of malicious cyber activity targeting endpoint management systems of U.S. organizations based on the March 11, 2026 cyberattack against U.S.-based medical technology firm Stryker Corporation, which affected their Microsoft environment.1 To defend against similar malicious cyber activity, CISA urges organizations to harden endpoint management system configurations using the recommendations and resources provided […]
CISA Adds One Known Exploited Vulnerability to Catalog
CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2025-66376 Synacor Zimbra Collaboration Suite (ZCS) Cross-Site Scripting Vulnerability This type of vulnerability is a frequent attack vector for malicious cyber actors and poses significant risks to the federal enterprise. Binding Operational Directive (BOD) 22-01: Reducing […]
Claude Code Security and Magecart: Getting the Threat Model Right
When a Magecart payload hides inside the EXIF data of a dynamically loaded third-party favicon, no repository scanner will catch it – because the malicious code never actually touches your repo. As teams adopt Claude Code Security for static analysis, this is the exact technical boundary where AI code scanning stops and client-side runtime execution […]
9 Critical IP KVM Flaws Enable Unauthenticated Root Access Across Four Vendors
Cybersecurity researchers have warned about the risks posed by low-cost IP KVM (Keyboard, Video, Mouse over Internet Protocol) devices, which can grant attackers extensive control over compromised hosts. The nine vulnerabilities, discovered by Eclypsium, span four different products from GL-iNet Comet RM-1, Angeet/Yeeso ES3 KVM, Sipeed NanoKVM, and JetKVM. The most severe of them allow
ISC Stormcast For Wednesday, March 18th, 2026 https://isc.sans.edu/podcastdetail/9854, (Wed, Mar 18th)
Post Content
Tracebit Raises $20M for Cloud-Native Deception Technology
The company plans to scale its products, expand to new markets, and grow its marketing and engineering teams. The post Tracebit Raises $20M for Cloud-Native Deception Technology appeared first on SecurityWeek.
Google, Meta, Microsoft Among Signatories of Pact to Combat Scams
Several major tech and retail companies have signed an industry accord against online scams and fraud. The post Google, Meta, Microsoft Among Signatories of Pact to Combat Scams appeared first on SecurityWeek.
174 Vulnerabilities Targeted by RondoDox Botnet
The botnet has increased its activity, peaking at 15,000 exploitation attempts per day, and taking a more targeted approach. The post 174 Vulnerabilities Targeted by RondoDox Botnet appeared first on SecurityWeek.
Robotic Surgery Giant Intuitive Discloses Cyberattack
The company says some of its internal business applications were accessed after an employee fell victim to a phishing attack. The post Robotic Surgery Giant Intuitive Discloses Cyberattack appeared first on SecurityWeek.
Surf AI Raises $57 Million for Agentic Security Operations Platform
The company has announced its launch, backed by funding from Accel, Cyberstarts, and Boldstart Ventures. The post Surf AI Raises $57 Million for Agentic Security Operations Platform appeared first on SecurityWeek.
UK Companies House Exposed Details of Millions of Firms
The government agency confirmed the vulnerability could have been exploited to obtain company details and alter records. The post UK Companies House Exposed Details of Millions of Firms appeared first on SecurityWeek.
Tech Giants Invest $12.5 Million in Open Source Security
Anthropic, AWS, Google, Microsoft, and OpenAI fund the Linux Foundation’s long-term security initiatives focused on open source software. The post Tech Giants Invest $12.5 Million in Open Source Security appeared first on SecurityWeek.
Researcher Discovers 4th WhatsApp View Once Bypass; Meta Won’t Patch
Meta does not plan on fixing the vulnerability because it involves the use of a modified client application. The post Researcher Discovers 4th WhatsApp View Once Bypass; Meta Won’t Patch appeared first on SecurityWeek.
BSI moniert Software-Sicherheit im Gesundheitswesen
Schwachstellen bei Praxisverwaltungssystemen hätten zu Cyberangriffen führen können. Khakimullin Aleksandr – shutterstock.com Das Bundesamt für Sicherheit in der Informationstechnik (BSI) mahnt einen besseren Schutz sensibler Gesundheitsdaten in Computer-Anwendungen von Arztpraxen, Kliniken und in der Pflege an. Die IT-Sicherheit von Softwareprodukten im Gesundheitswesen sei “ausbaufähig”, teilte das Amt nach Tests von Standardkonfigurationen verschiedener Anwendungen mit. In einem Projekt untersucht wurden […]
Product Walkthrough: How Mesh CSMA Reveals and Breaks Attack Paths to Crown Jewels
Security teams today are not short on tools or data. They are overwhelmed by both. Yet within the terabytes of alerts, exposures, and misconfigurations – security teams still struggle to understand context: Q: Which exposures, misconfigurations, and vulnerabilities chain together to create viable attack paths to crown jewels? Even the most mature security teams can’t […]
Can you prove the person on the other side is real?
In my role, I spend a lot of time thinking about what “trust” means when money, grief and identity collide. By 2026, the real competition in our space won’t be who automates fastest or offers the most AI features. It will be who can still tell a legitimate executor, beneficiary or family representative from a […]
ClickFix treibt neue Infostealer-Kampagnen an
ClickFix-Kampagnen werden immer raffinierter und zielen verstärkt auf WordPress-Webseiten. Gorodenkoff | shutterstock.com Cyberkriminelle kombinieren kompromittierte Websites mit immer raffinierteren Social-Engineering-Köder-Methoden, um neue Infostealer-Malware zu verbreiten. Bekannt ist das Ganze unter dem Namen ClickFix – und zudem effektiv: In einer einzigen Kampagne wurden über 250 WordPress-Websites in zwölf Ländern infiziert. Während diese Kampagne zu unauffälligen, im […]
Cybersecurity and privacy priorities for 2026: The legal risk map
Escalating cybersecurity threats and growing privacy concerns lurk around every corner these days. Evolving technology and mounting regulations continue to present both the perils and solutions. All players — public and private, organizations and individuals alike — are to conquer the next quest in this realm. In the most recent Annual Litigation Trends Survey by […]
Ubuntu CVE-2026-3888 Bug Lets Attackers Gain Root via systemd Cleanup Timing Exploit
A high-severity security flaw affecting default installations of Ubuntu Desktop versions 24.04 and later could be exploited to escalate privileges to the root level. Tracked as CVE-2026-3888 (CVSS score: 7.8), the issue could allow an attacker to seize control of a susceptible system. “This flaw (CVE-2026-3888) allows an unprivileged local attacker to escalate privileges to […]
CISOs rethink their data protection strategies
Scott Kopcha witnessed what CISOs everywhere are seeing: employees eager to use artificial intelligence, whether through public models or custom AI tools, accessing company data at a breathtaking rate and volume. Kopcha already had a mature data protection strategy in place; as a law firm, his organization had a long history of safeguarding sensitive data. […]
Apple Fixes WebKit Vulnerability Enabling Same-Origin Policy Bypass on iOS and macOS
Apple on Tuesday released its first round of Background Security Improvements to address a security flaw in WebKit that affects iOS, iPadOS, and macOS. The vulnerability, tracked as CVE-2026-20643 (CVSS score: N/A), has been described as a cross-origin issue in WebKit’s Navigation API that could be exploited to bypass the same-origin policy when processing maliciously […]
Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE via Port 23
Cybersecurity researchers have disclosed a critical security flaw impacting the GNU InetUtils telnet daemon (telnetd) that could be exploited by an unauthenticated remote attacker to execute arbitrary code with elevated privileges. The vulnerability, tracked as CVE-2026-32746, carries a CVSS score of 9.8 out of 10.0. It has been described as a case of out-of-bounds write […]
Die besten Hacker-Filme
Vorsicht, dieses Film-Listicle kann zu Prokrastination verführen! Nomad Soul | shutterstock.com Security-Profis und -Entscheider mit Hang zur Filmkunst müssen auch nach Feierabend nicht auf ihr Leib-und-Magen-Thema verzichten – einer Fülle cineastischer Ergüsse sei Dank. Das Film-Pflichtprogramm für Security-Profis Wir haben die unserer Meinung nach besten (Achtung: Nerd-Brille erforderlich) Hacker-Filme nachfolgend für Sie zusammengestellt – in […]
Risky Business #829 -- Sneaky lobsters: Why AI is the new insider threat
On this week’s show, Patrick Gray, Adam Boileau and James WIlson discuss the week’s cybersecurity news. They discuss: Iran’s Intune-based wiper attack on medical device maker Stryker Qihoo 360’s AI publishes its own wildcard TLS cert private key Instagram is canning its end-to-end encrypted messaging What’s going on with mobile internet access in Moscow? The […]
24-01046.pdf
24-01046.pdf Anonymous (not verified) Tue, 03/17/2026 – 18:45 Case ID 24-01046 Forum FINRA Document Type Award Claimants Viktoriia Strange-Vitkovska Respondents NYLife Securities LLC Neutrals Steven N. Ainbinder Seth L. Finkel Linda J. Baer Hearing Site New York, NY Award Document 24-01046.pdf Documentum DocID 2cc6d95e Award Date Official Mon, 03/16/2026 – 12:00 Related Content Off Claimant […]
25-00949.pdf
25-00949.pdf Anonymous (not verified) Tue, 03/17/2026 – 18:45 Case ID 25-00949 Forum FINRA Document Type Award Claimants Boustead Securities, LLC Respondents Moveaction Co., Ltd. Neutrals Jonathan H. Krotinger Mary Mackey Joseph Edward Floren Hearing Site San Francisco, CA Award Document 25-00949.pdf Documentum DocID ce330273 Award Date Official Tue, 03/17/2026 – 12:00 Related Content Off Claimant […]
25-00937.pdf
25-00937.pdf Anonymous (not verified) Tue, 03/17/2026 – 18:45 Case ID 25-00937 Forum FINRA Document Type Award Claimants Sue Van Der Linden Respondents Morgan Stanley Morgan Stanley & Co., LLC Neutrals Steven Gerard Goerke Nanci Sondra Landy Jason Allen Rosner Hearing Site Washington, DC Award Document 25-00937.pdf Documentum DocID c7f332ab Award Date Official Tue, 03/17/2026 – […]
2021071714201 Spartan Capital Securities LLC CRD 146251_John Dennis Lowry CRD 4336146_Kim Marie Monchik CRD 2528972 Complaint ks.pdf
2021071714201 Spartan Capital Securities LLC CRD 146251_John Dennis Lowry CRD 4336146_Kim Marie Monchik CRD 2528972 Complaint ks.pdf Anonymous (not verified) Tue, 03/17/2026 – 15:40 Case ID 2021071714201 Document Number e143e11f Document Type Complaints Individuals John Dennis Lowry Kim Marie Monchik Action Date Tue, 03/17/2026 – 12:00 Related Content Off Attachment 2021071714201 Spartan Capital Securities LLC […]
Nvidia NemoClaw promises to run OpenClaw agents securely
In the few short weeks since OpenClaw became the biggest story in agentic AI, it has been dogged by concerns that it is not secure enough to be safely let loose in enterprises. This week at the Nvidia GPU Technology Conference (GTC) conference, CEO Jensen Huang announced what he believes is the answer: NemoClaw. Built […]
How agentic AI will self-assemble the enterprise stack
For more than a decade, application modernization has been viewed as a blueprint challenge or roadmap discipline. Organizations mapped their assets, created transformation frameworks, developed cost models and pushed execution through human-led programs. With external uncertainties, changing regulatory demands and competitive trends, CIOs’ strategic priorities have shifted between enterprise architectures, cloud and hybrid cloud models, […]
4 gen AI success stories
Gen AI is a form of AI that outputs content — text, code, voice, images, and videos — from prompts. Since the release of DALL-E for images in 2021, and then, the following year, ChatGPT for text, and Midjourney and Stable Diffusion for images, companies have been eager to find out how gen AI can […]
True multi-agent collaboration doesn’t work
Some AI advocates are selling a vision in which dozens of agents work together to solve complex problems with little to no human intervention. So far, that scenario is a myth. AI agents can be effective when working one-by-one on separate tasks, but when grouped together to complete complex assignments, they fail most of the […]
AI is redefining what enterprises expect from data centers
Enterprise AI is moving from copilots to agents, systems that don’t just recommend, but act. That shift turns infrastructure into a governance layer. The data center is becoming the place where autonomy either becomes accountable or becomes a risk. AI workloads are breaking old data center assumptions For years, enterprise data center conversations revolved around […]
The 3-body problem of digital transformation — Part 3: The talent
Digital transformation has its own physics. Three bodies, three gravities, one shared orbit. The organization in its transformational journey — pulling for control and efficiency. The transformation partners — the force that can accelerate or destabilize the efforts. The talent — orbiting with its own velocity, shaped by ambition, life stage and opportunity. If organizations […]
칼럼 | 관망하는 CTO는 사라진다···AI 시대의 새로운 CTO상
불과 6개월 전만 해도 대규모언어모델(LLM)은 저연차 엔지니어의 업무를 대신할 수 있는 도구로 여겨졌다. 반복적인 보일러플레이트 코드는 맡기고, 핵심적인 사고는 사람이 담당하면 된다는 인식이었다. 비교적 안심할 수 있는 서사였다. 그러나 그 설명은 이미 낡았다. 현재 시장에 나온 최신 LLM은 한 사람이 동시에 모두 고려하기 어려운 각종 매개변수와 제약 조건, 복잡한 상호 의존성을 반영해 시스템 아키텍처를 설계할 […]
워크데이, 허정열 한국지사장 선임···국내 파트너 생태계 강화
이번에 선임된 허정열 워크데이코리아 지사장은 한국 시장의 성장 가속화와 파트너 생태계 강화를 중심으로 국내 비즈니스 전략을 총괄할 예정이다. 특히 국내 주요 기업들과의 협력을 통해 워크데이의 AI 기반 솔루션을 핵심 업무 전반에 통합하고, 기업들의 디지털 전환 및 AI 도입을 지원할 방침이다. 허 신임 지사장은 워크데이 이전에 아마존웹서비스(AWS), 구글, 세일즈포스 등 글로벌 기술 기업에서 25년 이상 근무하며 […]
The AI investment paradox: Genuine transformation or FOMO at scale?
As Microsoft, Alphabet, Amazon and Meta plan to invest a combined $320 billion in AI technologies in 2025 based on the findings of Ropes & Gray LLP, the technology industry faces a critical question: Are we witnessing a transformative productivity revolution, or inflating the most anticipated bubble in market history? The question isn’t academic. For […]
人が違えば提供価値も違う:日米SIの人材構造・キャリア・評価制度の比較
キャリアパスの前提が違うと「強みの作り方」が変わる 日米のSIの違いは、技術や契約の前に、働く人のキャリアの前提から生まれている。日本では、メンバーシップ型の雇用慣行が長く続き、企業が人材を抱え、長期で育て、配置転換で経験を積ませる形が一般的だった。もちろん近年はジョブ型への移行や中途採用の増加が進んでいるが、なお「組織の中で育てる」文化は根強い。結果として、SIの強みは、個人の一点突破の専門性よりも、プロジェクトを回し切る総合力、調整力、品質文化の体得、顧客業務の理解といった“現場で身につく力”として蓄積されやすい。 米国では、ジョブ型の考え方がより強く、職務記述に基づいて採用し、専門性を市場で磨き、転職でキャリアを積むことが自然な選択肢になりやすい。SIにおいても、特定クラウドのアーキテクト、データエンジニア、セキュリティスペシャリスト、プロダクトマネージャー、チェンジマネジメントのコンサルタントなど、職能ごとの専門家を集めてプロジェクトを組成する発想が強い。個人は「自分の専門性が何か」を説明できることが重要になり、企業側は「その専門性をどう束ねて価値にするか」が競争力になりやすい。 この前提差は、SIが何を売りにするかにもつながる。日本のSIは、長期育成で培った組織的な品質と安定稼働を強みにしやすい。米国のSIは、専門家を投入して短期間で変革を進める推進力を強みにしやすい。どちらが優れているかではなく、「強みの作り方」が違うため、同じ言葉で比較すると誤解が生まれやすい。 役割分担が違うと、意思決定と責任の置き方が変わる 人材構造の違いは、プロジェクト内の役割分担にも表れる。日本のSIプロジェクトは、PMを中心に、要件定義からテスト、運用引継ぎまでを貫く体制を組みやすい。その中で、役割の境界は比較的柔らかく、個々人が複数の帽子をかぶりながら調整していく場面が多い。特に顧客折衝、協力会社管理、品質管理、進捗管理など、プロジェクトを成立させるための“横串”業務が厚い。これは、大規模でステークホルダーが多い案件において、強い武器になる。 米国のSIでは、役割の境界がより明確に定義されやすい。プロダクトの価値と優先順位を決める責任者、全体アーキテクチャの責任者、セキュリティの責任者、データの責任者、運用の責任者などが分かれ、それぞれが自分の領域で決定権と説明責任を持つ形になりやすい。もちろん現場で相互に支援はするが、「誰が何を決めるのか」が明確であることが、スピードと品質を両立させる前提になる。 この役割設計の差は、意思決定の方法を変える。日本の現場では、合意形成を重ねて関係者の納得感を作ることで、後戻りを減らし、リスクを下げる方向に働きやすい。米国の現場では、決める人が決め、結果を計測し、必要ならすぐに修正する方向に働きやすい。合意形成が不要という話ではないが、合意形成の主役が「会議の場」ではなく「責任者の判断」に寄りやすい。 日本で米国型の動きがうまくいかないとき、原因はコミュニケーション不足というより、役割と権限の設計が曖昧なまま、スピードだけを求めてしまう点にある。逆に米国で日本型のやり方がうまくいかないときは、責任者が判断を委譲せず、合意形成のプロセスに時間をかけ過ぎて、変化の機会を逃す点にある。人材と役割は、プロジェクトの運転方式を決める。 評価指標が違うと、提案の方向性が変わる 同じSI企業でも、何を評価するかで、現場の優先順位は変わる。日本のSIでは、稼働率や人月売上、納期遵守、品質、障害件数の少なさなど、安定運営に紐づく指標が重視されやすい。これはミッションクリティカルな領域での信頼を築くうえで合理的だが、別の副作用もある。再利用資産を作る、標準化に投資する、改善の仕組みを作るといった活動は、短期の稼働率や売上に直接結びつきにくい。すると、長期的には効く活動が後回しになりやすい。 米国のSIでは、当然売上や稼働の指標はあるものの、それに加えて成果指標や顧客価値、継続契約、拡張契約、顧客の成功事例といった“アウトカム寄り”の評価が前面に出やすい。例えば、クラウド移行の案件なら移行完了ではなく、移行後の運用コストやリリース頻度、障害復旧時間などが語られ、それが次の受注の根拠になる。個人の評価でも、専門性の影響度や顧客へのインパクト、リーダーシップが重視されやすく、会社としては「成果の説明ができる人材」を増やす方向に動きやすい。 評価が提案を変える、という点はとても重要だ。現場が工数を積むことで評価されるなら、提案は工数を前提に組み立てられやすい。成果を出すことで評価されるなら、提案は成果に至る道筋と再現性を示す方向に寄りやすい。言い換えると、ビジネスモデルの違いは、実は評価制度の違いとして現場に降りてくる。制度が変わらなければ、現場の行動も変わりにくい。 外部人材とパートナーの使い方が違う 日本のSIは、協力会社との連携によって大規模な体制を組み、長期で運用していく能力に強みがある。多様な企業が関わることで、特定領域のノウハウを補い、全国規模のリソースを確保し、品質と手順を統一しながらプロジェクトを進める。ここで重要なのは、協力会社を含めた全体を一つのチームとして機能させる統制力であり、これが日本のSIの総合力を支えてきた。 米国では、外部人材の使い方がより市場型になりやすい。専門領域に対して必要な期間だけ人材を確保し、プロジェクトごとに編成を変える。パートナー企業も、特定クラウドや特定業界に強い専門集団として機能しやすく、SIはそれらを束ねて価値を作る。契約の形も、専門性を前提に切り分けやすい。結果として、プロジェクトの初期から専門家を投入しやすく、短期で価値を出しやすい反面、チームの一体感や長期運用の継続性をどう担保するかが課題になることもある。 日本がこの差から学べるのは、外部人材活用の是非というより、専門性の調達と配置の設計だ。全部を自社で抱える必要はないが、外部に任せるなら、責任の分界線と知見の内製化の方針を決める必要がある。外部に依存し過ぎれば、組織に知見が残らない。内製にこだわり過ぎれば、変化のスピードに追随できない。どちらのバランスを取るかは、事業戦略と密接に関わる。 育成とナレッジ共有の仕組みが競争力になる 日米の差を“個人能力”の話に落とすと、本質を見失う。実際には、育成とナレッジ共有の仕組みこそが、組織としての差を生む。日本のSIは、OJTを通じて現場で育てる文化が強く、品質や手順、顧客対応の型が、時間をかけて体に染み込む。その一方で、知見が暗黙知として個人やチームに留まり、組織全体の再利用資産になりにくいことがある。プロジェクトの事情が個別最適に寄りやすいほど、知見は局所化しやすい。 米国のSIは、専門性を採用で確保しやすい分、組織としては「専門性を再現可能な形にして横展開する」ことに投資しやすい。フレームワーク、テンプレート、リファレンスアーキテクチャ、導入手順、ベストプラクティス集などを整備し、それを教育と連動させる。個人の経験を組織資産へ変換する回路が太いほど、プロジェクトの立ち上がりは速くなり、品質も安定しやすい。もちろん、これも万能ではなく、型が強すぎると現場適応が弱くなるが、型と適応のバランスを取る力が競争力になる。 日本のSIにとっての鍵は、現場力を維持したまま、暗黙知を資産化する方法を持つことだ。品質文化や調整力は、言語化が難しいが、難しいからこそ資産化できれば強い。ここができると、若手育成の速度も上がり、専門性の可視化も進み、顧客への説明も明確になる。 日本SIが人材面で取りうる現実解 日米比較の結論を「日本もジョブ型にしよう」「転職を増やそう」と単純化すると、現実から離れてしまう。重要なのは制度の模倣ではなく、提供価値に合った人材設計をすることだ。日本のSIが持つ強みは、プロジェクトを最後まで回し切る統制力、品質と安定稼働の知見、長期運用での改善力、顧客業務の深い理解にある。これらは、短期の専門家集団だけでは作りにくい価値でもある。 そのうえで、これから必要になるのは、専門性を組織の中で明確にし、可視化し、評価できるようにすることだ。例えば、クラウドアーキテクト、データ、セキュリティ、プロダクト、運用高度化といった職能を、肩書きではなく責任と成果で定義し、プロジェクトに適切に配置する。専門性の市場価値を認め、学習投資を継続し、再利用資産を作った人が報われる評価を設計する。これができれば、長期育成の強みを残しつつ、変化への強さを組み込める。 日米のSIの差は、人材の優劣ではなく、人材市場と組織設計が生む構造差だ。日本のSIは、長期運用と品質文化という強い土台を持っている。そこに専門性の可視化と再利用の仕組み、成果を語る評価軸を重ねられれば、国内市場でもグローバル市場でも、独自の強さを発揮できる。人が違えば提供価値が違うのではなく、提供価値を決める制度が、人の成長の仕方を変える。その視点で人材を設計することが、次の競争力につながる。
Workday integrates Sana to turn its enterprise apps into agentic execution engines
Workday is rolling out agentic AI capabilities from its acquisition of Sana across its product range and beyond. With Sana for Workday, it aims to help its customers further automate its HR and finance workflows, while Sana Enterprise will extend those capabilities to non-Workday applications too. Much of that automation was already possible, but not […]
AI Flaws in Amazon Bedrock, LangSmith, and SGLang Enable Data Exfiltration and RCE
Cybersecurity researchers have disclosed details of a new method for exfiltrating sensitive data from artificial intelligence (AI) code execution environments using domain name system (DNS) queries. In a report published Monday, BeyondTrust revealed that Amazon Bedrock AgentCore Code Interpreter’s sandbox mode permits outbound DNS queries that an attacker can exploit to enable interactive shells
LeakNet Ransomware Uses ClickFix via Hacked Sites, Deploys Deno In-Memory Loader
The ransomware operation known as LeakNet has adopted the ClickFix social engineering tactic delivered through compromised websites as an initial access method. The use of ClickFix, where users are tricked into manually running malicious commands to address non-existent errors, is a departure from relying on traditional methods for obtaining initial access, such as through stolen […]
25-01955.pdf
25-01955.pdf Anonymous (not verified) Tue, 03/17/2026 – 09:35 Case ID 25-01955 Forum FINRA Document Type Award Claimants Rayath Chowdhury Respondents SoFi Securities LLC Neutrals Mitchell Regenbogen Hearing Site New York, NY Award Document 25-01955.pdf Documentum DocID 6dab377e Award Date Official Mon, 03/16/2026 – 12:00 Related Content Off Claimant Representatives Rayath A. Chowdhury Respondent Representatives Dana […]
Cyber-Attacken fluten Eon-Netz: Angriffe verzehnfacht
Eon trägt eine große Verantwortung für die Energieversorgung in Deutschland. nitpicker – shutterstock.com Der Energiekonzern Eon sieht eine zunehmende Zahl von Cyberangriffen auf seine Energienetze. Mittlerweile seien täglich mehrere hundert Angriffe auf die Netzinfrastuktur zu verzeichnen, berichtete Vorstandsmitglied Thomas König am Montag im Austausch mit Journalisten. Im Vergleich zu von vor fünf Jahren habe sich die Zahl damit verzehnfacht. […]
CODESYS in Festo Automation Suite
View CSAF Summary 3. TECHNICAL DETAILS The following versions of CODESYS in Festo Automation Suite are affected: FESTO Software Festo Automation Suite (versions prior to 2.8.0.138) installed with CODESYS Software CODESYS Development System (3.0) vers:all/* FESTO Software Festo Automation Suite (versions prior to 2.8.0.138) installed with CODESYS Software CODESYS Development System (3.5.16.10) vers:all/* FESTO Software […]
Schneider Electric SCADAPack and RemoteConnect
View CSAF Summary Schneider Electric is aware of a vulnerability in its SCADAPack™ x70 RTU products. The SCADAPack™ 47xi, SCADAPack™ 47x and SCADAPack™ 57x product are Remote Terminal Units that provide communication capabilities for remote monitoring and control. Failure to apply the remediations provided below may risk unauthorized access to your RTU, which could result […]
Schneider Electric EcoStruxure Data Center Expert
View CSAF Summary Schneider Electric is aware of a hard-coded credentials vulnerability in its EcoStruxure IT Data Center Expert (DCE) product that requires administrator credentials and enabling a feature (SOCKS Proxy) that is off by default. The EcoStruxure IT Data Center Expert product is a scalable monitoring software that collects, organizes, and distributes critical device […]
Siemens SICAM SIAPP SDK
View CSAF Summary The SICAM SIAPP SDK contains multiple vulnerabilities that could allow an attacker to disrupt the customer-developed SIAPP or its simulation environment. Potential impacts include denial of service within the SIAPP, corruption of SIAPP data, or exploit the simulation environment. These vulnerabilities are only exploitable if the API is used improperly or hardening […]
Pro-Iran hackers claim Microsoft outage, vow to ramp up attacks on U.S. companies
Bridget Johnson reports: Hackers supporting Iran claimed to be behind today’s Microsoft outage issues while a collective that has urged “epic war” allies to stand as unified “mujahideen” on the cyber front is vowing to target more U.S. companies and conducting fundraising to beef up hackers’ infrastructure. An Iranian group closely linked to CyberAv3ngers that has previously… […]
Booz Allen warns AI‑driven cyberattacks outpace human-driven defenses across critical infrastructure
Anna Ribeiro reports: A new report from Booz Allen Hamilton warns that cybersecurity is entering a ‘machine-speed’ era where AI (artificial intelligence) is collapsing the time between intrusion and impact, allowing attackers to plan, test, and execute multi-stage operations in minutes with minimal human input. The analysis finds that threat actors are adopting AI faster than defenders,… […]
Sears Exposed AI Chatbot Phone Calls and Text Chats to Anyone on the Web
Lily Hay Newman and Matt Burgess report Sears department stores have largely disappeared across the United States, but the brand and its appliance repair service are still in business, complete with a modern twist: an AI chatbot and phone assistant named Samantha. As the historic retailer steps into the future, though, new research shows that conversations people had with the… […]
Nvidia’s version of OpenClaw could solve its biggest problem: security
Rebecca Szkutak reports: Nvidia CEO Jensen Huang thinks every company should have an OpenClaw strategy. And Nvidia is here to provide it. Nvidia has developed NemoClaw, an enterprise-grade AI agent platform, Huang announced during his GTC keynote on Monday. The platform is built on top of OpenClaw, the popular open-source framework for building and running AI agents locally on… […]
IPv4 Mapped IPv6 Addresses, (Tue, Mar 17th)
Yesterday, in my diary about the scans for “/proxy/” URLs, I noted how attackers are using IPv4-mapped IPv6 addresses to possibly obfuscate their attack. These addresses are defined in RFC 4038. These addresses are one of the many transition mechanisms used to retain some backward compatibility as IPv6 is deployed. Many modern applications use IPv6-only networking […]
AI is Everywhere, But CISOs are Still Securing It with Yesterday's Skills and Tools, Study Finds
A majority of security leaders are struggling to defend AI systems with tools and skills that are not fit for the challenge, according to the AI and Adversarial Testing Benchmark Report 2026 from Pentera. The report, based on a survey of 300 US CISOs and senior security leaders, examines how organizations are securing AI infrastructure […]
AWS Bedrock’s ‘isolated’ sandbox comes with a DNS escape hatch
AWS’ promise of “complete isolation” for agentic AI workflows on Bedrock is facing scrutiny after researchers found its sandbox mode isn’t as sealed as advertised. In a recent disclosure, BeyondTrust detailed how the “Sandbox” mode in AWS Bedrock AgentCore’s Code Interpreter can be abused to break isolation boundaries using DNS queries. While the sandbox blocks […]
ForceMemo: Python Repositories Compromised in GlassWorm Aftermath
Hundreds of GitHub accounts were accessed using credentials stolen in the VS Code GlassWorm campaign. The post ForceMemo: Python Repositories Compromised in GlassWorm Aftermath appeared first on SecurityWeek.
Threat Actor Targeting VPN Users in New Credential Theft Campaign
Storm-2561 is distributing fake VPN clients through SEO poisoning, deploying trojans, and stealing login information. The post Threat Actor Targeting VPN Users in New Credential Theft Campaign appeared first on SecurityWeek.
China-Linked Hackers Hit Asian Militaries in Patient Espionage Operation
The state-sponsored hackers deployed custom tools and stayed dormant in the compromised environments for months. The post China-Linked Hackers Hit Asian Militaries in Patient Espionage Operation appeared first on SecurityWeek.
Security Firm Executive Targeted in Sophisticated Phishing Attack
The attackers used a DKIM-signed phishing email, trusted redirect infrastructure, compromised servers, and Cloudflare-protected phishing pages. The post Security Firm Executive Targeted in Sophisticated Phishing Attack appeared first on SecurityWeek.
Oracle EBS Hack: Only 4 Corporate Giants Still Silent on Potential Impact
Broadcom, Bechtel, Estée Lauder, and Abbott Technologies are the only major companies that have yet to issue a public statement. The post Oracle EBS Hack: Only 4 Corporate Giants Still Silent on Potential Impact appeared first on SecurityWeek.
AI, APIs and DDoS Collide in New Era of Coordinated Cyberattacks
Akamai warns that Layer 7 DDoS, API abuse and AI-powered attacks are merging into coordinated, multi-vector campaigns that are harder to detect and defend against. The post AI, APIs and DDoS Collide in New Era of Coordinated Cyberattacks appeared first on SecurityWeek.
CISA Flags Year-Old Wing FTP Vulnerability as Exploited
Tracked as CVE-2025-47813, the flaw leads to the disclosure of the full local installation path of the application. The post CISA Flags Year-Old Wing FTP Vulnerability as Exploited appeared first on SecurityWeek.
Stellenausschreibung: Finance & HR Admin Manager
Wir suchen eine/n Finance & HR Admin Manager/in für unser Berliner Team.
Konni Deploys EndRAT Through Phishing, Uses KakaoTalk to Propagate Malware
North Korean threat actors have been observed sending phishing to compromise targets and obtain access to a victim’s KakaoTalk desktop application to distribute malicious payloads to certain contacts. The activity has been attributed by South Korean threat intelligence firm Genians to a hacking group referred to as Konni. “Initial access was achieved through a spear-phishing […]
Runtime: The new frontier of AI agent security
AI agents are already operating inside enterprise networks, quietly doing some of the work employees once handled themselves — writing code, drafting emails, retrieving files, and connecting to internal systems. Sometimes they also make costly mistakes. At Meta, an employee asked an AI assistant to help manage her inbox. It deleted it instead. At Amazon, […]
CISA Flags Actively Exploited Wing FTP Vulnerability Leaking Server Paths
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a medium-severity security flaw impacting Wing FTP to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerability, CVE-2025-47813 (CVSS score: 4.3), is an information disclosure vulnerability that leaks the installation path of the application under certain conditions
6 Risk-Assessment-Frameworks im Vergleich
Mit dem richtigen Framework lassen sich Risiken besser ergründen. FOTOGRIN – shutterstock.com Für viele Geschäftsprozesse ist Technologie inzwischen unverzichtbar. Deshalb zählt diese auch zu den wertvollsten Assets eines Unternehmens. Leider stellt sie gleichzeitig jedoch auch eines der größten Risiken dar – was Risk-Assessment-Frameworks auf den Plan ruft. IT-Risiken formal zu bewerten, ermöglicht es Organisationen, besser einzuschätzen, […]
Was ist ein Keylogger?
Keylogger sind Malware der alten Schule. Lesen Sie, wie die Tools zur Tastaturüberwachung funktionieren und warum sie nicht nur etwas für Cyberkriminelle sind. IM_photo | shutterstock.com Auch wenn Keylogger schon etliche Jahre auf dem Buckel haben: Sie sind immer noch beliebt und werden häufig im Rahmen großangelegter Cyberangriffe eingesetzt. Keylogger – Definition Der Begriff Keylogger […]
ISC Stormcast For Tuesday, March 17th, 2026 https://isc.sans.edu/podcastdetail/9852, (Tue, Mar 17th)
Post Content
2023078062701 The Ultima Global Markets (USA), Inc., fka BCS Global Markets CRD 47895 AWC vrp.pdf
2023078062701 The Ultima Global Markets (USA), Inc., fka BCS Global Markets CRD 47895 AWC vrp.pdf Anonymous (not verified) Mon, 03/16/2026 – 18:45 Case ID 2023078062701 Document Number 7c466392 Document Type AWCs (Letters of Acceptance, Waiver, and Consent) Action Date Mon, 03/16/2026 – 12:00 Related Content Off Attachment 2023078062701 The Ultima Global Markets (USA), Inc., fka […]
Tosh Grebenik Comment On Regulatory Notice 26-06
Tosh Grebenik Comment On Regulatory Notice 26-06 fnrw-backend Mon, 03/16/2026 – 18:12 Tosh Grebenik Tosh Grebenik <tosh@judexlaw.com> Judex Law, LLC, Founder Regulatory Notice 26-06 Core Official Date Mon, 03/16/2026 – 12:00 Comment File Tosh Grebenik_Public Comment – Reg Notice 26-06.pdf
Will Murphy Comment On Regulatory Notice 26-06
Will Murphy Comment On Regulatory Notice 26-06 fnrw-backend Mon, 03/16/2026 – 18:00 Will Murphy FL US SettleNow@DisputeResolutionFL.com A. Forum Selection A(i) Customer Disputes A(i).1. Should certain categories of claims (e.g., of a certain complexity or value) or customer dispute types (e.g., those involving institutional customers or holders of institutional accounts) be subject to different requirements […]
Will Murphy Comment On Regulatory Notice 26-06
Will Murphy Comment On Regulatory Notice 26-06 fnrw-backend Mon, 03/16/2026 – 18:00 Will Murphy FL US SettleNow@DisputeResolutionFL.com For complex or unusually large claims, perhaps parties should be able to request a selection of arbitrators that all have had at least three cases go to an award after a final hearing. If all parties have agreed […]
2024081061001 VectorGlobal WMG, Inc. CRD 32396 AWC ks.pdf
2024081061001 VectorGlobal WMG, Inc. CRD 32396 AWC ks.pdf Anonymous (not verified) Mon, 03/16/2026 – 17:10 Case ID 2024081061001 Document Number d0668c44 Document Type AWCs (Letters of Acceptance, Waiver, and Consent) Action Date Mon, 03/16/2026 – 12:00 Related Content Off Attachment 2024081061001 VectorGlobal WMG, Inc. CRD 32396 AWC ks.pdf
GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos
The GlassWorm malware campaign is being used to fuel an ongoing attack that leverages the stolen GitHub tokens to inject malware into hundreds of Python repositories. “The attack targets Python projects — including Django apps, ML research code, Streamlit dashboards, and PyPI packages — by appending obfuscated code to files like setup.py, main.py, and app.py,” […]
「AIで人員削減」——管理職も含め、抵抗感は根強い
調査によれば、経営幹部・管理職・現場社員の多くがAIよりも人間と働くことを望んでいる。全従業員をAIに置き換えたいと答えたのはわずか9%だった。イノベーション、批判力、文化の醸成、コーチングなどの領域は、人間はまだAIに代替できないという認識が根強い。 AIには越えられない壁がある この調査を実施したのは、ITトレーニングプロバイダーのUdacityだ。同社COOのVictoria Papalian氏は、AIで従業員を置き換えようとするCIOや経営幹部は広範な反発に直面するだろうと指摘する。調査の回答者は、人間が持つ組織知識、創造性、批判的思考力を高く評価していた。 「AIが従来の人間の仕事を奪うという言説が広まっているが、今回の調査では人間を優先する傾向が依然として強いことが明らかになった。人間をループに組み込むだけでなく、人間そのものをナレッジベースと専門知識の源泉として見ている。AIがその役割を代替することへの不安は根強い」とPapalian氏は言う。 AIを敬遠する理由として、62%が「AIは顧客が将来求める新製品・サービスを生み出せない」と回答。53%が「顧客は人間と働くことを好む」、49%が「AIを使う際のセキュリティとプライバシーが心配」と答えた。 モデルは過去の人間の知識をもとに学習しているため、革新的な新製品の創出という点でAIエージェントには大きな限界があるとPapalian氏は言う。「まだ学習するデータセット自体が存在しないものがある。AIは新市場に出たばかりのものは参照できないし、顧客が将来求めるプロダクトやサービスについても同様だ」 米国の雇用専門弁護士Eric Kingsley氏も同じ見解だ。賢明な企業の多くはAIで人間を置き換えようとしているのではなく、法的・コンプライアンス・評判上のリスクを慎重に見極めながら導入を進めているという。 「従業員は判断力と裁量を持ち、職場文化を作る。AIにはそれができない。さらに、AIで従業員を置き換え始めると、残った従業員が過重労働になったり、不当な扱いを受けたりするリスクが高まり、法的責任も増大する」とKingsley氏は言う。 エントリーレベルの採用が消えると、何が起きるか クラウドHCMのAvatureでCEOを務めるDimitri Boylan氏は、エントリーレベルの採用をAIに置き換えることの長期的な影響を懸念する。若手の採用を大幅に削減すれば、ベテラン人材へのパイプラインが断ち切られるからだ。 Avatureの調査では、HR担当者の76%が「AIによってエントリーレベルの採用が減る」ことを懸念していることがわかった。「企業は若手を多く採用し、育成・選抜を経てミドルやシニアレベルの人材を育てる。エントリーレベルの採用が消えれば、この人材育成のピラミッドそのものが崩れる——顧客たちはそのリスクを深刻に受け止めている」とBoylan氏は言う。 大規模レイオフの実態 こうした調査が発表された背景には、大規模レイオフの波がある。 個人金融・投資教育プラットフォームRationalFXの集計では、2025年のテック業界のレイオフは24万5000人、このうち約7万人(28.5%)がAI導入・自動化と関連していた。2026年最初の6週間でもテック業界で3万700人のレイオフがあり、約4.7%がAIと関連していたと報告する。 今後の大規模な人員削減を予告する声もある。MicrosoftのAIチーフ、Mustafa Suleyman氏はFinancial Timesのインタビューでこう予測する。「弁護士、会計士、プロジェクトマネージャー、マーケターなど、ホワイトカラーの仕事のほとんどのタスクは、今後12〜18カ月以内にAIによって完全に自動化される」 Noble MobileのCEOで元米大統領候補のAndrew Yang氏も、Anthropicの「Claude」の法律・財務・マーケティング向けプラグインなどAIの進化が「ホワイトカラーの職を根こそぎにする」と予測。「1社がコスト削減に動けば、競合他社も追随する。株式市場は人員削減を評価し、しないことを罰する。数百万人の労働者が解雇通知を受け取ることになるだろう」とLinkedInに投稿した。 「AI脅威論」は誇張されているのか UdacityのPapalian氏は、AIが雇用を奪うという言説は過剰に語られている面があると指摘する。AIを理由にした人員削減と発表しながら、実際は別の意図が隠れているケースや、AIへの移行を試みた後に結局従業員を再雇用する事例もあるという。 「AIで人材を置き換えようとした企業が、実は準備不足だったために元の従業員を呼び戻しているケースも出てきている」とPapalian氏は言う。「リーダーたちは、人間がどこで価値を発揮し、代替不可能かを認識し続けている。AIの知識を身につけたうえで、人間固有の資質を持つ人材——それが最も強力な組み合わせだ」 AI基盤のITおよびHRプラットフォームPeopleReignのCEO、Dan Turchin氏も同様の見方をする。AIによる大規模な人員置き換えは起きないと見ており、過去の産業革命やテクノロジーの変革と同様に、人間がどのように機械と協働するかの再定義が求められると言う。 「人間はなくならない。共感、合理的な判断、感情的なサポート、互いをコーチする力——これらは人間の本質であり、自動化したいとは思わない。雇用主もそのことに気づき、伝え始めている」とTurchin氏は言う。 短期的には、AIの導入に伴って人間の役割が変わり、雇用市場に混乱が生じる可能性は認める。しかし長期的には、AIは経済的な機会を広げると氏は見る。 「新しい仕事や役割が何かを模索する過程にある。しかし時間をかければ、組織はより多くの人間を必要とするようになる。社会が必要とするものを作り、人々を鼓舞し、優れたアイデアを持つ人間が求められ続けるからだ」(Turchin氏)。
“급히 먹는 밥이 체한다” AI 도입 서두른 CIO들의 후회
핵심 AI 솔루션 구매를 서둘러 결정한 뒤 후회를 느끼는 CIO가 늘고 있다. AI가 내놓은 결과를 충분히 설명하지 못한 채 책임을 져야 하는 상황도 적지 않다는 조사 결과가 나왔다. AI 오케스트레이션 기업 데이터이쿠(Dataiku)가 의뢰한 설문조사에 따르면, CIO의 3/4은 지난 18개월 동안 내린 주요 AI 솔루션 업체 또는 플랫폼 선택 가운데 최소 한 건에 대해 후회를 느낀다고 […]
“성과 없으면 과감히 접어라” 소프트웨어 프로젝트 3건 중 1건은 ROI 없이 종료
기업은 프로젝트를 보다 과감하게 취소할 필요가 있다는 분석이 나왔다. 프로젝트 관리 소프트웨어 기업 템포(Tempo)는 지난해 말 프로젝트 기획 리더 667명을 대상으로 설문조사를 실시한 결과, 시나리오 플래닝을 적극 도입하고 프로젝트의 실행 가능성을 냉정하게 평가한 조직일수록 더 나은 성과를 거두는 것으로 나타났다고 밝혔다. 설문에 따르면 90%의 조직이 자사 프로젝트가 팀 간 정렬을 이루고 있다고 답했다. 그러나 실제 […]
We are all AI philosophers now
Most technology decisions begin with capability. Can the system scale? Is it secure? Will it work with what we already use? Last month, Anthropic CEO Dario Amodei sat down with CBS News after the US government labeled his company a supply chain risk. The dispute focused on two uses Anthropic declined to support in its […]
The CTO is dead. Long live the CTO
Six months ago, we used to say that Large Language Models could handle the work of a junior engineer. Delegate the boilerplate, keep the real thinking for the humans. That was the comfortable narrative. It’s already obsolete. Today, the latest generation of LLMs in the market can produce system architectures that account for parameters, constraints […]
Can your enterprise network keep up with its agents?
In only three years, AI has become embedded in workflows across businesses of all types and sizes. An NBER survey of 6,000 executives in the US, UK, Germany, and Australia found that 70% of all companies were actively using at least one AI technology, primarily around content generation and data processing. The challenges to long-established […]
12 most misused buzzwords in IT
Every year or so the world gets new tech speak to master. The smartphone, the cloud, augmented reality, the metaverse, containerization, and bots are just some of the techie words that have entered the vernacular in the past two decades. Sometimes a new term is easy to grasp and clearly defined. The term “smartphone” is […]
The Davos reality check on AI ROI: Why tools don’t pay off until work changes
At Davos in January, PwC’s CEO survey was hard to miss. PwC helps set the week’s boardroom agenda, so its findings carry weight: 56% of CEOs say AI hasn’t produced significant cost or revenue benefits yet, and only 12% say it has delivered both. That mismatch between investment and measurable results is why many enterprise […]
From cloud-first to nation-first: A 3-part blueprint for AI geopatriation
Today, the era of the “borderless” cloud is hitting a wall. For years, the mandate for CIOs was simple: move to the cloud to gain speed and scale. But as we transition from experimental generative AI to production-grade agentic workflows, a new constraint has emerged. The mantra is shifting from “cloud-first” to “nation-first”. With the full enforcement of the EU […]
契約が違えば現場も違う:日米SIの調達プロセスとリスク配分のリアル
RFPの役割と「要件」の固定度が違う 日米のSIを比べるとき、技術や開発手法より先に見たほうがいいのが、調達の入り口にある文書の性格だ。日本ではRFPや要件定義書が「この通りに作ってほしい」という依頼書として機能しやすい。発注側は、社内の合意形成を経て要件を固め、予算枠を取り、調達の手続きに載せる。そのうえで、SIは提示された条件を満たす提案を作り、見積もりと体制、工程、品質計画を示して受注を目指す。ここでは要件は契約の中核であり、後工程での変更は例外として扱われやすい。 一方、米国ではRFPが「比較のための共通フォーマット」であると同時に、「まだ固まっていない現状を前提にした出発点」になりやすい。もちろん要件が明確なケースもあるが、変革案件やクラウド移行、データ活用のような領域では、最初から完全な仕様を確定できないことを前提にする場合が多い。そこでRFPは要求の一覧というより、現状の課題、制約条件、期待するビジネス成果、ガバナンス要件、意思決定プロセスなどが含まれ、SIには「一緒に解き方を設計する能力」が求められる。要件を固め切ってから発注するのではなく、固めるプロセス自体を契約とプロジェクトの中に組み込む感覚に近い。 この違いが、後々の揉めどころを左右する。日本型の前提で米国型の案件に入ると、要件が揺れるたびに“仕様追加”と捉えて関係が硬直しやすい。逆に米国型の前提で日本型の案件に入ると、要件を詰め切る前に走り出してしまい、後から「最初に合意した話と違う」と問題化しやすい。どちらが正しいかではなく、調達文書が担う役割が違うのだと理解しておくことが重要になる。 契約形態が生む行動原理の違い 契約形態は、現場の行動を驚くほど強く規定する。日本では固定価格に近い形での請負が根強く、納期と品質を守る責任がベンダー側に寄りやすい。結果としてSIは、見積もりの段階からスコープを厳密に定義し、リスクを織り込み、工程管理と品質保証を厚くして「失敗しない確度」を上げる方向へ力を注ぐ。ここで重要なのは、仕様変更が起きないように事前合意を徹底すること、起きた場合は合意プロセスを慎重に踏むことだ。プロジェクト管理は、仕様の安定と計画遵守に重心が置かれやすい。 米国では、時間と材料費に基づく契約や、段階契約、マイルストーン契約、場合によっては成果指標を絡めた契約など、複数の選択肢が一般的に使われる。特に不確実性が高い領域では、最初から固定価格で全体を縛るより、探索と実装を分け、価値が見えたところに投資を寄せる設計が好まれる。SI側も、変化を前提としたリスク管理に慣れており、変更を悪として封じ込めるより、変更を管理可能なイベントとして扱う。すると、現場は「要件を完璧に固める」より「短いサイクルで確かめ、正しい方向に修正する」ことに動機づけられやすい。 ただし、これは米国のほうが自由で楽だという話ではない。変化を許容する契約は、意思決定と説明責任のスピードを求める。優先順位をいつ誰が決め、何を捨て、何を足すのかを、曖昧なままにできない。逆に固定価格の契約は、合意形成に時間をかけやすい代わりに、合意の外側にある変更の扱いが難しくなる。契約形態は、プロジェクトの運営哲学そのものを決める装置だと言える。 チェンジオーダーの文化がプロジェクトを救う/壊す 日米の差が最も生々しく出るのが、チェンジオーダー、つまり変更管理の実務だ。日本の現場では、変更は避けたいものとして扱われやすい。発注側も、変更を出すことが「最初の詰めが甘かった」と見られることを恐れ、現場からの要望を抑え込むことがある。ベンダー側も、変更を受けると納期と品質の責任が増し、採算が崩れるため慎重になる。その結果、変更が水面下で処理され、帳尻合わせとして残業や品質リスクで吸収される、という歪みが起きやすい。 米国ではチェンジオーダーは、揉めごとの種というより、プロジェクトを健康に保つための仕組みとして運用されやすい。変更は起きるもの、起きたときに何が増え、何が減り、納期とコストとリスクがどう動くかを、手続きとして透明にする。合意の取り方が荒いという意味ではなく、むしろ合意の単位が細かく、判断の回数が多い。だからこそ、変更管理が回っているプロジェクトは強い。逆に言えば、チェンジオーダーの仕組みだけ導入しても、意思決定者が不在だったり、判断の責任が曖昧だったりすると、変更が積み上がって混乱が増えるだけになる。 日本で変更管理を機能させる鍵は、変更を“誰かの落ち度”の話にしないことだ。要件は現実とともに変わる。法規制、業務フロー、組織体制、競合環境、利用者の反応、セキュリティ要件など、変化の源泉はいくらでもある。問題は変化そのものではなく、変化の影響を見積もらず、合意せず、現場に押し付けることにある。変更を正面から扱えるようになると、プロジェクトはむしろ安定する。 品質保証と責任の分界線 契約とリスク配分は、品質保証の設計にも直結する。日本のSIは品質に強いと言われるが、その背景には「納めたものに対して責任を持つ」という発想がある。要件を満たし、想定外の例外にも耐え、運用で困らないように作り込む。テストも手厚く、レビュー文化も厚い。発注側もそれを期待し、受入の段取りを重視する。ここでは品質は、仕様遵守と安定稼働の担保として語られやすい。 米国の現場では、品質は重要だが、品質を保証する方法が少し違う形になりやすい。もちろんテストはする。ただし、すべてを事前に確定してから一気に受け入れるより、継続的に検証し、段階的に提供し、運用で計測しながら改善する発想が強い。品質の中心は「仕様に合っているか」だけでなく、「目的に対して機能しているか」「変化に追随できるか」「障害から回復できるか」「セキュリティ要求を満たし続けられるか」に広がる。受入条件も、納品物のチェックリストだけでなく、稼働後のSLAやSLO、監視とアラート、インシデント対応体制まで含めて設計されることがある。 責任の分界線の引き方も異なる。日本では、請負の責任が重いほど、ベンダーが“できるだけ全部を見る”方向に寄る。米国では、責任を明確に分ける代わりに、運用の計測や改善のプロセスを共同で回す方向に寄る。前者は安心感が強いが、見えない負担が積み上がりやすい。後者は合理的だが、顧客側の体制が弱いと回らない。どちらの設計が適切かは、求めるスピード、組織成熟度、規制要件、システムの重要度で変わる。 調達側の体制がSIを変える 契約やプロセスの違いは、発注側の組織構造の違いとも深く結びついている。日本企業では、調達、法務、情報システム、事業部門が段階的に関与し、合意形成が積み上がる構造になりやすい。合意形成が厚いこと自体は悪ではない。むしろ、説明責任と納得感を作るうえで強みになる。しかしその厚みが、意思決定のタイミングを遅らせたり、責任の所在を曖昧にしたりすると、変更管理が機能しにくくなる。現場は“誰に何を決めてもらうべきか”が見えないまま、走らざるを得なくなる。 米国企業では、プロダクトオーナーやビジネス側の責任者が、価値と優先順位の決定権を持ち、短いサイクルで判断する体制を組みやすい。法務や調達は強く関与するが、実行段階の意思決定は明確に委譲されるケースが多い。これが、変化を前提とした契約と相性が良い。逆に言えば、意思決定が委譲されないまま変化前提の契約だけ導入すると、判断が止まり、現場が空回りする。 日本で日米の差が強く感じられるのは、SI側だけの問題ではなく、発注側の体制設計が契約思想と連動していない場合が多いからだ。契約で変化を認めるなら、変化を判断する役割と権限を決める必要がある。固定価格で縛るなら、スコープを固めるための時間と人員を最初に投資する必要がある。どちらも中途半端だと、プロジェクトは苦しくなる。 日本で「契約起点の変革」を進める実務ポイント ここまでの比較を踏まえると、日本のSIが次に取りうる現実的な進化は、契約と調達の設計からプロジェクト運営を改善していくことにある。アジャイルを導入する、クラウドへ移行する、内製化を支援する、といった取り組みは、契約と調達の前提が変わらなければ現場で摩擦を起こしやすい。手法の導入より前に、リスクをどう配り、変化をどう扱い、責任をどう分けるかを言語化するほうが効果が大きい。 例えば、不確実性が高い領域では、最初から全体を固定価格で縛り切らず、現状分析と設計を切り出し、段階的に契約するだけで、後半の手戻りが大きく減ることがある。逆に、要件が比較的安定している領域では、固定価格の強みを活かしつつ、変更管理のルールと受入条件を明確にし、現場が“暗黙の吸収”に追い込まれないようにするだけで、品質も生産性も上がる。運用を含む案件では、納品時点の受入だけでなく、稼働後の目標や計測、改善のサイクルまでを契約に織り込むと、SIの価値が「作る」から「良くし続ける」へ広がる。 日米SIの差は、現場の気合いや能力差ではなく、契約と調達が作る環境差として理解したほうが本質に近い。契約は現場の行動を決め、調達はプロジェクトの呼吸を決める。だからこそ、日本のSIが次のステージへ進むには、技術刷新と同じ熱量で、契約と調達の設計をアップデートする必要がある。仕様を守る強さを残しながら、変化を前提に価値を積み上げる強さを獲得する。そのための第一歩が、契約とリスク配分を“現場が回る形”に整えることなのだ。
⚡ Weekly Recap: Chrome 0-Days, Router Botnets, AWS Breach, Rogue AI Agents & More
Some weeks in security feel normal. Then you read a few tabs and get that immediate “ah, great, we’re doing this now” feeling. This week has that energy. Fresh messes, old problems getting sharper, and research that stops feeling theoretical real fast. A few bits hit a little too close to real life, too. There’s […]
/proxy/ URL scans with IP addresses, (Mon, Mar 16th)
Attempts to find proxy servers are among the most common scans our honeypots detect. Most of the time, the attacker attempts to use a host header or include the hostname in the URL to trigger the proxy server forwarding the request. In some cases, common URL prefixes like “/proxy/” are used. This weekend, I noticed a slightly […]
CISA Adds One Known Exploited Vulnerability to Catalog
CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2025-47813 Wing FTP Server Information Disclosure Vulnerability This type of vulnerability is a frequent attack vector for malicious cyber actors and poses significant risks to the federal enterprise. Binding Operational Directive (BOD) 22-01: Reducing the Significant […]
Why Security Validation Is Becoming Agentic
If you run security at any reasonably complex organization, your validation stack probably looks something like this: a BAS tool in one corner. A pentest engagement, or maybe an automated pentesting product, in another. A vulnerability scanner feeding an attack surface management platform somewhere else. Each tool gives you a slice of the picture. None […]
ClickFix Campaigns Spread MacSync macOS Infostealer via Fake AI Tool Installers
Three different ClickFix campaigns have been found to act as a delivery vector for the deployment of a macOS information stealer called MacSync. “Unlike traditional exploit-based attacks, this method relies entirely on user interaction – usually in the form of copying and executing commands – making it particularly effective against users who may not appreciate […]
Open VSX extensions hijacked: GlassWorm malware spreads via dependency abuse
Threat actors are abusing extension dependency relationships in the Open VSX registry to indirectly deliver malware in a new phase of the GlassWorm supply-chain campaign. Researchers at Socket said they have identified at least 72 additional malicious Open VSX extensions linked to the campaign since January 31, 2026. The extensions appear to target developers by […]
Nine critical vulnerabilities in Linux AppArmor put over 12M enterprise systems at risk
Security researchers at Qualys have disclosed nine vulnerabilities in AppArmor, the Linux Security Module that ships enabled by default across Ubuntu, Debian, and SUSE distributions. An unprivileged local attacker can exploit the flaws to gain full root access, break out of container isolation, and crash systems, all without requiring administrative credentials, the researchers said in […]
DeKalb County, Tennessee sheriff and jail hit by ransomware attack
Dysruption Hub has found that yet a third “DeKalb County” has been the victim of a cyberattack. This one is in Tennessee (the first two reportedly involved DeKalb County, Georgia, and DeKalb County, Indiana). Dysruption Hub reports: A ransomware attack hit the DeKalb County Sheriff’s Department and jail in Smithville, Tennessee, disrupting email and inmate… […]
Hacking Attempt Reported at Poland’s Nuclear Research Center
Initial evidence indicates Iran may be behind the attack, but officials admitted it could be a false flag. The post Hacking Attempt Reported at Poland’s Nuclear Research Center appeared first on SecurityWeek.
DRILLAPP Backdoor Targets Ukraine, Abuses Microsoft Edge Debugging for Stealth Espionage
Ukrainian entities have emerged as the target of a new campaign likely orchestrated by threat actors linked to Russia, according to a report from S2 Grupo’s LAB52 threat intelligence team. The campaign, observed in February 2026, has been assessed to share overlaps with a prior campaign mounted by Laundry Bear (aka UAC-0190 or Void Blizzard) […]
What it takes to win that CSO role
CSO and CISO roles are among the hardest to fill in IT. Which should be good news for cybersecurity professionals that aspire to leadership positions as the organization’s top security exec. For those that do, the authority, clout, pay, and benefits are increasing significantly. But so too are the responsibility and accountability placed on cybersecurity […]
ClickFix techniques evolve in new infostealer campaigns
Cybercriminals are combining compromised websites with increasingly sophisticated ClickFix social engineering lures to deliver new infostealer malware, with one campaign alone weaponizing more than 250 WordPress sites across 12 countries. The campaign leads to stealthy in-memory payloads, while a separate attack detected by Microsoft targets Windows Terminal for payload execution instead of the traditional Run […]
Android 17 Blocks Non-Accessibility Apps from Accessibility API to Prevent Malware Abuse
Google is testing a new security feature as part of Android Advanced Protection Mode (AAPM) that prevents certain kinds of apps from using the accessibility services API. The change, incorporated in Android 17 Beta 2, was first reported by Android Authority last week. AAPM was introduced by Google in Android 16, released last year. When […]
GenAI-Security als Checkliste
Das Open Web Application Security Project (OWASP) gibt Unternehmen eine Checkliste für (mehr) GenAI-Sicherheit an die Hand. Foto: Gannvector | shutterstock.com Während Unternehmen wie OpenAI, Anthropic, Google oder Microsoft aber auch Open-Source-Alternativen bei ihren Generative-AI– und Large-Language-Model-Angeboten exponentielle User-Zuwächse verzeichnen, sind IT-Sicherheitsentscheider bemüht, mit der rasanten KI-Entwicklung in ihren Unternehmen Schritt zu halten. Die Non-Profit-Organisation […]
ISC Stormcast For Monday, March 16th, 2026 https://isc.sans.edu/podcastdetail/9850, (Mon, Mar 16th)
Post Content
Ransomware incident responder gave info to BlackCat cybercriminals during negotiations, DOJ alleges
It’s not like threat actors weren’t telling some of us about rogue negotiators. They were. Now I wonder how many other journalists also disbelieved the threat actors when they were telling the truth. Jonathan Greig reports: The Justice Department is accusing an incident responder of conducting cyberattacks and helping ransomware gangs negotiate higher payouts from… […]
Loblaw Data Breach Impacts Customer Information
Personal information such as names, email addresses, and phone numbers was accessed by hackers. The post Loblaw Data Breach Impacts Customer Information appeared first on SecurityWeek.
OpenClaw AI Agent Flaws Could Enable Prompt Injection and Data Exfiltration
China’s National Computer Network Emergency Response Technical Team (CNCERT) has issued a warning about the security stemming from the use of OpenClaw (formerly Clawdbot and Moltbot), an open-source and self-hosted autonomous artificial intelligence (AI) agent. In a post shared on WeChat, CNCERT noted that the platform’s “inherently weak default security configurations,” coupled with its
GlassWorm Supply-Chain Attack Abuses 72 Open VSX Extensions to Target Developers
Cybersecurity researchers have flagged a new iteration of the GlassWorm campaign that they say represents a “significant escalation” in how it propagates through the Open VSX registry. “Instead of requiring every malicious listing to embed the loader directly, the threat actor is now abusing extensionPack and extensionDependencies to turn initially standalone-looking extensions into transitive
Google Paid Out $17 Million in Bug Bounty Rewards in 2025
Google paid over $3.7 million for Chrome vulnerabilities, and more than $3.5 million for cloud security defects. The post Google Paid Out $17 Million in Bug Bounty Rewards in 2025 appeared first on SecurityWeek.
Bold Security Emerges From Stealth With $40 Million in Funding
The startup relies on AI to turn devices into active agents that understand users’ actions and provide protection in real time. The post Bold Security Emerges From Stealth With $40 Million in Funding appeared first on SecurityWeek.
Iran-Linked Hackers Take Aim at US and Other Targets, Raising Risk of Cyberattacks During War
Pro-Iranian hackers are targeting sites in the Middle East and starting to stretch into the United States during the war, raising the risk of American defense contractors, power stations and water plants. The post Iran-Linked Hackers Take Aim at US and Other Targets, Raising Risk of Cyberattacks During War appeared first on SecurityWeek.
In Other News: N8n Flaw Exploited, Slopoly Malware, Interpol Cybercrime Crackdown
Other noteworthy stories that might have slipped under the radar: Telus Digital data breach, vulnerabilities in Linux AppArmor allow root privileges, US defense contractor behind Coruna exploits. The post In Other News: N8n Flaw Exploited, Slopoly Malware, Interpol Cybercrime Crackdown appeared first on SecurityWeek.
Starbucks Data Breach Impacts Employees
Starbucks said the incident involved phishing attacks targeting an employee portal, affecting hundreds. The post Starbucks Data Breach Impacts Employees appeared first on SecurityWeek.
Critical HPE AOS-CX Vulnerability Allows Admin Password Resets
The vulnerability can be exploited remotely, without authentication, to circumvent existing authentication controls. The post Critical HPE AOS-CX Vulnerability Allows Admin Password Resets appeared first on SecurityWeek.
Stellenausschreibung: Finance & HR Admin Manager
Tactical Tech sucht einen erfahrenen, deutschsprachigen (auf Muttersprachniveau) Finanz- und Personalverwaltungsmanager für unser Team in Berlin.
SmartApeSG campaign uses ClickFix page to push Remcos RAT, (Sat, Mar 14th)
Introduction
Google warns of two actively exploited Chrome zero days
Threat actors are exploiting two high severity zero day vulnerabilities in the Chrome browser that experts say IT teams must patch immediately. Google has issued emergency patches for the two holes, CVE-2026-3909 and CVE-2026-3910. This comes just days after the release of 29 fixes for holes as part of March Patch Tuesday, and a zero day […]
24-01880.pdf
24-01880.pdf Anonymous (not verified) Fri, 03/13/2026 – 15:40 Case ID 24-01880 Forum FINRA Document Type Award Claimants William Van Pelt Respondents Stifel, Nicolaus & Co., Inc. Neutrals Susan L. Luck Alan Gradzki Arlene Simon Backman Hearing Site Charlotte, NC Award Document 24-01880.pdf Documentum DocID 3e073490 Award Date Official Fri, 03/13/2026 – 12:00 Related Content Off […]
22-01887.pdf
22-01887.pdf Anonymous (not verified) Fri, 03/13/2026 – 15:35 Case ID 22-01887 Forum FINRA Document Type Award Claimants DeJuan Lawrence Respondents E*Trade Securities LLC Neutrals Sheila D. Collins Leslie Trager Matthew Stephen Duchesne Hearing Site Washington, DC Award Document 22-01887.pdf Documentum DocID d0733109 Award Date Official Fri, 03/13/2026 – 12:00 Related Content Off Claimant Representatives DeJuan […]
25-01174.pdf
25-01174.pdf Anonymous (not verified) Fri, 03/13/2026 – 15:30 Case ID 25-01174 Forum FINRA Document Type Award Claimants Joel Barjenbruch Respondents D.H. Hill Securities, LLLP Neutrals Will Murphy Peter A.P. Dunlop George Pinckney Shingler Hearing Site Omaha, NE Award Document 25-01174.pdf Documentum DocID f8d4f997 Award Date Official Fri, 03/13/2026 – 12:00 Related Content Off Claimant Representatives […]
The resilience mandate: why CIOs must think like hackers to secure the AI era
The modern CIO is no longer asked, “Are we secure?” They are asked, “How fast can we recover?” There is a sobering adage in modern cybersecurity: “If you think you haven’t been hit by a cyberattack yet, chances are you just haven’t noticed.” As CIOs accelerate the integration of data and AI into the core […]
Breaking the 5% ROI ceiling: Why enterprise AI stalls at the pilot stage
Most enterprises aren’t failing at AI. They’re structurally incapable of scaling it. The current state of enterprise AI is defined by a significant disconnect. According to the Fujitsu Technology and Service Vision 2025, while 98% of organisations are already deploying generative AI, only a tiny fraction – roughly 5% – have achieved impact at a […]
The modern CIO is no longer a technologist — they’re an architect of enterprise decisions
For much of the last three decades, the CIO role has been defined by delivery: platforms implemented, systems stabilized, programs executed. Success was measured in uptime, milestones, and budget adherence. When things went wrong, the diagnosis was familiar — execution struggled, teams moved too slowly, or technology didn’t perform as expected. That framing is no […]
The 10 most in-demand tech jobs for 2026 — and how to hire for them
As we continue into 2026, businesses are dialed in on hiring roles centered around AI, cybersecurity, data management, and network and system management, according to Robert Half Technology’s 2026 IT salary report. Data from the report shows these 10 tech positions have experienced above-average sequential growth and consistent demand throughout the past 12 months, based […]
Regrets set in for CIOs who deployed AI too soon
A vast majority of CIOs now regret major AI purchases their organizations have made, with many also being asked to defend AI outputs they can’t explain. Three-quarters of CIOs say they have remorse over at least one major AI vendor or platform selection made in the past 18 months, with some of that disappointment driven […]
Why senior management loses confidence in AI before it reaches scale
Real problem enterprises are facing Enterprises are currently in an all-hands-on-deck situation to stay relevant in the evolving AI race, with initiatives from the executives to invest heavily in the application layer of AI in pursuance to find productivity and performance gains with the advancement of large language models and generative AI. This can be […]
Why M&A technology integrations are harder than expected. Here’s what you should look for early
Mergers and acquisitions are often driven by strategic growth, market expansion or operational efficiency. But one area that is frequently underestimated during the deal process is technology and that oversight can significantly change the complexity of the integration once the deal closes. Having gone through several acquisitions, I have seen a consistent pattern emerge. While […]
Reimagining the enterprise desktop—Why Island is joining the conversation at IGEL Now & Next Miami
For decades, the enterprise desktop defined how work was delivered. Applications ran locally, security controls lived at the network perimeter, and IT teams managed fleets of devices as the primary unit of governance. That model is fading quickly. In today’s cloud-first environments, the browser has quietly become the primary workspace for digital work, where employees […]
A three-way partnership built around IT, security, and risk drives AI-era success
As enterprises reimagine operations with AI and automation, they introduce new complexities and risk that can stall – or even worse, derail — critical business transformation. Creating strategic alignment between IT, security, and risk minimizes exposure while positioning organizations to fully capitalize on AI benefits at scale. The complexity and velocity of new AI workflows […]
Save money by canceling more software projects, says survey
Enterprises should be more ruthless about cancelling projects. That’s according to project management software company Tempo, which surveyed 667 project planning leaders at the end of last year. It found that those who deployed better scenario planning and acted ruthlessly is assessing a project’s viability would be better off. According to the survey, 90% of […]
Chinese Hackers Target Southeast Asian Militaries with AppleChris and MemFun Malware
A suspected China-based cyber espionage operation has targeted Southeast Asian military organizations as part of a state-sponsored campaign that dates back to at least 2020. Palo Alto Networks Unit 42 is tracking the threat activity under the moniker CL-STA-1087, where CL refers to cluster, and STA stands for state-backed motivation. “The activity demonstrated strategic operational […]
Meta to Shut Down Instagram End-to-End Encrypted Chat Support Starting May 2026
Meta has announced plans to discontinue support for end-to-end encryption (E2EE) for chats on Instagram after May 8, 2026. “If you have chats that are impacted by this change, you will see instructions on how you can download any media or messages you may want to keep,” the social media giant said in a help […]
Cyber criminals too are working from home… your home
The FBI is so concerned about the threat of residential proxy attacks and the dangers posed by cyber criminals using the technique that it has posted guidance on its website. Residential proxies are used by cybercriminals to reroute traffic between individuals and the websites they visit to make it appear to originate elsewhere? By taking […]
INTERPOL Dismantles 45,000 Malicious IPs, Arrests 94 in Global Cybercrime
INTERPOL on Friday announced the takedown of 45,000 malicious IP addresses and servers used in connection with phishing, malware, and ransomware campaigns, as part of the agency’s ongoing efforts to dismantle criminal networks, disrupt emerging threats, and safeguard victims from scams. The effort is part of an international law enforcement operation that involved 72 countries […]
Reminder - TRACE Allocations
Technical Notice Reminder – TRACE Allocations March 13, 2026 MwinamoC Fri, 03/13/2026 – 11:13 As previously announced on February 5, 2026, beginning Monday, June 8, 2026, as described in Regulatory Notice 25-17, FINRA will introduce a new “Allocations” field across all TRACE products. This new field permits a firm that is both a broker-dealer and […]
24-00030.pdf
24-00030.pdf Anonymous (not verified) Fri, 03/13/2026 – 11:10 Case ID 24-00030 Forum FINRA Document Type Award Claimants StoneX Financial Inc. StoneX Group Inc. Respondents BTIG, LLC Neutrals Larry H. Irom Laura Anne Engelhardt Diane Elizabeth O’Connell Hearing Site New York, NY Award Document 24-00030.pdf Documentum DocID aad7561c Award Date Official Thu, 03/12/2026 – 12:00 Related […]
45,000 malicious IP addresses taken down in international cyber operation
An international cybercrime operation targeting phishing, malware and ransomware has taken down more than 45,000 malicious IP addresses and servers. Law enforcement from 72 countries and territories took part in Operation Synergia III (18 July 2025 – 31 January 2026), coordinated by INTERPOL. The operation led to the arrest of 94 people, with another 110… […]
The Broken Records: tracing the human cost of the 2022 British MoD leak
Harvey Depledge-Kittle writes: In February 2022, a Ministry of Defence data breach exposed sensitive personal information relating to approximately 18,700 Afghan nationals who had assisted UK forces and applied for protection. The breach was not publicly disclosed for nearly two years. From September 2023, a High Court super-injunction prohibited reporting on the breach and, initially,… […]
Storm-2561 Spreads Trojan VPN Clients via SEO Poisoning to Steal Credentials
Microsoft has disclosed details of a credential theft campaign that employs fake virtual private network (VPN) clients distributed through search engine optimization (SEO) poisoning techniques. “The campaign redirects users searching for legitimate enterprise software to malicious ZIP files on attacker-controlled websites to deploy digitally signed trojans that masquerade as trusted VPN clients
Investigating a New Click-Fix Variant
Disclaimer: This report has been prepared by the Threat Research Center to enhance cybersecurity awareness and support the strengthening of defense capabilities. It is based on independent research and observations of the current threat landscape available at the time of publication. The content is intended for informational and preparedness purposes only. Read more blogs around […]
Veeam warns admins to patch now as critical RCE flaws hit Backup & Replication
Backup vendor Veeam has released security updates to patch multiple vulnerabilities in its widely used Backup and Replication platform, including three critical flaws that could allow authenticated users to execute code on backup servers. Detailed in the company’s advisory KB4830, the vulnerabilities affect Veeam Backup & Replication 12.3.2.4165 and earlier version 12 builds, with fixes […]
CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-3909 Google Skia Out-of-Bounds Write Vulnerability CVE-2026-3910 Google Chromium V8 Unspecified Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise. Binding Operational Directive (BOD) […]
Splunk, Zoom Patch Severe Vulnerabilities
Critical- and high-severity flaws could be exploited to execute arbitrary shell commands or elevate privileges. The post Splunk, Zoom Patch Severe Vulnerabilities appeared first on SecurityWeek.
The Human IOC: Why Security Professionals Struggle with Social Vetting
Applying SOC-level rigor to the rumors, politics, and ‘human intel’ can make or break a security team. The post The Human IOC: Why Security Professionals Struggle with Social Vetting appeared first on SecurityWeek.
Ally WordPress Plugin Flaw Exposes Over 200,000 Websites to Attacks
The issue allows attackers to inject SQL queries and extract sensitive information from the database. The post Ally WordPress Plugin Flaw Exposes Over 200,000 Websites to Attacks appeared first on SecurityWeek.
Meta Launches New Protection Tools as It Helps Disrupt Scam Centers
The social media giant has disabled more than 150,000 accounts powering scam centers in Asia. The post Meta Launches New Protection Tools as It Helps Disrupt Scam Centers appeared first on SecurityWeek.
Apple Updates Legacy iOS Versions to Patch Coruna Exploits
The company has released iOS and iPadOS versions 16.7.15 and 15.8.7 to patch the vulnerabilities. The post Apple Updates Legacy iOS Versions to Patch Coruna Exploits appeared first on SecurityWeek.
Chrome 146 Update Patches Two Exploited Zero-Days
The flaws can be exploited to manipulate data and bypass security restrictions, potentially leading to code execution. The post Chrome 146 Update Patches Two Exploited Zero-Days appeared first on SecurityWeek.
Authorities Disrupt SocksEscort Proxy Service Powered by AVrecon Botnet
Law enforcement agencies in the US and Europe targeted the cybercrime service that has impacted 360,000 devices since 2020. The post Authorities Disrupt SocksEscort Proxy Service Powered by AVrecon Botnet appeared first on SecurityWeek.
Onyx Security Launches With $40 Million in Funding
The startup is building a control pane to help organizations oversee autonomous AI agents and rapidly adopt them. The post Onyx Security Launches With $40 Million in Funding appeared first on SecurityWeek.
Iran-Linked Hacker Attack on Stryker Disrupted Manufacturing and Shipping
Evidence indicates that the attackers leveraged existing endpoint management software rather than malware to wipe devices. The post Iran-Linked Hacker Attack on Stryker Disrupted Manufacturing and Shipping appeared first on SecurityWeek.
Stellenausschreibung: Finance & HR Admin Manager
Tactical Tech sucht einen erfahrenen, deutschsprachigen (auf Muttersprachniveau) Finanz- und Personalverwaltungsmanager für unser Team in Berlin.
Centre for Information Policy Leadership - CIPL
Centre for Information Policy Leadership – CIPL icolonnm Fri, 13/03/2026 – 11:40
Google Fixes Two Chrome Zero-Days Exploited in the Wild Affecting Skia and V8
Google on Thursday released security updates for its Chrome web browser to address two high-severity vulnerabilities that it said have been exploited in the wild. The list of vulnerabilities is as follows – CVE-2026-3909 (CVSS score: 8.8) – An out-of-bounds write vulnerability in the Skia 2D graphics library that allows a remote attacker to perform […]
Hybrid resilience: Designing incident response across on-prem, cloud and SaaS without losing your mind
I used to think hybrid incidents would get easier once we standardized on “one tool”: one monitoring platform, one ticketing system, one on-call process. After a few real outages, I changed my mind. Hybrid response fails at the seams between ownership models: on-prem teams, cloud teams, security, vendors. Each group can be correct inside its […]
Storm-2561 targets enterprise VPN users with SEO poisoning, fake clients
Microsoft has warned enterprises that cybercriminal group Storm-2561 is hijacking search engine results to serve trojanized VPN clients, stealing corporate credentials, and then covering its tracks before victims suspect anything is wrong. The group pushes spoofed websites to the top of results for queries such as “Pulse VPN download” or “Pulse Secure client,” redirecting users […]
Nine CrackArmor Flaws in Linux AppArmor Enable Root Escalation, Bypass Container Isolation
Cybersecurity researchers have disclosed multiple security vulnerabilities within the Linux kernel’s AppArmor module that could be exploited by unprivileged users to circumvent kernel protections, escalate to root, and undermine container isolation guarantees. The nine confused deputy vulnerabilities have been collectively codenamed CrackArmor by the Qualys Threat Research Unit (TRU). The
A React-based phishing page with credential exfiltration via EmailJS, (Fri, Mar 13th)
On Wednesday, a phishing message made its way into our handler inbox that contained a fairly typical low-quality lure, but turned out to be quite interesting in the end nonetheless. That is because the accompanying credential stealing web page was dynamically constructed using React and used a legitimate e-mail service for credential collection.
The cyber perimeter was never dead. We just abandoned it.
Industry has comforted itself with the idea that the perimeter is dead. It is not. What happened is far worse. We ignored the edge, let unsupported hardware decay in place, and effectively donated our perimeter to adversaries who were more than willing to accept it. The FBI’s Winter SHIELD effort is the operational side of […]
Authorities Disrupt SocksEscort Proxy Botnet Exploiting 369,000 IPs Across 163 Countries
A court-authorized international law enforcement operation has dismantled a criminal proxy service named SocksEscort that enslaved thousands of residential routers worldwide into a botnet for committing large-scale fraud. “SocksEscort infected home and small business internet routers with malware,” the U.S. Department of Justice (DoJ) said. “The malware allowed SocksEscort to direct internet
Veeam Patches 7 Critical Backup & Replication Flaws Allowing Remote Code Execution
Veeam has released security updates to address multiple critical vulnerabilities in its Backup & Replication software that, if successfully exploited, could result in remote code execution. The vulnerabilities are as follows – CVE-2026-21666 (CVSS score: 9.9) – A vulnerability that allows an authenticated domain user to perform remote code execution on the Backup Server. CVE-2026-21667 […]
10 Kennzahlen, die CISOs weiterbringen
Geht es um Security-Kennzahlen, sollten CISOs sich auf das Wesentliche fokussieren. Foto: Vadym Nechyporenko – shutterstock.com Die Security-Performance zu messen, gehört vielleicht nicht zu den aufregendsten Aufgaben eines CISOs – kann allerdings sehr nützlich sein, um eine ganze Reihe von Herausforderungen zu bewältigen. Neben der Erkenntnis darüber, wie effektiv ihre Security-Bemühungen sind, können Sicherheitsentscheider mit […]
ISC Stormcast For Friday, March 13th, 2026 https://isc.sans.edu/podcastdetail/9848, (Fri, Mar 13th)
Post Content
Telus Digital hit with massive data breach
Telus Digital, which provides business process outsourcing (BPO) services to a range of organizations worldwide, has been hit with a massive cyberattack conducted by extortion group ShinyHunters The group, which has been in operation since 2020, specializes in stealing data from Salesforce and other SaaS vendors, and has also recently been conducting voice phishing (vishing) […]
Risky Biz Soap Box: It took a decade, but allowlisting is cool again
In this Soap Box edition of the Risky Business podcast Patrick Gray sits down with Airlock Digital co-founders Daniel Schell and David Cottingham to talk about the role AI models could play in managing enterprise allowlists. They also talk about the durability of allowlisting as a control. After 12 years in business, the Airlock product […]
25-01916.pdf
25-01916.pdf Anonymous (not verified) Thu, 03/12/2026 – 17:00 Case ID 25-01916 Forum FINRA Document Type Award Claimants Ron Bednarz Respondents Cadaret, Grant & Co., Inc. Neutrals Michael J. Ahlstrom Benjamin F. Breslauer Edward W. Morris Hearing Site Jersey City, NJ Award Document 25-01916.pdf Documentum DocID 71f0aa89 Award Date Official Thu, 03/12/2026 – 12:00 Related Content […]
24-02593(3).pdf
24-02593(3).pdf Anonymous (not verified) Thu, 03/12/2026 – 17:00 Case ID 24-02593 Forum FINRA Document Type Motion to Vacate Claimants Wells Fargo Clearing Services, LLC Respondents Sterling Lane Neutrals Constance Ellen Boukidis Hearing Site Los Angeles, CA Award Document 24-02593(3).pdf Documentum DocID e349b356 Award Date Official Tue, 07/01/2025 – 12:00 Related Content On Claimant Representatives Pawel […]
2025083700301 Arcadia Securities LLC CRD 44656 AWC lp.pdf
2025083700301 Arcadia Securities LLC CRD 44656 AWC lp.pdf Anonymous (not verified) Thu, 03/12/2026 – 16:35 Case ID 2025083700301 Document Number 6e27c0b4 Document Type AWCs (Letters of Acceptance, Waiver, and Consent) Action Date Thu, 03/12/2026 – 12:00 Related Content Off Attachment 2025083700301 Arcadia Securities LLC CRD 44656 AWC lp.pdf
Medical giant Stryker crippled after Iranian hackers remotely wipe computers
A major cyberattack on US medical supplies giant Stryker has resulted in thousands of devices being remotely wiped, after a pro-Iranian hacking group may have compromised the company’s Microsoft Intune management system. Details remain sketchy, but what appears to have happened on Wednesday at one of the world’s largest medical supplies companies could, if confirmed, […]
Finance 2026: A preview of the year AI transformation gets real
What happens when finance finally stops treating modernization as a set of disconnected projects and starts running like a single, continuous system? If 2025 was the year experimentation with AI spiked, 2026 is the year finance leaders turn that energy into operating reality. The pressure is even higher for faster cycles, sharper insight, lower risk, […]
Why your CFO hates your agile transformation
For the past decade, the relationship between engineering and finance has been defined by a convenient truce. As long as interest rates were near zero and growth was the primary directive, the CFO was willing to treat R&D as a black box. The mandate was simple: hire the best engineers, adopt the fastest methodologies and […]
Building the foundation for AI impact at scale
Over the past year, I’ve had the opportunity to spend time with CIOs and CDAOs across industries and geographies, from Gartner C-level communities to strategic customer partnerships to executive roundtables. Despite differences in maturity, size, and industry, the themes are remarkably consistent. Organizations feel pressure to move faster with AI They are challenged with scaling […]
Staying ahead of the compliance landscape requires a modernised workflow
Australia’s regulatory environment is moving fast. Yet the way most businesses manage their obligations has barely changed in a decade, and now they’re facing significant risks. PwC’s Global Compliance Survey puts the pressure in sharp relief: 90 per cent of respondents say compliance requirements have grown more complex over the past three years. And 94 […]
Oracle to shed developers as it brings in AI tools
Oracle is set to shed software developers as it enters a new era: one where AI is an integral part of its product portfolio. However, the company is emphasizing that this move is not due to the so-called SaaSpocalypse, where new AI implementations damage the rollout of traditional SaaS operations. Instead, it is seeking to […]
Meeting culture: Hidden costs, pitfalls and practical guidelines
Do you get meeting invites at short notice, with no agenda or documents? Do your workplace meetings start late and run over their allotted time? Do people “accept” but not show up? You’re not alone. In many organizations, meetings are far from optimal. There is no way to cover all their studied aspects while keeping […]
6 worthwhile conferences for women in tech
Women are the minority at all major tech companies, most notably at Amazon (45%), Meta (37%), Apple (35%), Google (34%), and Microsoft (32%), and those numbers drop even more when narrowed down for leadership roles, according to data from the Women in Tech network. At Google, women only comprise 29% of leadership positions, and nearly […]
10 most powerful enterprise AI companies today
The origins of artificial intelligence trace back to the dark ages of the 1940s and 1950s, but the current AI rocket ship has a specific launch date: Nov. 30. 2022, when OpenAI released ChatGPT to the public. Over the past three years, an AI vendor ecosystem has developed, with a mix of pure-play LLM and […]
量子コンピューターのしくみ入門 ハードウェア方式と「なぜ難しいか」
量子はなぜ壊れやすいのか 量子コンピューターのニュースを追っていると、量子ビットの数や性能指標が話題になります。しかし、その裏にある本質は「量子状態を保ったまま、狙いどおりに操作して、最後に読み出す」ことが非常に難しいという一点に集約されます。量子ビットは外部の影響に敏感で、わずかな熱、電磁ノイズ、振動、材料内部の欠陥、さらには測定のための装置そのものの影響で、状態が乱れます。この乱れは「デコヒーレンス」と呼ばれ、重ね合わせやもつれといった量子らしさが失われてしまいます。古典コンピューターは多少の雑音があっても、0と1の判定が十分に離れていれば正しく動きます。ところが量子は、0と1の間の繊細な位相や確率振幅を“計算に使う”ため、ノイズが情報そのものを壊します。さらに、量子は観測すると状態が変わるという性質があるので、途中経過を気軽に確認できません。確認できないから誤りの検出と修正が難しく、結果としてハードウェア、制御、読み出しのすべてに高い精度が要求されます。この「壊れやすさ」を抑え込みながら、量子ビットを増やし、同時に高精度で操作するのが量子コンピューター開発の中心課題です。方式の違いは、この壊れやすさに対する戦い方の違いだと捉えると理解しやすくなります。 方式を分ける軸は「何を量子ビットにするか」 量子ビットは、電子の振る舞い、原子のエネルギー準位、光の性質など、量子力学のルールに従う実体を使って作ります。どの実体を使うかで、動作温度、装置の大きさ、制御の方法、スケールのさせ方が大きく変わります。たとえば、ある方式は極低温に冷やす代わりにチップ上で作りやすい、別の方式は常温に近い条件でも扱えるが装置が大掛かりになる、といったトレードオフがあります。また、量子ビット単体の性能が高い方式でも、大量に並べて同時に制御する段階で新しい問題が出ることがあります。方式の優劣は一言では決まらず、将来の用途やコストの見通しまで含めた総合戦になります。 超伝導方式が主流になった理由 現在、研究でもクラウド提供でもよく見かけるのが超伝導方式です。超伝導方式は、金属の微細回路をチップ上に作り、極低温に冷やして量子ビットとして使います。半導体産業で培われた微細加工や回路設計の知見を活かしやすく、設計変更のサイクルを回しやすい点が強みです。ただし最大の特徴は、冷却が必須であることです。量子状態を壊す熱雑音を抑えるため、極低温の冷凍機を使って運用します。これにより装置は大きくなり、運用コストも上がります。さらに、チップの外から量子ビットへ信号を届けるための配線や制御回路が増えるほど、熱の流入やノイズの侵入経路も増えます。量子ビットを増やすほど、単に「数を並べる」以上の難しさが積み上がっていきます。それでも超伝導方式が有力であり続けるのは、改善の余地が大きく、工学的に積み上げられる領域が広いからです。材料の改善、回路設計の工夫、読み出し方式の改良、制御電子回路との統合など、伸ばせるレバーが多く、産業化の道筋を描きやすい点が支持されています。 イオントラップ方式の強みとスケール課題 イオントラップ方式は、電荷を持つ原子(イオン)を電場で空中に捕まえ、レーザーなどで操作して量子ビットにします。量子ビットそのものが“同じ種類の原子”として揃っているため、個体差が小さく、非常に高い精度で操作できることが強みです。量子ビット間の相互作用も扱いやすく、計算の正確さに直結する指標で良い結果を出しやすい方式として知られています。一方で、装置は真空容器、精密な光学系、安定したレーザーなどを必要とし、システム全体が大掛かりになります。量子ビット数を増やすと、レーザー光を多数のイオンへ安定に当て分ける難しさや、イオンを並べる構造をどう拡張するかといった課題が前面に出てきます。イオントラップは「一つ一つの量子ビットを丁寧に扱える」方向で強いので、高精度を武器にしながら、モジュール化や光による接続などでスケールを狙う研究開発が進んでいます。得意な方向性がはっきりしているからこそ、用途によっては有力な選択肢になります。 中性原子、光量子、スピンなど多様なアプローチ 超伝導とイオントラップ以外にも、勢いのある方式がいくつもあります。中性原子方式は、電荷を持たない原子をレーザーで“光の罠”に捕まえ、規則正しく並べて量子ビットとして使います。原子を二次元的に多数並べやすく、量子ビット数を増やす設計が得意な一方で、原子を同時に高精度で制御し、エラーを抑える工学が重要になります。光量子方式は、光子そのものや光の干渉を使って情報処理を行います。光は外部ノイズの影響を受けにくく、遠距離伝送とも相性が良いので、量子通信や将来の分散型計算の発想とも結びつきます。ただし、光子を確実に生成し、干渉させ、検出する技術、そして損失に強い設計が鍵になります。また、半導体のスピンや欠陥中心を使う方式もあります。既存の半導体製造技術と相性がよい可能性があり、小型化や量産の夢がありますが、材料品質や制御精度の面で乗り越える壁もあります。重要なのは「勝者が一つに決まる」と早合点しないことです。方式ごとに、得意なスケール、求める環境、目指しやすい用途が異なり、将来は複数方式が並立する可能性も十分にあります。産業応用の視点では、性能だけでなく、運用コスト、供給網、保守性、ソフトウェアとの統合のしやすさまで含めた現実的な評価が必要になります。 エラー訂正が“実用”の鍵になる 量子コンピューターが本格的に産業を変えるには、計算を長く複雑に続けても結果の信頼性が保てる必要があります。しかし現状の量子ビットは、一定時間が経つと誤りが増えたり、操作のたびに少しずつズレが溜まったりします。そこで登場するのが量子エラー訂正です。量子エラー訂正は、複数の物理量子ビットを束ねて、一つの「論理量子ビット」として扱い、誤りを検出して抑え込む考え方です。直感的には、壊れやすい部品を何重にも冗長化し、壊れた兆候を観測して立て直す仕組みを、量子のルールに合わせて作るイメージに近いでしょう。ここで難しいのは、量子は観測すると状態が変わるため、誤りだけを“そっと”見つける必要がある点です。誤りの情報を得るための観測は行うが、計算に必要な量子情報は壊さない、という繊細な設計が求められます。このエラー訂正が実用の鍵である一方、現実のハードウェアにとってはとても重い要求でもあります。論理量子ビットを作るために多くの物理量子ビットが必要になり、制御線や読み出し回路も増え、システムはさらに複雑になります。だからこそ量子コンピューター開発では「量子ビット数を増やす」だけでなく、「エラー率を下げる」「安定に動かす」「運用しやすい構成にする」といった、地道な工学の積み上げが最重要になります。 NISQ時代とは何か 現時点の量子コンピューターは、エラー訂正が十分な規模で動いている段階にはまだ到達していません。そこで語られるのがNISQと呼ばれる時代観です。これは、ノイズがある量子装置を前提に、できる範囲で価値を引き出そうという考え方です。NISQで現実的になりやすいのは、量子だけで完結させるのではなく、古典コンピューターと組み合わせて使う方法です。量子で得意な部分だけを計算し、結果を古典側で評価して次の量子操作を調整する、といった往復を繰り返します。こうしたハイブリッド型の発想は、量子の限界を認めたうえで、少しでも産業に近い問題へ寄せていくための橋渡しになります。ただし、NISQでの成果は「将来の実用へ向けた前進」である一方、すぐに古典計算を置き換えるとは限りません。価値が出るには、問題の定式化、データの整備、評価指標の設定、そして量子に適した近似や工夫が必要です。量子ハードウェアの進歩と、ソフトウェアやユースケース設計の進歩が噛み合って初めて、産業インパクトにつながります。 方式の違いは「壊れやすさ」との戦い方の違い 量子コンピューターのハードウェア方式は多様ですが、共通しているのは「量子状態を壊さず、正確に操り、信頼できる結果を得る」という難題に挑んでいる点です。超伝導は工学的に積み上げやすく、イオントラップは高精度が魅力で、中性原子や光、スピンなどはそれぞれ独自のスケール戦略を持っています。どの方式も一長一短があり、将来は用途や環境によって使い分けが進む可能性があります。次の記事では、量子が産業で「どこに効くのか」を、最適化、シミュレーション、機械学習といった問題タイプと、業界別の見取り図として整理します。ハードの制約を理解したうえでユースケースを見ると、量子の現実的な価値がより立体的に見えるようになります。
Building a system of context for agentic AI
The “Age of Intelligence” has arrived, and enterprise ambitions are rising with it. Many organizations have moved beyond experimenting with generative AI chatbots and are targeting agentic AI: systems that can reason, decide, and execute multi-step work with limited human intervention. But there’s a hard truth behind the hype: autonomy is only as reliable as […]
Rust-Based VENON Malware Targets 33 Brazilian Banks with Credential-Stealing Overlays
Cybersecurity researchers have disclosed details of a new banking malware targeting Brazilian users that’s written in Rust, marking a significant departure from other known Delphi-based malware families associated with the Latin American cybercrime ecosystem. The malware, which is designed to infect Windows systems and was first discovered last month, has been codenamed VENON by Brazilian
Monthly Disciplinary Actions - March 2026
Monthly Disciplinary Actions – March 2026 MwinamoC Thu, 03/12/2026 – 13:18
Hive0163 Uses AI-Assisted Slopoly Malware for Persistent Access in Ransomware Attacks
Cybersecurity researchers have disclosed details of a suspected artificial intelligence (AI)-generated malware codenamed Slopoly put to use by a financially motivated threat actor named Hive0163. “Although still relatively unspectacular, AI-generated malware such as Slopoly shows how easily threat actors can weaponize AI to develop new malware frameworks in a fraction of the time it used […]
Telus Digital confirms breach after ShinyHunters claims 1 petabyte data theft
Lawrence Abrams reports: Canadian business process outsourcing giant Telus Digital has confirmed it suffered a security incident after threat actors claimed to have stolen nearly 1 petabyte of data from the company in a multi-month breach. Telus Digital is the digital services and business process outsourcing (BPO) arm of Canadian telecommunications provider Telus, providing customer support,… […]
Update: Board of Governors March Meeting
Update: Board of Governors March Meeting K33357 Thu, 03/12/2026 – 10:51 March 12, 2026 The FINRA Board of Governors met last week in New York. It was the first meeting for Tim Carter, Dan Gallagher, and Heather Traeger, who were recently appointed as Governors along with Rostin “Russ” Behnam. I am pleased to share several updates […]
How to Scale Phishing Detection in Your SOC: 3 Steps for CISOs
Phishing has quietly turned into one of the hardest enterprise threats to expose early. Instead of crude lures and obvious payloads, modern campaigns rely on trusted infrastructure, legitimate-looking authentication flows, and encrypted traffic that conceals malicious behavior from traditional detection layers. For CISOs, the priority is now clear: scale phishing detection in a way that […]
ThreatsDay Bulletin: OAuth Trap, EDR Killer, Signal Phishing, Zombie ZIP, AI Platform Hack & More
Another Thursday, another pile of weird security stuff that somehow happened in just seven days. Some of it is clever. Some of it is lazy. A few bits fall into that uncomfortable category of “yeah… this is probably going to show up in real incidents sooner than we’d like.” The pattern this week feels familiar […]
China’s CERT warns OpenClaw can inflict nasty wounds
Simon Sharwood reports: China’s National Computer Network Emergency Response Technical Team has warned locals that the OpenClaw agentic AI tool poses significant security risks. In a Tuesday post to its WeChat account, the CERT warned that OpenClaw has “extremely weak default security configuration” and must therefore be handled with extreme care. The CERT is worried that attackers… […]
Bell Ambulance data breach impacted over 238,000 people
Pierluigi Paganini reports: Nearly 238,000 individuals are impacted by a February 2025 Bell Ambulance data breach. Bell Ambulance is a U.S.-based emergency medical services provider offering ambulance transport, paramedic care, and patient support. It serves communities with urgent medical response, interfacility transfers, and non-emergency transport, focusing on patient safety and timely care. On February 13,… […]
Inductive Automation Ignition Software
View CSAF Summary Successful exploitation of this vulnerability could allow an attacker to execute malicious code with OS application service account permissions that the authenticated, privileged application user did not intend on running. The following versions of Inductive Automation Ignition Software are affected: Ignition Software <8.3.0 (CVE-2025-13913) CVSS Vendor Equipment Vulnerabilities v3 6.3 Inductive Automation […]
Siemens Heliox EV Chargers
View CSAF Summary Heliox EV Chargers listed below contain improper access control vulnerability that could allow an attacker to reach unauthorized services via the charging cable. Siemens has released new versions for the affected products and recommends to update to the latest versions. The following versions of Siemens Heliox EV Chargers are affected: Heliox Flex […]
Trane Tracer SC, Tracer SC+, and Tracer Concierge
View CSAF Summary Successful exploitation of these vulnerabilities could allow an attacker to disclose sensitive information, execute arbitrary commands, or perform a denial-of-service on the product. The following versions of Trane Tracer SC, Tracer SC+, and Tracer Concierge are affected: Tracer SC Tracer SC+ Tracer Concierge CVSS Vendor Equipment Vulnerabilities v3 8.1 Trane Trane Tracer […]
Siemens SIMATIC
View CSAF Summary SIMATIC S7-1500 devices contain a vulnerability that could allow an attacker to inject code by tricking a legitimate user into importing a specially crafted trace file in the web interface. Siemens has released new versions for several affected products and recommends to update to the latest versions. Siemens is preparing further fix […]
Siemens RUGGEDCOM APE1808 Devices
View CSAF Summary Fortinet has published information on vulnerabilities in FORTIOS. This advisory lists the related Siemens Industrial products. Siemens has released a new version for RUGGEDCOM APE1808 and recommends to update to the latest version. The following versions of Siemens RUGGEDCOM APE1808 Devices are affected: RUGGEDCOM APE1808 vers:all/*, vers:all/* (CVE-2026-24858, CVE-2025-55018, CVE-2025-62439, CVE-2025-64157) CVSS […]
Siemens SIDIS Prime
View CSAF Summary SIDIS Prime before V4.0.800 is affected by multiple vulnerabilities in the components OpenSSL, SQLite, and several Node.js packages as described below. Siemens has released a new version of SIDIS Prime and recommends to update to the latest version. The following versions of Siemens SIDIS Prime are affected: SIDIS Prime vers:intdot/<4.0.800 (CVE-2024-29857, CVE-2024-30171, […]
Lotte Card fined 9.6 billion won for leaking users’ social registration numbers
Korea JoongAng Daily reports: Lotte Card was fined 9.6 billion won ($6.5 million) by the Personal Information Protection Commission (PIPC) after 450,000 users’ social registration numbers were leaked. The PIPC decided to impose an administrative fine of 9.62 billion won and a penalty of 4.8 million won on Lotte Card for violations of the Personal Information… […]
PhantomRaven returns to npm with 88 bad packages
Last year’s “PhantomRaven” supply-chain campaign is back, with security researchers uncovering 88 new malicious packages in what they describe as the second, third, and fourth waves of the operation. According to Endor Labs findings, the newly discovered packages were published between November 2025 and February 2026, with 81 of them still available on npm along […]
Attackers Don't Just Send Phishing Emails. They Weaponize Your SOC's Workload
The most dangerous phishing campaigns aren’t just designed to fool employees. Many are designed to exhaust the analysts investigating them. When a phishing investigation takes 12 hours instead of five minutes, the outcome can shift from a contained incident to a breach. For years, the cybersecurity industry has focused on the front door of phishing […]
OpenAI to Acquire AI Security Startup Promptfoo
Promptfoo has raised more than $23 million in funding for a platform that helps developers secure LLMs and AI agents. The post OpenAI to Acquire AI Security Startup Promptfoo appeared first on SecurityWeek.
Scanner Raises $22 Million for AI-Powered Threat Hunting
The company connects AI agents to security data lakes for interactive investigations, detection engineering, and autonomous response. The post Scanner Raises $22 Million for AI-Powered Threat Hunting appeared first on SecurityWeek.
238,000 Impacted by Bell Ambulance Data Breach
Hackers stole personal information such as names, Social Security numbers, and driver’s license numbers. The post 238,000 Impacted by Bell Ambulance Data Breach appeared first on SecurityWeek.
CISO Conversations: Aimee Cardwell
Cardwell started her career at Netscape, become a VP of engineering at American Express, CISO at UnitedHealth Group, and now CISO in Residence at Transcend. The post CISO Conversations: Aimee Cardwell appeared first on SecurityWeek.
Wiz Joins Google Cloud as Landmark Acquisition Closes
Google has completed its $32 billion acquisition of the cloud security giant, which will maintain its brand. The post Wiz Joins Google Cloud as Landmark Acquisition Closes appeared first on SecurityWeek.
MedTech Giant Stryker Crippled by Iran-Linked Hacker Attack
Stryker was targeted by the Handala group, which claims to have wiped more than 200,000 of the company’s devices. The post MedTech Giant Stryker Crippled by Iran-Linked Hacker Attack appeared first on SecurityWeek.
Senate Confirms Joshua Rudd to Lead NSA and US Cyber Command
The leadership structure, commonly referred to as the “dual-hat” arrangement, assigns a single individual to oversee both organizations. The post Senate Confirms Joshua Rudd to Lead NSA and US Cyber Command appeared first on SecurityWeek.
Polyfill Supply Chain Attack Impacting 100k Sites Linked to North Korea
The 2024 incident was initially linked to China, but an infostealer infection has now revealed North Korean involvement. The post Polyfill Supply Chain Attack Impacting 100k Sites Linked to North Korea appeared first on SecurityWeek.
Critical N8n Vulnerabilities Allowed Server Takeover
The bugs allowed unauthenticated attackers to execute arbitrary code, steal credentials, and take over servers. The post Critical N8n Vulnerabilities Allowed Server Takeover appeared first on SecurityWeek.
Cisco Patches High-Severity IOS XR Vulnerabilities
The security defects could lead to denial-of-service (DoS) conditions, command execution, or device takeover. The post Cisco Patches High-Severity IOS XR Vulnerabilities appeared first on SecurityWeek.
EDPB letter to the European Commission on the privacy implications of recent proposed legislative changes regarding entry conditions to the United States for EEA citizens
EDPB letter to the European Commission on the privacy implications of recent proposed legislative changes regarding entry conditions to the United States for EEA citizens icolonnm Thu, 12/03/2026 – 11:20 12 March 2026 EDPB letter to the European Commission 172.1KB English Download
Apple Issues Security Updates for Older iOS Devices Targeted by Coruna WebKit Exploit
Apple on Wednesday backported fixes for a security flaw in iOS, iPadOS, and macOS Sonoma to older versions after it was found to be used as part of the Coruna exploit kit. The vulnerability, tracked as CVE-2023-43010, relates to an unspecified vulnerability in WebKit that could result in memory corruption when processing maliciously crafted web […]
North Korean fake IT worker tradecraft exposed
Research from GitLab has exposed the latest tradecraft behind North Korean fake IT worker scams. GitLab banned 131 North Korean-attributed accounts last year, most of which involved JavaScript repositories that acted as resources in the so-called Contagious Interview campaign. In most cases, GitLab projects acted as obfuscated loaders for malware payloads — such as BeaverTail […]
Six Android Malware Families Target Pix Payments, Banking Apps, and Crypto Wallets
Cybersecurity researchers have discovered half-a-dozen new Android malware families that come with capabilities to steal data from compromised devices and conduct financial fraud. The Android malware range from traditional banking trojans like PixRevolution, TaxiSpy RAT, BeatBanker, Mirax, and Oblivion RAT to full-fledged remote administration tools such as SURXRAT. PixRevolution, according to
AI use is changing how much companies pay for cyber insurance
In July 2025, McDonald’s had an unexpected problem on the menu, one involving McHire, its AI-powered platform used to recruit and screen job applicants. The system, developed by Paradox.ai, featured a rookie-level security flaw: the backend for restaurant operators accepted “123456” as both username and password, and lacked multi-factor authentication. As a result, the personal […]
“Zombie ZIP”: Neue Angriffstechnik täuscht Virenscanner
Mithilfe sogenannter Zombie-ZIPs lassen sich fast alle Virenscanner austricksen. Pressmaster | shutterstock.com Eine neue Technik mit dem Namen „Zombie ZIP“ ist in der Lage, Payloads in komprimierten Dateien zu verbergen. Sicherheitslösungen wie Antiviren- und EDR-Produkte (Endpoint Detection and Response) können sie nicht entdecken, denn die digitalen Untoten wurden speziell geschaffen, um die Security zu umgehen. […]
CISA Flags Actively Exploited n8n RCE Bug as 24,700 Instances Remain Exposed
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added a critical security flaw impacting n8n to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. The vulnerability, tracked as CVE-2025-68613 (CVSS score: 9.9), concerns a case of expression injection that leads to remote code execution. The security shortcoming was patched
Wie CISOs schlechte Angebote enttarnen
Drum prüfe… Ground Picture | shutterstock.com Security-Anbietern stehen viele Wege offen, um CISOs und Sicherheitsentscheider mit Lobpreisungen und Angeboten zu ihren jeweils aktuellen Produkten und Lösungen zu penetrieren. Und die nutzen sie auch: Manche Sicherheitsverantwortliche erhalten mehr als 30 solcher Anfragen pro Woche – per Telefon, E-Mail oder auch über LinkedIn. Um erkennen zu können, […]
ISC Stormcast For Thursday, March 12th, 2026 https://isc.sans.edu/podcastdetail/9846, (Thu, Mar 12th)
Post Content
When your IoT Device Logs in as Admin, It?s too Late! [Guest Diary], (Wed, Mar 11th)
[This is a Guest Diary by Adam Thorman, an ISC intern as part of the SANS.edu BACS program]
Resumés with malicious ISO attachments are circulating, says Aryaka
Threat actors are still having success tricking human resources staff into opening malware-infected phishing emails. The latest example is detailed by researchers at Aryaka, who this week described a campaign by an unnamed threat actor who is distributing resumés containing a malicious ISO file to HR departments. It’s delivered through recruitment channels, and hosted on […]
Handala claims responsibility for attack on medical device maker Stryker
A.J. Vicens and Christy Santhosh report: An Iranian-linked hacking group on Wednesday claimed responsibility for a destructive cyberattack on U.S.-based medical device and services provider Stryker, according to messages posted to the group’s Telegram channel. The Michigan-based company, with 56,000 employees and operations in 61 countries, said in a filing with the SEC that the… […]
CISA warns of actively exploited Ivanti EPM and Cisco SD-WAN flaws
The US Cybersecurity and Infrastructure Security Agency (CISA) has warned that an authentication bypass vulnerability patched in Ivanti Endpoint Manager (EPM) last month is now being exploited in the wild. The agency has also updated its directive related to two Cisco Catalyst SD-WAN flaws that were also fixed last month after being used in zero-day […]
American Securities Association (ASA) Comment On Regulatory Notice 26-02
American Securities Association (ASA) Comment On Regulatory Notice 26-02 fnrw-backend Wed, 03/11/2026 – 17:23 Jessica Giroux Jessica Giroux <jgiroux@americansecurities.org> American Securities Association (ASA) Regulatory Notice 26-02 Core Official Date Wed, 03/11/2026 – 12:00 Comment File ASA to FINRA_Senior Fraud March 2026.pdf
Cliff Palefsky Comment On Regulatory Notice 26-06
Cliff Palefsky Comment On Regulatory Notice 26-06 fnrw-backend Wed, 03/11/2026 – 17:19 Cliff Palefsky CA US cp@mhpsf.com Attorney Until you make arbitration voluntary, this is all window dressing. Hard to believe the SEC never did the study required by Congress. Don’t allow dispositive motions, permit depositions and real discovery where appropriate. Regulatory Notice 26-06 Core […]
Data management principles for resilient systems
“It is not the most intellectual of the species that survives; it is not the strongest that survives; but the species that survives is the one that is able to adapt to and to adjust best to the changing environment in which it finds itself” —Leon C. Megginson, paraphrasing Charles Darwin, 1964 The shifting tides […]
PepsiCo’s refreshing take on AI to fuel global growth
PepsiCo, the multinational food and beverage company comprised of dozens of household brands, is in a constant state of transformation as business goals and technology capabilities intertwine. With a clear focus on getting the best out of both is Karthik Sankaran, the company’s VP of technology for global sales transformation. Of course, each part is […]
5 metrics to drive successful AI outcomes
Despite massive investments in AI last year, most businesses have struggled to achieve measurable results. In PwC’s January 2026 Global CEO Survey, 56% of CEOs reported neither increased revenue nor decreased costs from AI in the last 12 months — a statistic backed by Gartner figures that show only 5% of CFOs have reported cost […]
New US CIO appointments, March 2026
Movers & Shakers is where you can keep up with new CIO appointments and gain valuable insight into the job market and CIO hiring trends. As every company becomes a technology company, CEOs and corporate boards are seeking multi-dimensional CIOs and IT leaders with superior skills in technology, communications, business strategy, and digital innovation. The […]
Hijos de Rivera convierte la tecnología en motor de su estrategia empresarial para reforzar su relación con la hostelería
Hace más de un siglo, el fundador de Hijos de Rivera plantó la semilla de lo que hoy es uno de los grupos cerveceros familiares más importantes de España. Conocida por marcas como Estrella Galicia, 1906 o Cabreiroá, Corporación Hijos de Rivera mantiene ese legado desde Galicia como una compañía familiar, independiente y de capital […]
What you need to know about the coming of age of neoclouds
Over the past two years, I’ve seen a noticeable shift in how technology leaders talk about AI infrastructure. Twelve months ago, the conversation was dominated by GPU availability and cost. But today, the questions being asked are far less binary. Both CIOs and CTOs are asking whether specialized AI cloud providers, now being referred to […]
受託開発から価値共創へ:日米システムインテグレーターのビジネスモデル徹底比較
そもそも「SI」が指す範囲が日米で違う 同じ「システムインテグレーター」という言葉でも、日米で想起される事業領域はかなり違う。日本では、SIというと要件定義から設計・開発・テストを経て、運用保守まで含めて一括で請け負う“受託開発の総合力”の印象が強い。顧客企業の情報システム部門に代わって、プロジェクトを完遂し、止まらない仕組みを作り、止めない体制を整えることが中心的な価値になる。 一方で米国では、SIは「実装を担う大きな役者」の一つではあるが、より広く“変革の実行部隊”として理解されやすい。ITだけでなく業務・組織・データ・オペレーションまで含めて、企業変革を前に進めるためのサービス群としてSIが語られることが多い。ここでのSIは、単に言われたものを作る存在というより、変化を起こし続けるための仕組みと運営を設計し、それを動かすところまで関与する。 この定義のズレが、両国のビジネスモデルの違いを生む土台になっている。日本は「一括で任せられる安心」が求められやすく、米国は「変革の成果に直結する推進力」が求められやすい。その結果、売り方も、契約も、組織も、技術投資も別の方向へ進みやすい。 日本は「工数」、米国は「成果」に寄りやすい ビジネスモデルを考えるとき、最も分かりやすい違いは、価値の測り方が何に寄っているかだ。日本のSIは、歴史的に「工程を確実に進め、品質を担保し、納期通りに納める」ことが強く評価されてきた。そのため、見積もりは作業量を細かく積み上げ、どの工程に何人月を投下するかが重要になる。もちろん成果が不要という話ではなく、成果は前提として、その成果に至るまでの“手続きとしての確実性”が対価の根拠になりやすい。 米国では、同じ開発でも「どの成果を、いつまでに、どの指標で達成するか」がより強く前面に出やすい。工数で請求するモデルが無いわけではないが、変革型プロジェクトでは、成果を定義し、その成果を出すために何を変えるのかを売る比重が大きい。例えば、クラウド移行を売るにしても、単に移す作業ではなく、移行によってリリース頻度が上がるのか、障害対応が短縮されるのか、インフラコストが最適化されるのか、といった効果を語り、その効果を出す手段としての実装を提示する。 この差は、提案書の構造にも表れる。日本の提案では、体制、工程、品質計画、レビュー観点などが厚くなりやすい。米国の提案では、現状診断、To-Be像、ロードマップ、価値指標、チェンジマネジメントといった“成果に至る筋道”が厚くなりやすい。どちらが優れているというより、求められる安心の種類が違うと言ったほうが正確だ。日本は「失敗しない安心」を売りやすく、米国は「勝てる未来への納得」を売りやすい。 売上の源泉が異なると、提案の仕方が変わる 日本のSIが強い領域の一つに、RFPに対して高い確度で答えを作り上げる能力がある。要求が明確で、スコープが比較的固定され、品質と納期が重視される場面では、この力がそのまま競争力になる。顧客が求める要件を漏れなく拾い、想定される例外を潰し、安定稼働の設計まで織り込む。ここでの提案は「この仕様をこの工程で、この体制で、この品質で実現します」という約束の提示に近い。 米国のSIは、RFP対応型の案件も当然あるが、それ以上に「課題発見型」「変革推進型」の入り方が強い。最初から要求が整っているとは限らない。むしろ、要求が曖昧なまま、競争環境やコスト構造の問題が迫っている。そこでSI側が診断を行い、課題を言語化し、優先順位を決め、段階的な実行計画に落とし込みながら、顧客と一緒にゴールを設計していく。この入り口は、実装の見積もりよりも前に、アセスメントやワークショップ、プロトタイプで価値を示し、方向性を固めることに重心が置かれる。 売上の源泉が「大規模構築の一括受託」か、「変革の継続的推進」かで、提案のスタイルは必然的に変わる。前者ではスコープを固め、リスクを抑え、期待値を揃え、確実に納めることが中心になる。後者では、変化を前提に、学習しながら価値を積み上げることが中心になる。すると、顧客とのコミュニケーションも違ってくる。日本は合意形成の厚みでプロジェクトの安定を作り、米国は意思決定の速さでプロジェクトの推進力を作る傾向が出やすい。 運用・保守の位置づけが事業を左右する 日米のSIの差を語るとき、実は運用・保守の位置づけが大きい。日本のSIは、運用を含めた長期の関係性の中で価値を発揮しやすい。ミッションクリティカルな領域では、止めないことが何より重要で、障害対応、性能管理、変更管理、監査対応など、地道で高度な仕事が連続する。ここでの強みは、属人性だけではなく、手順の整備、品質文化、ベンダー間調整、24/365の運用体制などを“組織として”成立させる力にある。 米国でも運用は当然重要だが、ビジネスとしては「マネージドサービス」として明確に商品化される比重が高い。運用を単なる後工程ではなく、SLAや可用性目標、セキュリティ運用、コスト最適化と結びつけ、継続的に改善するサービスとして設計する。運用を請け負うこと自体よりも、運用を通じて顧客のビジネス価値を高め続ける枠組みを作ることが、提案の核になりやすい。 ここでの違いは、運用に対する見方の差でもある。日本では運用は「安定させる」色が濃く、米国では運用は「改善し続ける」色が濃い。安定と改善は両立できるのだが、どちらを前面に出すかで、必要な人材、指標、投資領域が変わる。日本のSIが運用で培った現場力は、改善型の運用へ接続できる資産でもある一方、契約や評価の仕組みが改善を評価しにくい形のままだと、強みが伸びきらないことがある。 プロダクト化とパートナー戦略の差 米国のSIが強く見える要因として、プロダクト化の思想がある。ここでいうプロダクト化は、SaaSを作るという意味に限らない。業界別テンプレート、導入加速ツール、データモデル、リファレンスアーキテクチャ、移行手順の自動化など、案件ごとにゼロから作らず“再利用できる形”にする発想が強い。これにより、提案の段階から「この型で早く確実に価値を出せます」と言いやすくなり、実行段階でも品質と速度を両立しやすくなる。 日本のSIも標準化は進めているが、受託の比重が高いほど、顧客ごとの個別最適が積み上がり、再利用が難しくなりやすい。顧客の事情に合わせて丁寧に作り込むこと自体は強みだが、その強みが「毎回違うものを作る」方向に固定されると、結果として生産性の上限が低くなる。さらに、プロダクト化には初期投資が必要で、短期の工数売上中心のモデルだと投資判断が難しいこともある。 パートナー戦略にも差が出る。米国のSIは、クラウドベンダーや主要SaaSとのパートナー制度を“成長装置”として活用し、認定や共同マーケティング、実績の横展開を通じて案件獲得につなげやすい。日本でも同様の仕組みはあるが、顧客との長期取引の中で案件が生まれやすい構造では、パートナー制度が“補助線”になりやすく、最前線の武器として使い切れないケースもある。 この差は、SIの組織内で何が評価されるかにも連動する。再利用できる資産を作った人が、短期的な売上を作った人と同じように評価されるかどうか。評価されないなら資産は育たない。逆に評価されるなら、時間が経つほど強い仕組みになる。プロダクト化は、技術だけでなく経営設計の問題でもある。 日本SIが取りうる次の成長モデル 日米比較をすると、日本のSIが遅れているように見える論調に流れがちだが、それは見方が単純すぎる。日本のSIが持つ品質文化、調整力、長期運用の経験、ミッションクリティカルを止めない技術と体制は、世界的に見ても強い資産だ。問題は、その資産を「工数と個別最適の積み上げ」に閉じ込めてしまうと、伸びしろが小さくなる点にある。 成長の方向として現実的なのは、受託の強みを捨てることではなく、強みを“価値として説明できる形”に翻訳することだ。例えば、安定稼働のために積み上げてきた運用設計を、SLOや可観測性、セキュリティ運用と結びつけて、改善のストーリーとして語れるようにする。品質保証を「工程の厚み」だけでなく、「リリース頻度を落とさず品質を維持する仕組み」として提示する。調整力を「遅い合意形成」ではなく、「意思決定の材料を揃えて速く決められる状態を作る力」として再定義する。 さらに、プロダクト化と標準化を段階的に進める余地が大きい。全部を共通化する必要はない。日本の強みである業務理解や現場適応を残しつつ、共通化できる部分を切り出し、再利用できる資産として育てる。これができると、見積もりの構造も変わり、提案は「工数の説明」から「価値と速度の説明」へ寄せやすくなる。結果として、顧客との関係も、言われたものを作るだけではなく、変化を一緒に回すパートナーへ近づく。 日米SIのビジネスモデルの違いは、優劣の話ではなく、前提の違いが作った帰結だ。日本のSIは、安定と品質という強い土台を持っている。その土台の上に、成果指標、改善型運用、再利用資産、変革の語り方を重ねることができれば、受託の延長線上に“価値共創型”の成長モデルを作ることは十分可能だ。日本が得意な「止めない」を守りながら、「変え続ける」を実装する。そこに次の競争力がある。
데이터이쿠, ‘AI 성공을 위한 플랫폼’ 공개…기업 AI 운영 통합 관리 지원
이번 플랫폼과 함께 데이터이쿠는 ▲교차 플랫폼 환경에서 에이전트 거버넌스와 비즈니스 영향을 검증하는 ‘에이전트 매니지먼트(Dataiku Agent Management)’ ▲시각적 인터페이스 기반으로 AI 지원 에이전트를 구축·검증할 수 있는 ‘코빌드(Dataiku Cobuild)’ ▲산업 특화 에이전트를 활용해 의사결정을 지원하는 ‘리즈닝 시스템즈(Dataiku Reasoning Systems)’ 등 세 가지 신규 기능도 공개했다. 이를 통해 기업이 AI 시스템을 구축하고 연결하며 관리·확장하는 방식을 지원한다는 설명이다. 해당 […]
The value of data fabric for AI projects
To help drive new artificial intelligence applications, one company converted a data gathering effort that could only be completed once every six months into one that happens daily. Another reduced the number of data sets needed by more than 90%, leading to better results, faster. This is the power a data fabric can bring. In […]
Mucha IA, poco ROI: del entusiasmo inicial a la presión por resultados
Después de años de ensayo y error, a inicios de 2026 el ROI de la IA sigue siendo uno de las principales interrogantes en el mundo corporativo. En un contexto en el que las organizaciones continúan invirtiendo en esta tecnología con la expectativa de alcanzar promesas de eficiencia, todavía es evidente la brecha entre su […]
Researchers Trick Perplexity's Comet AI Browser Into Phishing Scam in Under Four Minutes
Agentic web browsers that leverage artificial intelligence (AI) capabilities to autonomously execute actions across multiple websites on behalf of a user could be trained and tricked into falling prey to phishing and scam traps. The attack, at its core, takes advantage of AI browsers’ tendency to reason their actions and use it against the model […]
Iran-Backed Hackers Claim Wiper Attack on Medtech Firm Stryker
A hacktivist group with links to Iran’s intelligence agencies is claiming responsibility for a data-wiping attack against Stryker, a global medical technology company based in Michigan. News reports out of Ireland, Stryker’s largest hub outside of the United States, said the company sent home more than 5,000 workers there today. Meanwhile, a voicemail message at […]
Critical n8n Flaws Allow Remote Code Execution and Exposure of Stored Credentials
Cybersecurity researchers have disclosed details of two now-patched security flaws in the n8n workflow automation platform, including two critical bugs that could result in arbitrary command execution. The vulnerabilities are listed below – CVE-2026-27577 (CVSS score: 9.4) – Expression sandbox escape leading to remote code execution (RCE) CVE-2026-27493 (CVSS score: 9.5) – Unauthenticated
Police Scotland fined £66k for extracting and sharing mobile phone data
Scottish Legal News reports: The Information Commissioner’s Office (ICO) issued the fine and reprimand after finding that a series of data protection failures resulted in the excessive collection, handling and unlawful disclosure of sensitive personal information. The data protection authority says the case highlights key data protection practices that all police services and criminal justice… […]
EDPB and EDPS support harmonisation of clinical trials under European Biotech Act, but call for specific safeguards for sensitive health data
EDPB and EDPS support harmonisation of clinical trials under European Biotech Act, but call for specific safeguards for sensitive health data icolonnm Wed, 11/03/2026 – 15:13 12 March 2026 EDPB EDPS Brussels, 12 March 2026 – The European Data Protection Board (EDPB) and the European Data Protection Supervisor (EDPS) have adopted a Joint Opinion on […]
AI Adoption in Practice Webinar Series
AI Adoption in Practice Webinar Series K33357 Wed, 03/11/2026 – 10:01 Join FINRA staff and member firms for conversations about artificial intelligence (AI) adoption in the securities industry. This virtual three-part series brings regulatory experts and practitioners together to share real experiences and practical solutions. Contracts: Hear how firms are navigating consent, data usage rights […]
Meta Disables 150K Accounts Linked to Southeast Asia Scam Centers in Global Crackdown
Meta on Wednesday said it disabled over 150,000 accounts associated with scam centers in Southeast Asia as part of a coordinated effort in partnership with authorities from Thailand, the U.S., the U.K., Canada, Korea, Japan, Singapore, the Philippines, Australia, New Zealand, and Indonesia. The effort also led to 21 arrests made by the Royal Thai […]
AWS expands Security Hub for multicloud security operations
Amazon Web Services is expanding AWS Security Hub to function as a centralized security operations platform capable of aggregating risk signals across multicloud environments. With the updated Security Hub, the company said it will introduce a unified operations layer that provides security teams with near real-time risk analytics, automated analysis, and prioritized insights. As enterprise […]
Dozens of Vendors Patch Security Flaws Across Enterprise Software and Network Devices
SAP has released security updates to address two critical security flaws that could be exploited to achieve arbitrary code execution on affected systems. The vulnerabilities in question listed below – CVE-2019-17571 (CVSS score: 9.8) – A code injection vulnerability in SAP Quotation Management Insurance application (FS-QUO) CVE-2026-27685 (CVSS score: 9.1) – An insecure deserialization
The rise of teen hackers ‘makes for a good headline’, but cyber crime activities peak later in life
Emma Woollacott reports: While much emphasis has been placed on the rise of youth cyber crime over the last two years, new research shows hacker activity peaks much later. Orange Cyberdefense looked at the numbers and found that it’s actually thirty- and forty-somethings that are the greatest threat. The company’s intelligence team analyzed 418 publicly announced law enforcement activities… […]
CISA Adds One Known Exploited Vulnerability to Catalog
CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2025-68613 n8n Improper Control of Dynamically-Managed Code Resources Vulnerability This type of vulnerability is a frequent attack vector for malicious cyber actors and poses significant risks to the federal enterprise. Binding Operational Directive (BOD) 22-01: Reducing […]
Viral ‘Quittr’ Porn Addiction App Exposed the Masturbation Habits of Hundreds of Thousands of Users
Emanuel Maiberg reports: Quittr, an app that promises to help men stop watching pornography, leaked intimate data on hundreds of thousands of its users, including their masturbation habits, and lied about its security issues, 404 Media can now reveal. I first reported about Quittr exposing user data in January, but was unable to name Quittr in… […]
Overly permissive ‘guest’ settings put Salesforce customers at risk
Salesforce is urging its customers to review their Experience Cloud ‘guest’ configurations as cybercrime group ShinyHunters claims a new campaign involving data theft and extortion tied to exposed Salesforce environments. The group recently posted screenshots on its leak site claiming breaches of “several hundreds” of organizations, including around 400 websites and roughly 100 “high profile […]
What Boards Must Demand in the Age of AI-Automated Exploitation
“You knew, and you could have acted. Why didn’t you?” This is the question you do not want to be asked. And increasingly, it’s the question leaders are forced to answer after an incident. For years, many executive teams and boards have treated a large vulnerability backlog as an uncomfortable but tolerable fact of life: […]
EDPB-EDPS Joint Opinion 3/2026 on the Proposal for a European Biotech Act
EDPB-EDPS Joint Opinion 3/2026 on the Proposal for a European Biotech Act icolonnm Wed, 11/03/2026 – 12:24 12 March 2026 EDPB-EDPS Joint Opinion 3/2026 734.9KB English Download Topics: EU Legislative proposal and strategy GDPR Health Artificial intelligence Controller Legal basis
Thousands Affected by Ericsson Data Breach
The telecommunications equipment and services giant has blamed the incident on a third-party vendor. The post Thousands Affected by Ericsson Data Breach appeared first on SecurityWeek.
SAP Patches Critical FS-QUO, NetWeaver Vulnerabilities
A code injection bug in FS-QUO and an insecure deserialization flaw in NetWeaver could lead to arbitrary code execution. The post SAP Patches Critical FS-QUO, NetWeaver Vulnerabilities appeared first on SecurityWeek.
Webinar Today: Securing Fragile OT in an Exposed World
Join the webinar as we examine the current OT threat landscape and move past the “doom and gloom” to discuss the mechanics of modern OT exposure. The post Webinar Today: Securing Fragile OT in an Exposed World appeared first on SecurityWeek.
Kai Emerges From Stealth With $125M in Funding for AI Platform Bridging IT and OT Security
The company was created by a Claroty founder and is backed by Evolution Equity Partners, N47, and other investors. The post Kai Emerges From Stealth With $125M in Funding for AI Platform Bridging IT and OT Security appeared first on SecurityWeek.
Jazz Emerges From Stealth With $61M in Funding for AI-Powered DLP
The startup brings AI to data loss prevention to provide visibility into intent, context, and risk. The post Jazz Emerges From Stealth With $61M in Funding for AI-Powered DLP appeared first on SecurityWeek.
Adobe Patches 80 Vulnerabilities Across Eight Products
Adobe has rolled out patches for 80 vulnerabilities across 8 products, including Commerce, Illustrator, Acrobat Reader, and Premiere Pro. The post Adobe Patches 80 Vulnerabilities Across Eight Products appeared first on SecurityWeek.
Microsoft Patches 83 Vulnerabilities
Microsoft has fixed a critical vulnerability, but none of the flaws fixed this Patch Tuesday has been exploited in the wild. The post Microsoft Patches 83 Vulnerabilities appeared first on SecurityWeek.
ICS Patch Tuesday: Vulnerabilities Fixed by Siemens, Schneider, Moxa, Mitsubishi Electric
Industrial giants Siemens, Schneider Electric, Mitsubishi Electric, and Moxa have published new ICS Patch Tuesday advisories. The post ICS Patch Tuesday: Vulnerabilities Fixed by Siemens, Schneider, Moxa, Mitsubishi Electric appeared first on SecurityWeek.
‘BlackSanta’ Malware Activates EDR and AV Killer Before Detonating Payload
The malware disables antivirus and EDR protections at the kernel level, clearing the path for credential harvesting, system reconnaissance, and eventual data exfiltration. The post ‘BlackSanta’ Malware Activates EDR and AV Killer Before Detonating Payload appeared first on SecurityWeek.
Quantro Security Emerges From Stealth With $2.5 Million in Funding
The startup integrates with existing cybersecurity stacks, ingests and normalizes data, and delivers intelligence to reduce risks. The post Quantro Security Emerges From Stealth With $2.5 Million in Funding appeared first on SecurityWeek.
Why zero trust breaks down in IoT and OT environments
Zero trust solves the wrong problem in OT Zero trust has become the dominant security narrative of the past decade, and rightly so. Its core principles, never trust, always verify; assume breach; enforce least privilege, have reshaped how organizations think about identity, access and lateral movement. In enterprise IT environments, these principles have produced measurable […]
Did cybersecurity recently have its Gatling gun moment?
On the James River, Petersburg, VA, June of 1864, during the American Civil War, General Benjamin Butler, of the US Army, deployed a new weapon into the field that effectively altered the nature of kinetic battles. The later named “Siege of Petersburg,” was the first recorded instance of the Gatling gun being used in battle. […]
Critical flaw in HPE Aruba CX switches lets attackers seize admin control without credentials
HPE Aruba Networking has released patches for five vulnerabilities in its AOS-CX switch software, the most severe of which could let a remote attacker take administrative control of enterprise network switches without any credentials. The critical flaw, CVE-2026-23813, scored 9.8 out of 10 on the CVSSv3.1 scale. According to a security advisory HPE published on […]
A 5-step approach to taming shadow AI
AI is being leveraged across organizations to boost productivity, accelerate innovation and optimize business processes. The problem is that adoption has outpaced discipline. Only a minority (23.8%) of organizations have formal AI risk frameworks in place, which is precisely how unauthorized, “shadow AI” takes root, leading to untracked data exposure, compliance friction and poor decisions […]
CSO Awards 2026 celebrates world-class security strategies
For more than a decade, the CSO Awards have recognized security projects that demonstrate outstanding thought leadership and business value. The award is an acknowledged mark of cybersecurity excellence. “This year’s award winners show how security teams have repositioned themselves as strategic business enablers,” Beth Kormanik, Content Director of the CSO Cybersecurity Awards & Conference said in a statement. “They tackle […]
Announcing the 2026 CSO Hall of Fame honorees
Now entering its eighth year, the CSO Hall of Fame spotlights outstanding leaders who have significantly contributed to the practice of information risk management and security. This award honors trailblazers (security leaders with 10+ years in a CSO, CISO or other C-level security position) whose careers have shaped the future of cybersecurity and risk management. […]
Analyzing "Zombie Zip" Files (CVE-2026-0866), (Wed, Mar 11th)
A new vulnerability (CVE-2026-0866) has been published: Zombie Zip.
Microsoft Patches 84 Flaws in March Patch Tuesday, Including Two Public Zero-Days
Microsoft on Tuesday released patches for a set of 84 new security vulnerabilities affecting various software components, including two that have been listed as publicly known. Of these, eight are rated Critical, and 76 are rated Important in severity. Forty-six of the patched vulnerabilities relate to privilege escalation, followed by 18 remote code execution, 10 […]
UNC6426 Exploits nx npm Supply-Chain Attack to Gain AWS Admin Access in 72 Hours
A threat actor known as UNC6426 leveraged keys stolen following the supply chain compromise of the nx npm package last year to completely breach a victim’s cloud environment within a span of 72 hours. The attack started with the theft of a developer’s GitHub token, which the threat actor then used to gain unauthorized access […]
12 ways attackers abuse cloud services to hack your enterprise
Attackers are increasingly abusing trusted SaaS platforms, cloud infrastructure, and identity systems to blend malicious activity into legitimate enterprise traffic. Adversaries are pushing command and control (C2) through high-reputation services, including OpenAI and AWS, to blend in with normal business traffic and evade blocklists. The shift from “living off the land” to “living off the […]
Five Malicious Rust Crates and AI Bot Exploit CI/CD Pipelines to Steal Developer Secrets
Cybersecurity researchers have discovered five malicious Rust crates that masquerade as time-related utilities to transmit .env file data to the threat actors. The Rust packages, published to crates.io, are listed below – chrono_anchor dnp3times time_calibrator time_calibrators time-sync The crates, per Socket, impersonate timeapi.io and were published between late February and early March
Risky Business #828 -- The Coruna exploits are truly exquisite
On this week’s show, Patrick Gray, Adam Boileau and James WIlson discuss the week’s cybersecurity news. They cover: The Coruna exploits were L3 Harris, but it seems Triangulation… was not! Iran’s cyber HQ hit by Israeli (kinetic) strikes Trump’s cyber “strategy” is … well, all we’ve got is jokes cause there’s no serious content NSA […]
6 Mittel gegen Security-Tool-Wildwuchs
loading=”lazy” width=”400px”>Viel hilft nicht immer viel. Roman Samborskyi | shutterstock.com Auf der Suche nach Möglichkeiten, sich vor ständig wachsenden Cyberbedrohungen zu schützen, erliegen nicht wenige Unternehmen einem regelrechten Security-Tool- und -Service-Kaufrausch. Kommen noch Abteilungssilos und regelmäßige Übernahmen hinzu, steigt die Chance, dass Sicherheitsentscheider mit Tool-Wildwuchs konfrontiert werden. Diesen zu reduzieren, liegt nicht nur aus Kostengründen […]
ISC Stormcast For Wednesday, March 11th, 2026 https://isc.sans.edu/podcastdetail/9844, (Wed, Mar 11th)
Post Content
Microsoft Patch Tuesday, March 2026 Edition
Microsoft Corp. today pushed security updates to fix at least 77 vulnerabilities in its Windows operating systems and other software. There are no pressing “zero-day” flaws this month (compared to February’s five zero-day treat), but as usual some patches may deserve more rapid attention from organizations using Windows. Here are a few highlights from this […]
Webinar: Membership Application Program (MAP) Updates
Webinar: Membership Application Program (MAP) Updates K33357 Tue, 03/10/2026 – 17:44 Stay informed about significant changes to FINRA’s Membership Application Program (MAP). This webinar covers organizational and program updates, along with important information about Form NMA enhancements. Participants gain insight into the program’s direction and understand key improvements to the application process. Membership Application Program […]
25-00344.pdf
25-00344.pdf Anonymous (not verified) Tue, 03/10/2026 – 16:55 Case ID 25-00344 Forum FINRA Document Type Award Claimants Shattuck Lamm Respondents Merrill Lynch Pierce Fenner & Smith Inc. Neutrals Louis H Miron Kevin R. Zehe Dianne Marie Onichimowski Hearing Site Los Angeles, CA Award Document 25-00344.pdf Documentum DocID fda1b500 Award Date Official Tue, 03/10/2026 – 12:00 […]
23-03292.pdf
23-03292.pdf Anonymous (not verified) Tue, 03/10/2026 – 16:50 Case ID 23-03292 Forum FINRA Document Type Award Claimants LPL Financial LLC Respondents Eileen Cure Neutrals Denise Ereka Peterson Sylvia Ann Mayer Dawanna Jones Hearing Site Houston, TX Award Document 23-03292.pdf Documentum DocID ae2c8b25 Award Date Official Tue, 03/10/2026 – 12:00 Related Content Off Claimant Representatives Ellen […]
25-01765.pdf
25-01765.pdf Anonymous (not verified) Tue, 03/10/2026 – 16:50 Case ID 25-01765 Forum FINRA Document Type Award Claimants Alaina Cass Respondents Dan Bello Morgan Stanley Hearing Site Charlotte, NC Award Document 25-01765.pdf Documentum DocID 8d85ce65 Award Date Official Tue, 03/10/2026 – 12:00 Related Content Off Claimant Representatives Alaina Cass Respondent Representatives Andrew Joyce
24-00978.pdf
24-00978.pdf Anonymous (not verified) Tue, 03/10/2026 – 16:10 Case ID 24-00978 Forum FINRA Document Type Award Claimants John Paffendorf Respondents UBS Financial Services Inc. Neutrals Mitchell Lee Lathrop Traci Lynn Sherrod Gary Patrick Poon Hearing Site San Diego, CA Award Document 24-00978.pdf Documentum DocID e3f6349e Award Date Official Mon, 03/09/2026 – 12:00 Related Content Off […]
SIFMA Comment On Regulatory Notice 26-02
SIFMA Comment On Regulatory Notice 26-02 fnrw-backend Tue, 03/10/2026 – 14:59 Lisa Bleier alicia.goldin@finra.org SIFMA Regulatory Notice 26-02 Core Official Date Tue, 03/10/2026 – 12:00 Comment File SIFMA submission on FINRA Reg Notice 26-02.pdf
“없는 돈도 만들어라” AI 예산 마련하려 IT ‘군살’ 빼는 CIO들
제한된 예산 안에서 AI 투자 재원을 마련하는 일이 CIO의 핵심 과제로 떠오르고 있다. 단기적 안정성을 일부 포기하더라도 장기적 역량을 확보하려는 판단 아래, IT 리더들은 인프라 개선을 늦추고 비AI 프로젝트를 뒤로 미루는 한편, 계약 재협상과 레거시 소프트웨어·인력 감축까지 검토하고 있다. 예산 제약은 늘 존재해 왔지만, 경영진과 이사회가 AI를 최우선 과제로 밀어붙이면서 IT 조직이 느끼는 압박은 한층 […]
직함 인플레이션 시대, ‘진짜 CSO’의 조건
고위급 IT 인재를 채용하는 리크루터들은 진정으로 숙련되고 경험이 풍부한 최고보안책임자(CSO)를 찾는 일이 IT 직군 가운데서도 가장 어려운 과제 중 하나라고 말한다. CSO는 대개 C레벨 임원에 속하며, 경우에 따라 최고경영자(CEO)에게 직접 보고하기도 하는 등 책임 범위가 매우 넓기 때문이다. 이로 인해 조직은 빠르게 채용을 마무리해야 한다는 상당한 압박을 받을 수 있고, 그 과정에서 검증 절차가 충분히 […]
AI’s workforce impact has only just begun
High-profile companies such as Block have laid off thousands of employees in recent months, with many saying AI has taken over worker tasks. While AI’s long-term impact on jobs and the job market remains uncertain, IT analyst firm Gartner expects more job chaos in the coming years due to AI, predicting that 32 million jobs […]
Project management has a status problem
It was, by definition, a well-run meeting: The team got through its agenda in its allotted time, after which everyone received and filed the meeting notes. Sadly, it demonstrated the difference between well-run and well-conceived: It was supposed to be a project status meeting, but that wasn’t how it turned out. Instead, team members spent […]
The loneliness dilemma: Safeguarding the AI companion era
In 1979, Swedish national Eija-Riitta Berliner-Mauer married the Berlin Wall. She suffered from a rare condition known as Objectum-Sexuality, characterized by romantic attraction to inanimate objects. While this may seem like an eccentricity from a bygone era, the core psychological drive — a desperate need for connection, even with the nonliving — is in the […]
5 tips for communicating the value of IT
Considering that no organization can operate without technology today, IT’s value would seem obvious. The problem is that too often IT is seen as a cost center because CIOs still struggle to articulate the value IT brings to the business. “Today’s CIOs are under pressure to answer one key question: How do I communicate the […]
Why cloud security failures are rarely technical
The first serious cloud security issue I encountered early in my career appeared to be a technical failure. A configuration setting had allowed broader access than intended, and the response followed a familiar pattern. The setting was corrected, the fix documented and additional controls were discussed to prevent a repeat. At the time, that response […]
Digital twin: A crystal ball from ‘what happened’ to ‘what next’
The newspaper of tomorrow costs a million dollars, but yesterday’s newspaper cost less than a dollar. It is always a human endeavor to know or predict the future as accurately as possible, but it remains elusive due to technological limitations, static models, outdated data or gut feeling. In the world, torn by wars, tariffs, political […]
Resetting the economics of prevention: How CIOs can deliver reliability and possibility
IT is moving from managing infrastructure to orchestrating digital services across applications, data, and business processes. In that model, reliability and performance aren’t attributes of a single platform. They’re properties of the whole system. Now, AI agents are starting to do real operational work, not just route it. That raises the bar: operational context and […]
Microsoft Patch Tuesday March 2026, (Tue, Mar 10th)
Microsoft today released patches for 93 vulnerabilities, including 9 vulnerabilities in Chromium affecting Microsoft Edge. 8 of the vulnerabilities are rated critical. 2 were disclosed prior to today but have not yet been exploited. This update addresses no already-exploited vulnerabilities.
How to Stop AI Data Leaks: A Webinar Guide to Auditing Modern Agentic Workflows
Artificial Intelligence (AI) is no longer just a tool we talk to; it is a tool that does things for us. These are called AI Agents. They can send emails, move data, and even manage software on their own. But there is a problem. While these agents make work faster, they also open a new […]
FortiGate Devices Exploited to Breach Networks and Steal Service Account Credentials
Cybersecurity researchers are calling attention to a new campaign where threat actors are abusing FortiGate Next-Generation Firewall (NGFW) appliances as entry points to breach victim networks. The activity involves the exploitation of recently disclosed security vulnerabilities or weak credentials to extract configuration files containing service account credentials and network topology
KadNap Malware Infects 14,000+ Edge Devices to Power Stealth Proxy Botnet
Cybersecurity researchers have discovered a new malware called KadNap that’s primarily targeting Asus routers to enlist them into a botnet for proxying malicious traffic. The malware, first detected in the wild in August 2025, has expanded to over 14,000 infected devices, with more than 60% of victims located in the U.S., according to the Black […]
New "LeakyLooker" Flaws in Google Looker Studio Could Enable Cross-Tenant SQL Queries
Cybersecurity researchers have disclosed nine cross-tenant vulnerabilities in Google Looker Studio that could have permitted attackers to run arbitrary SQL queries on victims’ databases and exfiltrate sensitive data within organizations’ Google Cloud environments. The shortcomings have been collectively named LeakyLooker by Tenable. There is no evidence that the vulnerabilities were exploited in
Lantronix EDS3000PS and EDS5000
View CSAF Summary Successful exploitation of these vulnerabilities could allow an attacker to bypass authentication and execute code with root-level privileges. The following versions of Lantronix EDS3000PS and EDS5000 are affected: EDS3000PS 3.1.0.0R2 (CVE-2025-67039, CVE-2025-70082, CVE-2025-67041) EDS5000 2.1.0.0R3 (CVE-2025-67034, CVE-2025-67035, CVE-2025-67036, CVE-2025-67037, CVE-2025-67038) CVSS Vendor Equipment Vulnerabilities v3 9.8 Lantronix Lantronix EDS3000PS and EDS5000 Improper […]
Apeman Cameras
View CSAF Summary Successful exploitation of these vulnerabilities could allow an attacker to take control of the device or view camera feeds. The following versions of Apeman Cameras are affected: ID71 vers:all/* (CVE-2025-11126, CVE-2025-11851, CVE-2025-11852) CVSS Vendor Equipment Vulnerabilities v3 9.8 Apeman Apeman Cameras Insufficiently Protected Credentials, Improper Neutralization of Input During Web Page Generation […]
Ceragon Siklu MultiHaul and EtherHaul Series
View CSAF Summary Successful exploitation of this vulnerability could result in arbitrary file upload to the target equipment. The following versions of Ceragon Siklu MultiHaul and EtherHaul Series are affected: MultiHaul MH-B100-CCS MultiHaul MH-T200-CCC MultiHaul MH-T200-CNN MultiHaul MH-T201-CNN EtherHaul EH-8010FX EtherHaul EH-500TX EtherHaul EH-600TX EtherHaul EH-614TX EtherHaul EH-700TX EtherHaul EH-710TX EtherHaul EH-1200TX EtherHaul EH-1200FX EtherHaul […]
Honeywell IQ4x BMS Controller
View CSAF Summary Successful exploitation of this vulnerability could allow an unauthorized attacker to access controller management settings, control components, disclose information, or cause a denial-of-service condition. The following versions of Honeywell IQ4x BMS Controller are affected: IQ4E >=Firmware_v3.50_3.44|<4.36_build_4.3.7.9 (CVE-2026-3611) IQ412 >=Firmware_v3.50_3.44|<4.36_build_4.3.7.9 (CVE-2026-3611) IQ422 >=Firmware_v3.50_3.44|<4.36_build_4.3.7.9 (CVE-2026-3611) IQ4NC >=Firmware_v3.50_3.44|<4.36_build_4.3.7.9 (CVE-2026-3611) IQ41x >=Firmware_v3.50_3.44|<4.36_build_4.3.7.9 (CVE-2026-3611) IQ3 >=Firmware_v3.50_3.44|<4.36_build_4.3.7.9 (CVE-2026-3611) […]
Devs looking for OpenClaw get served a GhostClaw RAT
A malicious npm package posing as an OpenClaw Installer has been caught deploying a remote access trojan (RAT) on victim machines, according to new JFrog research. The package, published under the name “@openclaw-ai/openclawai”, pretends to be an installer for the legitimate CLI tool but instead launches a multi-stage infection chain that steals system credentials, browser […]
Cloned AI Tool Sites Distribute Malware in ‘InstallFix’ Campaign
Threat actors replace legitimate commands on the cloned installation webpages with malicious commands. The post Cloned AI Tool Sites Distribute Malware in ‘InstallFix’ Campaign appeared first on SecurityWeek.
Internet Infrastructure TLD .arpa Abused in Phishing Attacks
Abusing DNS record management controls, the threat actor hides the location of malicious content via Cloudflare. The post Internet Infrastructure TLD .arpa Abused in Phishing Attacks appeared first on SecurityWeek.
ClickFix Attack Uses Windows Terminal to Evade Detection
Fake CAPTCHA pages instruct victims to paste malicious commands in the Windows Terminal instead of the Run dialog. The post ClickFix Attack Uses Windows Terminal to Evade Detection appeared first on SecurityWeek.
Cybersecurity M&A Roundup: 42 Deals Announced in February 2026
Significant cybersecurity M&A deals announced by Check Point, Booz Allen, Proofpoint, Sophos, Palo Alto Networks, and Zscaler. The post Cybersecurity M&A Roundup: 42 Deals Announced in February 2026 appeared first on SecurityWeek.
Cylake Raises $45 Million to Secure Organizations Barred From Cloud
The company, founded by Palo Alto Networks’ Nir Zuk, has developed a platform that focuses on data sovereignty. The post Cylake Raises $45 Million to Secure Organizations Barred From Cloud appeared first on SecurityWeek.
SIM Swaps Expose a Critical Flaw in Identity Security
SIM swap attacks exploit misplaced trust in phone numbers and human processes to bypass authentication controls and seize high-value accounts. The post SIM Swaps Expose a Critical Flaw in Identity Security appeared first on SecurityWeek.
The Zero-Day Scramble is Avoidable: A Guide to Attack Surface Reduction
You can’t control when the next critical vulnerability drops. You can control how much of your environment is exposed when it does. The problem is that most teams have more internet-facing exposure than they realise. Intruder’s Head of Security digs into why this happens and how teams can manage it deliberately. Time-to-exploit is shrinking The […]
APT28 Uses BEARDSHELL and COVENANT Malware to Spy on Ukrainian Military
The Russian state-sponsored hacking group tracked as APT28 has been observed using a pair of implants dubbed BEARDSHELL and COVENANT to facilitate long‑term surveillance of Ukrainian military personnel. The two malware families have been put to use since April 2024, ESET said in a new report shared with The Hacker News. APT28, also tracked as […]
The OT security time bomb: Why legacy industrial systems are the biggest cyber risk nobody wants to fix
When I first secured a production line, part of the control system was still running on an unpatched Windows XP machine tucked under a lab table — right next to the state-of-the-art GMP manufacturing setup that produced millions in value every day. Everyone knew that the system was a risk, but no one was willing […]
OpenAI to acquire Promptfoo to strengthen AI agent security testing
OpenAI said it plans to acquire AI testing startup Promptfoo, a move aimed at strengthening security checks for AI agents as enterprises move toward deploying autonomous systems in business workflows. Promptfoo’s tools allow developers to test LLM applications against adversarial prompts, including prompt injection and jailbreak attempts, and to evaluate whether models follow safety and […]
Why access decisions are becoming the weakest link in identity security
In my nearly two decades leading identity and risk programs, I’ve learned a sobering truth that every CISO eventually confronts: hackers don’t hack in — they log in. We often obsess over the perimeter and the sophistication of technical exploits, but many of the most damaging security failures I’ve witnessed didn’t involve a zero-day or […]
I replaced manual pen tests with automation. Here’s what I learned.
More accreditation and compliance requirements have been added in response to cyber incidents. While these frameworks play an important role in establishing security baselines, true security is more than just achieving a perfect compliance score. As I often say, “policies and procedures won’t stop an attacker, they’ll just have more documents to exfiltrate when they […]
Threat Actors Mass-Scan Salesforce Experience Cloud via Modified AuraInspector Tool
Salesforce has warned of an increase in threat actor activity that’s aimed at exploiting misconfigurations in publicly accessible Experience Cloud sites by making use of a customized version of an open-source tool called AuraInspector. The activity, per the company, involves the exploitation of customers’ overly permissive Experience Cloud guest user configurations to obtain access to […]
CISA Flags SolarWinds, Ivanti, and Workspace One Vulnerabilities as Actively Exploited
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added three security flaws to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. The vulnerability list is as follows – CVE-2021-22054 (CVSS score: 7.5) – A server-side request forgery (SSRF) vulnerability in Omnissa Workspace One UEM (formerly VMware Workspace One UEM) […]
ISC Stormcast For Tuesday, March 10th, 2026 https://isc.sans.edu/podcastdetail/9842, (Tue, Mar 10th)
Post Content
Financial Services Institute, Inc. (FSI) Comment On Regulatory Notice 26-02
Financial Services Institute, Inc. (FSI) Comment On Regulatory Notice 26-02 fnrw-backend Mon, 03/09/2026 – 18:41 Andrew Hartnett a.hartnett@financialservices.org Financial Services Institute, Inc. (FSI) Regulatory Notice 26-02 Core Official Date Mon, 03/09/2026 – 12:00 Comment File FSI Comment Letter re Reg Notice 26-02 030926.pdf
North American Securities Administrators Association (NASAA) Comment On Regulatory Notice 26-02
North American Securities Administrators Association (NASAA) Comment On Regulatory Notice 26-02 fnrw-backend Mon, 03/09/2026 – 18:35 Marni Rock Gibson Dominique Kelly <dkelly@nasaa.org> North American Securities Administrators Association (NASAA) Regulatory Notice 26-02 Core Official Date Mon, 03/09/2026 – 12:00 Comment File NASAA Comment Letter re FINRA Reg Notice 26-02 (03-09-2026).pdf
CFP Board, the Financial Planning Association (FPA), and the National Association of Personal Financial Advisors (NAPFA) Comment On Regulatory Notice 26-02
CFP Board, the Financial Planning Association (FPA), and the National Association of Personal Financial Advisors (NAPFA) Comment On Regulatory Notice 26-02 fnrw-backend Mon, 03/09/2026 – 18:30 Anonymous Erin Koeppel <ekoeppel@cfpboard.org> CFP Board, the Financial Planning Association (FPA), and the National Association of Personal Financial Advisors (NAPFA) Regulatory Notice 26-02 Core Official Date Mon, 03/09/2026 – […]
Robinhood Financial LLC & Robinhood Securities, LLC Comment On Regulatory Notice 26-02
Robinhood Financial LLC & Robinhood Securities, LLC Comment On Regulatory Notice 26-02 fnrw-backend Mon, 03/09/2026 – 18:26 David Wagener david.wagener@robinhood.com Robinhood Financial LLC & Robinhood Securities, LLC Regulatory Notice 26-02 Core Official Date Mon, 03/09/2026 – 12:00 Comment File Robinhood Comment Letter On Regulatory Notice 26-02.pdf
Public Investors Advocate Bar Association (PIABA) Comment On Regulatory Notice 26-02
Public Investors Advocate Bar Association (PIABA) Comment On Regulatory Notice 26-02 fnrw-backend Mon, 03/09/2026 – 18:20 Jennifer Shaw jshaw@piaba.org Public Investors Advocate Bar Association (PIABA) Regulatory Notice 26-02 Core Official Date Mon, 03/09/2026 – 12:00 Comment File PIABA Comment FINRA 26-02.pdf
AIとIoTでレストランを再定義する──日本マクドナルドCTOが描く事業成長のシナリオとは
日本からアジア、そして欧州へ──20カ国超を支えた17年 ──これまでの経歴についてお教えいただけますか。 キャリアのスタートはNTTでした。当時は、幕張メッセで3000人規模の入社式が行われるような時代で、全国では20万人を超える社員がいたと記憶しています。 配属はテクノロジー部門ではなく営業でした。しかも、NTTの中では珍しい「モノを売る」営業部隊で、リース契約を前提にお客さまと向き合う日々を送っていました。リース審査が通らず、どうしても成果を出したい一心で「現金取引でお願いできませんか」と相談し、「ふざけるな」と厳しく叱られたこともあります。今、振り返ると無謀な提案でしたが、それだけ必死だったのだと思います。 そうした経験を重ねる中で、次第にテクノロジーへの関心が高まっていきました。会社全体としても、通信インフラにとどまらず、ITを軸に価値を提供する方向へとシフトしていく時期であり、私は部門内のシステムアドミニストレーターを務めるようになります。 その頃、偶然知ったのが「教育給付金制度」でした。これをきっかけにリスクマネジメントを学び始め、勉強を通じて多くの経営者と知り合う機会を得ました。彼らのキャリア選択や意思決定の背景を聞く中で、「20万人規模の組織の中で、自分が本当にやりたいことをどこまで実現できるのだろうか」と考えるようになったのです。 当時は、手を挙げてもその希望が叶うかどうか分からない環境でした。であれば、社内に限らず、社外の選択肢も含めて公平に考えてよいのではないか。そう腹をくくり、大きな決断としてGap Japanへの転職を選びました。 そこから本格的にテクノロジーのキャリアへと舵を切ったのですが、外資系企業に入った当初は英語がほとんど話せず、電話会議についていくのも一苦労でした。会議をこっそり録音し、後で聞き直して理解を深めるようなことを繰り返していました。 Gap Japanで小売業のシステムを一通り経験した後、「より明確な責任を持ってチームを率いる役割を担いたい」と考え、コーチ ジャパンに移りました。 当初は日本法人でニューヨークのメンバーと連携する想定でしたが、eコマースプロジェクトを契機にアジア太平洋地域のチームを率いる立場となり、その後は欧州のビジネスも担当するようになります。最終的には20数カ国の事業をテクノロジーの面から支え、社名がTAPESTRYに変わった後も含め、17年以上このグループに在籍しました。 そして2025年1月、ご縁をいただき、日本マクドナルドのCTOとして新たな挑戦を始めています。 プライベートでは100キロ、120キロといったウルトラマラソンに挑戦してきました。つい先日もフルマラソンで自己ベストを更新しましたが、極限まで追い込まれる中で、「続けるのもやめるのも自分次第」という感覚があります。この「自分への挑戦」という姿勢は、いまの仕事とも通じるものがあると感じています。 泥船か、チャンスか──白羽の矢が立った瞬間の決断 ──ご自身のキャリアの中で、最も大きな実績をお教えください。 転機はいくつかありますが、象徴的なのはコーチ ジャパンで携わったeコマースの立ち上げです。 当時は、社内にeコマースを本格的に構築した経験者が一人もおらず、日本側と米国側のメンバーが1人ずつ、コ・プロジェクトマネージャーとして名を連ねる形でスタートしました。しかし、前例がない分、意思決定も進め方も手探りで、プロジェクトはなかなか前に進みませんでした。 停滞感が漂う中、なぜか私に白羽の矢が立ちました。周囲からは「なぜそんな泥船に乗るのか」という声もありましたが、正直なところ、「ここで成功すればヒーローになれるかもしれない」という打算も半分はあったと思います。 ただし、求められた役割は単なるITのプロジェクトマネージャーではありませんでした。テクノロジー部門に加え、ブランドの世界観やUIの細部にまでこだわるクリエイティブサービス部門も巻き込み、全社横断で推進するプログラムマネジメントです。 境界線一本の色や太さにまで意味を持たせるチームと、基幹システムを担うチームとを束ね、ビジネス全体を前に進める役割を担うことになりました。 この経験を通じて得た最大の収穫は、ビジネスの流れを一気通貫で理解できたことです。最初から全体像が見えていたわけではありません。試行錯誤を重ねる中で、マーケティング、店舗、サプライチェーン、ITがどのようにつながり、価値を生み出しているのかを体感的に理解することができました。 また、大規模プロジェクトを「完璧な知識がなくても、学びながら前に進めば何とかなる」という成功体験は、その後の自信にもつながりました。 この実績をきっかけに、「中国でも立ち上げてほしい」「韓国でも支援してほしい」と次々に声がかかり、担当領域は日本からアジア、そして欧州へと広がっていきました。 中国のプロジェクトでは、チームビルディングそのものが大きな挑戦でした。激しく議論を交わす文化に圧倒され、「どうすればこのカルチャーの中に溶け込み、信頼を得られるのか」を真剣に 考える日々が続きました。ビジネススキル以前に、「人としてどう向き合うか」を意識するという経験は、グローバルで仕事をする上での基礎になっています。 さらにM&Aの局面も、大きな学びの連続でした。企業が成長する過程で避けて通れない組織やシステムの統廃合には、必ず感情が伴います。合理性だけでは割り切れない現実と向き合う中で、テクノロジーだけでなく「人をどう理解し、どう寄り添うか」という力が鍛えられたと感じています。 実行と修正を前提にした意思決定 ──実績を上げるための最大のチャレンジは何だったのでしょうか。それは現職でどのように生かされていますか。 振り返ると、どの局面もその時点では「最大のチャレンジ」でした。そのため一つに絞るのは難しいのですが、共通しているのは、「考え続けるだけで止まらない」という姿勢です。頭の中で完璧な答えを探すよりも、仮説を立てて実行し、その結果を受けて修正する。このサイクルを回し続けてきたことが、今に生きていると感じています。 特に、国籍も文化も異なるメンバーを率いる場面では、日本での成功体験をそのまま当てはめることはできません。「こういうやり方もある」という一つの選択肢として提示しつつ、最終的にどう料理するかは現地のチームに委ね、脱線しないように方向性だけは示しながら、やり方は尊重する。そのバランス感覚は、現在、日本市場にフォーカスする立場になった今も変わらず重要だと考えています。 成功か失敗かではない──結果を次につなげる思考法 ──これまでに受けたアドバイスの中で、特に印象に残っているものはありますか。 いくつかありますが、まず思い浮かぶのは、以前の上司からかけられた言葉です。「プロジェクトがうまくいかなかったからといって、命を取られるわけじゃない。だから、そんなに心配するな」——。この一言で、肩の力がすっと抜けたのを覚えています。失敗を過度に恐れて動けなくなるよりも、まずやってみることの方がはるかに重要だというメッセージだったのだと思います。 また、海外で仕事をする中でよく耳にしたのが「Mission first」「People always」という考え方です。ミッションを最優先にしながらも、その実現を支えるのは常に「人」であるという価値観であり、今も私の判断軸の一つになっています。 さらに、強く心に残っているのが、サントリー創業者・鳥井信治郎氏の言葉「やってみなはれ」です。何かに取り組むとき、どうしても「成功するか、失敗するか」という二択で考えがちですが、私自身はそうは捉えていません。やってみれば必ず結果が出る。その結果を受けて次の一手を考える——。その連続こそが前進であり、成功か失敗かは後から意味づけされるものにすぎない。そうした姿勢を、この言葉からあらためて確認させられた気がします。 「テクノロジーだけではない」──CTOが経営に関与するという魅力 ──CTOとしての仕事の魅力、やりがいについてお聞かせください。 「CTOだからテクノロジーだけを見る」という意識は、私の中にはほとんどありません。経営会議のメンバーとして、事業戦略や組織運営についても議論に加わり、自分の意見を述べられる立場にあること自体が、大きなやりがいだと感じています。 日本マクドナルドは、店舗数もトランザクション数も極めて多いビジネスです。そのオペレーションを支える上で、テクノロジーへの依存度が高いのは当然であり、システムが止まれば事業に直結する。その緊張感の中で仕事をすることに、責任と同時に面白さも感じています。 特に新鮮なのは、店舗のキッチンの奥深くまでテクノロジーが入り込んでいる点です。温度管理や鮮度管理など、IoTによってリアルタイムでデータが取得される環境は、これまでのキャリアでもあまり経験してきませんでした。将来的には、キッチン全体がネットワークでつながり、オペレーションの在り方そのものが変わっていく。その変革の最前線に立てることに、大きなワクワク感を覚えています。 挑戦の積み重ねがCTOとしての資質を磨く ──成功するCTOに求められる資質とは何だとお考えですか。 振り返ると、「与えられた機会には手を挙げる」という姿勢を一貫して大切にしてきました。会社が期待を込めて機会を与えてくれるのであれば、まずは挑戦してみる。その期待に応えられれば、次の機会がまた巡ってくる。その積み重ねが、結果としてキャリアを形づくってきたのだと思います。 もちろん、会社から言われたことを待つだけではありません。自分がやりたいことがあれば、それを言葉にして伝えることも大切です。最初の転職を決断したときもそうでしたが、「やってみてよかった」と心から思える経験が、次の挑戦への原動力になります。そうした一歩一歩が、CTOとして求められる視野や胆力を育ててくれたのではないでしょうか。 まず一歩を踏み出す──考える前に動くという選択 ──若手リーダーに向けて、アドバイスをお願いします。 私がお伝えしたいのは、とにかく「一歩を踏み出すこと」です。頭の中であれこれ考えているだけでは、何も始まりません。成功か失敗かを気にし過ぎるよりも、まずやってみて、その結果から学ぶ。もし望ましくない結果だったとしても、「やらなければ分からなかった」という事実は必ず残ります。 もう一つ大切なのは、学び続ける姿勢です。環境が急速に変わる中で、自分自身がアップデートされなければ、組織や社会の変化についていくことはできません。世の中の動きや、自社のビジネスの構造を理解し、「なぜ今この判断がなされているのか」を考え続けることが、リーダーとしての基盤になると考えています。 テクノロジーで業務を再定義する──レストランオペレーションの変革構想 ──今後の展望と中長期的な取り組みについてお聞かせください。 […]
트럼프, 공세 강화한 사이버 전략 공개…AI·규제완화 전면에
백악관은 도널드 트럼프 대통령의 사이버 보안 전략을 공개했다. 오랜 기간 예고돼 온 이번 전략은 7쪽 분량의 보고서로, 공세적 사이버 작전을 미국 정책의 중심에 배치하며 기존 접근 방식과 차별화를 시도했다. 국가사이버국(Office of the National Cyber Director, ONCD)이 수립한 이번 전략은 적대 세력 교란, 산업 규제 완화, 인공지능 도입 가속화에 방점을 찍었다. 동시에 연방 정부 시스템과 핵심 […]
“사람이 낫다” AI 인력 대체론에 관리자까지 반발
현재 조직 내 거의 모든 계층의 직원이 비슷한 입장을 보이는 이슈가 있다. 자신이나 동료를 AI로 대체해서는 안 된다는 것이다. AI 에이전트를 도입해 인력을 줄이려는 기업은 감원 대상 직원들뿐 아니라 관리자층의 저항도 함께 마주하게 될 것이라는 새로운 설문조사 결과가 나왔다. 기업 교육업체 유다시티(Udacity)의 조사 결과에 따르면, 이 같은 반응은 경영진과 관리자, 현장 직원 다수가 AI 도구보다 […]
¿Por qué apostar por tecnologías emergentes? Beneficios y riesgos para las empresas
Cuando se habla de integrar tecnologías en una compañía entran en juego numerosos factores, pero casi siempre se considera necesaria una cierta precaución: no lanzarse hacia cualquier herramienta, por mucho que prometa, sino hacerlo desde la estrategia. Sucede igual en el caso de tecnologías emergentes, aquellas especialmente prometedoras que, sin embargo, aún no han cumplido […]
Why ‘move fast and break things’ is a liability for critical sectors
Digital transformation is no longer a buzzword. It has become a necessity for critical sectors such as public safety, healthcare, utilities, logistics and defense. These industries form the backbone of modern society, and their ability to adapt to technological change directly affects public well-being, economic stability and national security. Yet transformation in these environments is […]
Nonprofits shaping the future of responsible AI
For-profit enterprise giants like Amazon and Walmart may lead the charge in AI deployment and integration, but another sector is taking a more methodical, and perhaps more responsible, approach. As nonprofit organizations around the world see how AI fits into their directives, they’re deeply considering issues like privacy, transparency, governance, and cost, often avoiding the […]
CIOs cut IT corners to manufacture budget for AI
IT leaders worth their salt know how to make tough decisions, and right now, finding funding for AI projects when budgets aren’t growing is testing the bounds of their executive acumen. Budget constraints are a fact of life, but with pressure from the C-suite and boards to make AI a priority, IT leaders are feeling […]
The heartbeat of the office: Why IT ops is more than just a help desk
IT operations rarely capture the spotlight. It doesn’t trend on social media and often goes unnoticed when functioning smoothly. Yet, across various industries — from telecommunications to healthcare — IT operations quietly sustain organizations. Having worked in both large-scale network environments and healthcare IT systems, I perceive IT operations not as a mere background function, […]
Why the modern data center is no longer a facility — it’s a control system
For decades, the data center was understood as a physical asset. Even as workloads moved into virtual machines and then into the cloud, the underlying mental model remained largely unchanged: capacity was provisioned, configurations were applied and compliance was verified through periodic review. The environment evolved, but the operating assumptions did not. That model no […]
Securing the AI stack: Why embedded security is becoming a CIO imperative
Enterprise AI adoption is accelerating, but security architectures have not kept pace with how AI systems actually operate. As organizations move from experimentation to production, CIOs face a new challenge: securing an AI environment that behaves differently from traditional applications and infrastructure. AI introduces risks that extend beyond the scope of conventional security controls. Threats […]
Malicious npm Package Posing as OpenClaw Installer Deploys RAT, Steals macOS Credentials
Cybersecurity researchers have discovered a malicious npm package that masquerades as an OpenClaw installer to deploy a remote access trojan (RAT) and steal sensitive data from compromised hosts. The package, named “@openclaw-ai/openclawai,” was uploaded to the registry by a user named “openclaw-ai” on March 3, 2026. It has been downloaded 178 times to date. The […]
Encrypted Client Hello: Ready for Prime Time?, (Mon, Mar 9th)
Last week, two related RFCs were published:
UNC4899 Breached Crypto Firm After Developer AirDropped Trojanized File to Work Device
The North Korean threat actor known as UNC4899 is suspected to be behind a sophisticated cloud compromise campaign targeting a cryptocurrency organization in 2025 to steal millions of dollars in cryptocurrency. The activity has been attributed with moderate confidence to the state-sponsored adversary, which is also tracked under the cryptonyms Jade Sleet, PUKCHONG, Slow Pisces, […]
⚡ Weekly Recap: Qualcomm 0-Day, iOS Exploit Chains, AirSnitch Attack & Vibe-Coded Malware
Another week in cybersecurity. Another week of “you’ve got to be kidding me.” Attackers were busy. Defenders were busy. And somewhere in the middle, a whole lot of people had a very bad Monday morning. That’s kind of just how it goes now. The good news? There were some actual wins this week. Real ones. […]
CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2021-22054 Omnissa Workspace ONE Server-Side Request Forgery CVE-2025-26399 SolarWinds Web Help Desk Deserialization of Untrusted Data Vulnerability CVE-2026-1603 Ivanti Endpoint Manager (EPM) Authentication Bypass Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber […]
Can the Security Platform Finally Deliver for the Mid-Market?
Mid-market organizations are constantly striving to achieve security levels on a par with their enterprise peers. With heightened awareness of supply chain attacks, your customers and business partners are defining the security level you must meet. What if you could be the enabler for your organization to remain competitive — and help win business — […]
Recent Cisco Catalyst SD-WAN Vulnerability Now Widely Exploited
WatchTowr reports seeing exploitation attempts for CVE-2026-20127 from numerous unique IP addresses. The post Recent Cisco Catalyst SD-WAN Vulnerability Now Widely Exploited appeared first on SecurityWeek.
NIS-2: Tausende reißen BSI-Frist und riskieren Strafen
Das deutsche Gesetz zur Umsetzung der NIS-2-Richtlinie ist am 6. Dezember 2025 in Kraft getreten. konstakorhonen – shutterstock.com Welche Auswirkungen IT-Sicherheitsvorfälle für die Bevölkerung haben können, hat sich etwa gezeigt, als im vergangenen Herbst ein Flughafen-Dienstleister Opfer eines Cyberangriffs wurde. Betroffen waren mehrere Flughäfen in Europa. Der Hackerangriff legte am Flughafen Berlin-Brandenburg (BER) elektronische Systeme […]
Chrome Extension Turns Malicious After Ownership Transfer, Enabling Code Injection and Data Theft
Two Google Chrome extensions have turned malicious after what appears to be a case of ownership transfer, offering attackers a way to push malware to downstream customers, inject arbitrary code, and harvest sensitive data. The extensions in question, both originally associated with a developer named “akshayanuonline@gmail.com” (BuildMelon), are listed below – QuickLens – Search Screen […]
Rogues gallery: 15 worst ransomware groups active today
Ransomware-as-a-service (RaaS) models, double extortion tactics, and increasing adoption of AI characterize the evolving ransomware threat landscape. Law enforcement takedowns of groups such as LockBit have contributed to making the ransomware marketplace more fragmented, with emergent players attempting to muscle in on the action. Attackers range from nation-state actors to RaaS operations, lone operators, and […]
Web Server Exploits and Mimikatz Used in Attacks Targeting Asian Critical Infrastructure
High-value organizations located in South, Southeast, and East Asia have been targeted by a Chinese threat actor as part of a years-long campaign. The activity, which has targeted aviation, energy, government, law enforcement, pharmaceutical, technology, and telecommunications sectors, has been attributed by Palo Alto Networks Unit 42 to a previously undocumented threat activity group dubbed
4 ways to prepare your SOC for agentic AI
a way to automate alert triage, threat investigation and eventually higher-level functions. According to IDC, agentic AI is on track to become mainstream infrastructure. The analyst firm expects 45% of organizations to have autonomous agents operating at scale across critical business functions by 2030. In enterprise SOCs, AI is already reshaping functions like alert triage, […]
PQC roadmap remains hazy as vendors race for early advantage
Post-quantum cryptography (PQC) has long sat on the periphery of enterprise security, with experts calling it inevitable but not urgent. That posture is beginning to shift. Earlier this year, Palo Alto Networks published a blog announcing a new “quantum-safe security” initiative, framing it as a way for enterprises to assess where quantum-vulnerable cryptography exists across […]
Tarnung als Taktik: Warum Ransomware-Angriffe raffinierter werden
Statt eines kurzen, aber sehr schmerzhaften Stiches setzen Cyberkrimelle zunehmend darauf, sich in ihren Opfern festzubeißen und beständig auszusaugen. mycteria – shutterstock.com Ransomware-Angreifer ändern zunehmend ihre Taktik und setzen vermehrt auf unauffällige Infiltration. Dies liegt daran, dass die Drohung mit der Veröffentlichung sensibler Unternehmensdaten zum Hauptdruckmittel bei Erpressungen geworden ist. Der jährliche Red-Teaming-Bericht von Picus […]
ISC Stormcast For Monday, March 9th, 2026 https://isc.sans.edu/podcastdetail/9840, (Mon, Mar 9th)
Post Content
How AI Assistants are Moving the Security Goalposts
AI-based assistants or “agents” — autonomous programs that have access to the user’s computer, files, online services and can automate virtually any task — are growing in popularity with developers and IT workers. But as so many eyebrow-raising headlines over the past few weeks have shown, these powerful and assertive new tools are rapidly shifting […]
Pentagon’s Chief Tech Officer Says He Clashed With AI Company Anthropic Over Autonomous Warfare
Pentagon CTO Emil Michael said the military is developing procedures for enabling different levels of autonomy in warfare depending on the risk posed. The post Pentagon’s Chief Tech Officer Says He Clashed With AI Company Anthropic Over Autonomous Warfare appeared first on SecurityWeek.
Over 100 GitHub Repositories Distributing BoryptGrab Stealer
The malware targets browser and cryptocurrency wallet data, along with system information and user files. The post Over 100 GitHub Repositories Distributing BoryptGrab Stealer appeared first on SecurityWeek.
US Cyber Strategy Targets Adversaries, Critical Infrastructure, and Emerging Technologies
Trump’s Cyber Strategy calls for stronger deterrence against cyber adversaries, modernization of federal networks, protection of critical infrastructure, and investment in technologies such as AI and post-quantum cryptography. The post US Cyber Strategy Targets Adversaries, Critical Infrastructure, and Emerging Technologies appeared first on SecurityWeek.
OpenAI Codex Security Scanned 1.2 Million Commits and Found 10,561 High-Severity Issues
OpenAI on Friday began rolling out Codex Security, an artificial intelligence (AI)-powered security agent that’s designed to find, validate, and propose fixes for vulnerabilities. The feature is available in a research preview to ChatGPT Pro, Enterprise, Business, and Edu customers via the Codex web with free usage for the next month. “It builds deep context […]
Anthropic Finds 22 Firefox Vulnerabilities Using Claude Opus 4.6 AI Model
Anthropic on Friday said it discovered 22 new security vulnerabilities in the Firefox web browser as part of a security partnership with Mozilla. Of these, 14 have been classified as high, seven have been classified as moderate, and one has been rated low in severity. The issues were addressed in Firefox 148, released late last […]
Iranian APT Hacked US Airport, Bank, Software Company
The attacks, observed since February, show that Iranian hackers already have a presence in the networks of US organizations. The post Iranian APT Hacked US Airport, Bank, Software Company appeared first on SecurityWeek.
James ‘Aaron’ Bishop Tapped to Serve as New Pentagon CISO
Bishop replaces David McKeown, who will take on a role in the private sector after 40 years of government service. The post James ‘Aaron’ Bishop Tapped to Serve as New Pentagon CISO appeared first on SecurityWeek.
Rockwell Vulnerability Allowing Remote ICS Hacking Exploited in Attacks
The vulnerability was disclosed and mitigated in 2021 but its in-the-wild exploitation has only now come to light. The post Rockwell Vulnerability Allowing Remote ICS Hacking Exploited in Attacks appeared first on SecurityWeek.
CISA Adds iOS Flaws From Coruna Exploit Kit to KEV List
The nation-state-grade iOS exploit kit targets 23 vulnerabilities affecting iOS 13 to 17.2.1. The post CISA Adds iOS Flaws From Coruna Exploit Kit to KEV List appeared first on SecurityWeek.
In Other News: FBI Hacked, US Security Pro Killed in Iran War, Hijacked Cameras Used in Khamenei Strike
Other noteworthy stories that might have slipped under the radar: Avira antivirus vulnerabilities, Transport for London data breach affects 10 million, Gaming cheat exposes North Korean hacker. The post In Other News: FBI Hacked, US Security Pro Killed in Iran War, Hijacked Cameras Used in Khamenei Strike appeared first on SecurityWeek.
ArmorCode Raises $16 Million for Exposure Management Platform
The company will accelerate platform development, expand go-to-market efforts, and invest in product innovation. The post ArmorCode Raises $16 Million for Exposure Management Platform appeared first on SecurityWeek.
FBI Investigating ‘Suspicious’ Cyber Activity on System Holding Sensitive Surveillance Information
The bureau is working to determine the scope and impact of the problem, according to a notification sent to members of Congress. The post FBI Investigating ‘Suspicious’ Cyber Activity on System Holding Sensitive Surveillance Information appeared first on SecurityWeek.
YARA-X 1.14.0 Release, (Sat, Mar 7th)
YARA-X’s 1.14.0 release brings 4 improvements and 2 bugfixes.
Trump’s cyber strategy emphasizes offensive operations, deregulation, AI
The White House released President Donald Trump’s long-awaited cybersecurity strategy, a lean seven-page blueprint that breaks from past approaches by placing offensive cyber operations at the center of US policy. Developed by the Office of the National Cyber Director (ONCD), the strategy emphasizes disrupting adversaries, deregulating industry, and accelerating the adoption of artificial intelligence while […]
25-00529.pdf
25-00529.pdf Anonymous (not verified) Fri, 03/06/2026 – 17:50 Case ID 25-00529 Forum FINRA Document Type Award Claimants Jonathan Elliott Respondents Merrill Lynch Pierce Fenner & Smith Inc. Neutrals Erik R. Siering Hearing Site Phoenix, AZ Award Document 25-00529.pdf Documentum DocID 78340954 Award Date Official Fri, 03/06/2026 – 12:00 Related Content Off Claimant Representatives Austin Davis […]
23-03614(2).pdf
23-03614(2).pdf Anonymous (not verified) Fri, 03/06/2026 – 17:45 Case ID 23-03614 Forum FINRA Document Type Motion to Confirm Claimants NYLife Securities LLC New York Life Insurance Company Respondents Brian Chicas Neutrals B. John Dill Hearing Site Boston, MA Award Document 23-03614(2).pdf Documentum DocID bef3b48e Award Date Official Mon, 06/03/2024 – 12:00 Related Content On Claimant […]
24-02427.pdf
24-02427.pdf Anonymous (not verified) Fri, 03/06/2026 – 17:45 Case ID 24-02427 Forum FINRA Document Type Award Claimants Brian Mariash Respondents Merrill Lynch Pierce Fenner & Smith Inc. Neutrals Theodore W. Wrobleski Andrew M. Mintzer Christopher J. Klein Hearing Site Tampa, FL Award Document 24-02427.pdf Documentum DocID 2feb6e19 Award Date Official Fri, 03/06/2026 – 12:00 Related […]
25-01501.pdf
25-01501.pdf Anonymous (not verified) Fri, 03/06/2026 – 17:45 Case ID 25-01501 Forum FINRA Document Type Award Claimants Scott Phillips Respondents Centaurus Financial, Inc. Neutrals Jim Geiger Gary E. Marcus Thomas P. Valenti Hearing Site Salt Lake City, UT Award Document 25-01501.pdf Documentum DocID b3c6f9e9 Award Date Official Fri, 03/06/2026 – 12:00 Related Content Off Claimant […]
ClickFix attackers using new tactic to evade detection, says Microsoft
Threat actors are trying a different tactic to sucker employees into falling for ClickFix phishing attacks that install malware, says Microsoft. Rather than asking potential victims to copy and paste a (malicious) command into the Run dialog, launched by hitting the Windows button plus the letter R, they are being told to use the Windows […]
Reminder - TRACE Transition to Native FIX
Technical Notice Reminder – TRACE Transition to Native FIX March 06, 2026 DixonR Fri, 03/06/2026 – 15:04 As previously announced on October 15, 2025, December 22, 2025 and January 30, 2026, FINRA is transitioning from its legacy FIX Protocol platform to a new Native FIX platform for TRACE trade reporting. Firms are required to switch […]
Data center new builds diminish even as demand rises
New findings from commercial real estate services and investment firm CBRE Group reveal a dichotomy in the vibrant data center market across North America. At the same time as the sector set records in 2025 for overall activity, new facilities were not being built, not because demand was slowing, but due to the difficulty in […]
AIはなぜ「自分を理解できる企業」しか変革できないのか──自己認識する企業への6ステップ
AIはいま、取締役会で必ず議題に上る「定番テーマ」になった。かつては限られた部門が試験的に取り組む技術だったものが、いまや企業戦略の中心に位置づけられている。その背景には、2022年以降の大規模言語モデルの急速な成熟と生成AIツールの普及がある。実際、各社の決算説明会やアナリスト向け資料でも、AIへの言及は年々増え続けている。 では、この熱気は実際のビジネス成果につながっているのだろうか。私たちはその疑問を検証するため、組織のAI導入度と拡張可能性を評価する年次フレームワーク「Fortune AIQ Top 50」を分析した。 対象企業はまず2つに分けられる。 1つは、インフラやハードウェア、ソフトウェア、ビジネスモデルを通じてAIそのものを提供する「AIコア企業」。 もう1つは、顧客・従業員・株主へ価値を届けるためにAIを戦略的に活用する「AI活用企業」。 この分類を前提に、決算説明会におけるAIへの言及頻度と、長期の価値創造を測る指標である ROIC(投下資本利益率)との関連性を比較した。 結果は対照的だ。 「AIコア企業」ではAIへの注力度とROICの間に強い相関が見られ、しかもその傾向は加速している。AIという能力を直接収益に変換しているからだ。一方、「AI活用企業」のROICは過去の業績や景気サイクルの範囲に収まっており、AI投資が目に見える価値に結びついているとは言い難い。AIを事業の中心に据える企業は成果が早く表れるが、あくまで「能力強化の手段」として扱う企業では成果が出るまで時間がかかり、その効果もばらつきやすい。 では、このタイムラグを生む根本原因は何か。それを解き明かすのが本稿の目的だ。 AIで成果が出る企業と出ない企業を分けるものは何か AIをコア事業としない企業において、ROICを押し上げる決定的な要因は、実はツールの選択や投資額ではない。 最も大きなインパクトをもたらすのは「組織の構造」である。 意思決定と実行が一貫し、組織全体で整合した動きが取れる企業──つまり「自己認識する企業」では、AIは価値を複利的に積み上げていく。一方、組織が分断され、プロセスやデータがバラバラなままの企業では、AIは既存の非効率や矛盾を増幅してしまう。場合によっては、機能不全を加速させることすらある。 ここに、AI時代のリーダーシップが直面する本質的な課題がある。AIを単なるツールとして扱うのではなく、企業文化・業務設計・意思決定のあり方まで巻き込む「土壌」としてとらえなければならない。そして、その土壌を育てる鍵が「自己認識」なのだ。 AI時代の特徴:テクノロジーの役割が「実行」から「解釈」へ これまでのITトレンドは、業務のスピードや精度など「実行」をいかに高めるかが中心だった。 しかし、生成AIは明らかに違う。AIは内容(コンテント)ではなく文脈(コンテキスト)を理解する。システムが「何が起きているか」だけでなく、「なぜ起きているのか」を捉えようとする――ここに大きな転換点がある。 だが、この転換は同時に、業界が長年直視してこなかった事実を明るみにする。 断片化したワークフロー、つながらないシステム、サイロ化したデータからは、どれだけAIを投入しても適切な文脈は推測できない、という現実だ。 「フランケンシュタイン企業」という構造的問題 多くの企業は、最初から統一されたシステムとして設計されていない。 買収、事業拡大、サイロ化した組織構造、そして場当たり的なIT投資の積み重ねが、いまの複雑な状態を作ってきた。結果として、企業は統合された神経系を持たない「パーツの寄せ集め」のようになりやすい。 この状態をわかりやすく示す比喩が「フランケンシュタイン企業」だ。 『フランケンシュタイン』の茶者であるメアリー・シェリーが描いた怪物は強く、しぶといが、感覚・記憶・行動が連動していない。どこかが傷ついても、その痛みが全体に伝わらず、問題が大きくなってから初めて反応する。 現代の多くの企業もまったく同じ構造的課題を抱えている。そしてAIは、その問題を隠すどころか、むしろ浮き彫りにしてしまう。 AIは、扱う組織の「ありのまま」を鏡のように反映する存在だ。 その鏡に映るのが統一された生命体なのか、つぎはぎの企業体なのか。それによって、AIの価値は劇的に変わる。 CIOが直面する本質的な課題:AIは「組織全体」の整合性を試す CIOにとって、こうした構造的な問題は自らの役割範囲を根本から問い直すものだ。AIレディネスとは、IT部門の成熟度やツールの有無といった表層的な話ではない。 企業全体がどれだけ一貫した「学習する組織」として機能しているか——その土台づくりそのものである。 組織が「感知・解釈・記憶・行動」という4つの働きを一つの有機体として統合できていなければ、AIは理解を深めてくれる存在にはならない。むしろ、その「未整備なままの構造」を高速で動かしてしまう。 断片化したままの企業にAIを導入すれば、確かに取引の処理や照合作業、レポーティングはこなせるだろう。しかし、組織として首尾一貫した学習は進まない。重要なシグナルは遅れて届き、意思決定は部門ごとに矛盾し、全体最適からどんどん遠ざかっていく。 そして何より深刻なのは、バラバラのデータを前提にAIを学習させると、AIは「知性」ではなく「矛盾と遅延」を増幅してしまうことだ。 つまり、構造の問題を放置したままでは、AIは課題解決の武器ではなく、課題そのものを加速させる存在になりかねない。 組織を迷わせる「6つの危険な思い込み」 経営層と議論を重ねていると、驚くほど多くの企業で同じ誤解が繰り返されていることに気づく。 組織が断片化したまま自己認識を欠き、AIを活かしきれない状態に陥る背景には、次の6つの思い込みが潜んでいる。 1. 「規模が大きければ安全だ」という思い込み 大企業であることが一種の「免罪符」となり、環境変化への感度が鈍くなる。その結果、過去のデータに強く依存したAIが、兆候を読み取る能力をかえって曇らせ、問題の早期発見を妨げてしまう。 2. 「従来のやり方を変える必要はない」という思い込み かつて成功した方法が、今も正しいと信じ続けてしまう。価値創造の構造が変わっているにもかかわらず、旧来の承認フローや業務モデルを温存し、変革の速度を遅らせる。 3. 「良いツールさえ入れれば組織はつながる」という思い込み 意思決定や価値創造の流れを再設計しないまま、新しいプラットフォームやツール、外部コンサルタントを追加していく。結果、組織が抱える根本課題はそのままに、むしろ複雑性だけが増していく。 4. 「見栄えの良いレポートが整っていれば内部も健全」という思い込み ダッシュボードやレポートは確かに整っている。しかし、その裏側では現場の摩擦や深刻な構造的問題を覆い隠してしまうことが多い。数字は整っていても、組織は整っていない――そんな状況は珍しくない。 5. 「システムをつなげば組織も一つになる」という思い込み […]
네트워크 대역폭이 중요한 이유
기업이 네트워킹과 관련해 가장 간절히 바라는 것이 무엇일까? “공짜였으면 좋겠다”라고 답했다면 맞는 말이지만, 기업도 그 바람이 현실적이지 않다는 사실은 알고 있다. 현실적으로 가장 바라는 것은 더 큰 용량이다. 네트워크는 비트를 전달하는 역할을 한다. 실제로 2026년 희망 사항을 밝힌 372곳의 기업 가운데 328곳이 더 큰 용량을 최우선으로 꼽았다. AI 때문만은 아니다. 이들 기업은 네트워크 문제를 단번에 […]
Push to replace workers with AI faces backlash — even from management
Workers across the org chart appear nearly unified on one critical workplace topic of the day: AI should not replace them or their colleagues. Companies that are considering shedding employees in favor of AI agents will encounter resistance, not just from the workers at risk of reduction but their managers as well, according to a […]
La digitalización llega a la obra
En uno de sus últimos proyectos, a José Luis Esteban Penelas, catedrático de arquitectura en la Universidad Europea y fundador de Penelas Architects, le pidieron “que representara una idea muy bonita”, una fachada que fuese “como las nubes”. Se puso manos a la tarea, pensando en cómo integrar elementos curvos que generasen esa ilusión. “Sin […]
BMW lleva robots humanoides con IA a su fábrica de Leipzig
Mientras que C-3PO era ciencia ficción en la primera película de Star Wars en 1977, los robots humanoides ya son una realidad en las naves de producción de BMW. Tras introducir Figure 2 en la planta de Spartanburg, en Estados Unidos, BMW también está desplegando robots humanoides en su planta alemana de Leipzig. Figure 2 […]
Technical debt is the tax killing AI ambition
I was asked to give a talk in early 2026 on AI transformation and its commercial viability. It was a brilliant conversation. The room was engaged, optimistic, curious. And rightly so. AI is already changing how we work, how productive we can be and how quickly ideas turn into output. I use it every day. […]
What the COBOL Translation Backlash Gets Right — and Wrong
When Anthropic published a blog post last week describing how Claude Code can analyze and translate COBOL, the market rejoiced at yet another proof point of the power of LLMs. Critics also reacted swiftly, noting that translating COBOL is not the same as modernizing a system. After all, a system lives in production: it is […]
One title, many realities: How the CIO role changes by organization size and industry
The title Chief Information Officer suggests a single, standardized role. In practice, nothing could be further from the truth. A CIO at a Fortune 500 enterprise operates in a fundamentally different reality than a CIO at a mid-market manufacturer, a private equity-backed growth company or a digital-native startup. Organization size, ownership model, regulatory exposure and […]
HUAWEI eKit strives to simplify AI adoption for SMBs
The prevalence of artificial intelligence (AI) in the business landscape has pointed to one thing: it has become crucial for enterprises to thrive. Yet small and medium businesses (SMBs) continue to struggle with organization-wide AI adoption. Foundry’s AI Priorities Survey 2025 found that the majority (68%) of SMBs surveyed are still either researching on AI […]
Only 30 minutes per quarter on cyber risk: Why CISO-board conversations are falling short
Cybersecurity is, as it should be in this era of AI-driven cyberattacks, a regular item on enterprise board agendas. However, the ways in which CISOs and boards interact, and the depth of those discussions, remain brief and superficial. According to a new report from IANS, Artico Search, and The CAP Group, CISO-board interactions remain short […]
FBI wiretap system tapped by hackers
The US Federal Bureau of Investigation (FBI) has identified a suspected incident on a network used to manage wiretaps and foreign intelligence surveillance warrants, CNN reported. The FBI acknowledged the incident in a statement to CNN, saying, “The FBI identified and addressed suspicious activities on FBI networks, and we have leveraged all technical capabilities to […]
OAuth vulnerability in n8n automation platform could lead to system compromise
A weakness in the configuration of OAuth credentials opens up a stored XSS vulnerability in the n8n automation platform, researchers at Imperva have discovered. Setting up OAuth allows n8n to connect to services such as Google Workspace, Microsoft 365, Slack, or GitHub without having to expose service passwords. This is core to automation platforms like […]
Transparent Tribe Uses AI to Mass-Produce Malware Implants in Campaign Targeting India
The Pakistan-aligned threat actor known as Transparent Tribe has become the latest hacking group to embrace artificial intelligence (AI)-powered coding tools to strike targets with various implants. The activity is designed to produce a “high-volume, mediocre mass of implants” that are developed using lesser-known programming languages like Nim, Zig, and Crystal and rely on trusted […]
Multi-Stage VOID#GEIST Malware Delivering XWorm, AsyncRAT, and Xeno RAT
Cybersecurity researchers have disclosed details of a multi-stage malware campaign that uses batch scripts as a pathway to deliver various encrypted remote access trojan (RATs) payloads that correspond to XWorm, AsyncRAT, and Xeno RAT. The stealthy attack chain has been codenamed VOID#GEIST by Securonix Threat Research. At a high level, the obfuscated batch script is […]
Targeted advertising is also targeting malware
Online ads are increasingly being used a means of introducing malware into organizations, according to The Media Trust. “Malvertising surpassed both email and direct hacks as the leading vector for malware delivery worldwide,” said Chris Olson, CEO of The Media Trust, an ad scanning and filtering company with, perhaps, a vested interest in playing up […]
Reclaim Security Raises $20 Million to Accelerate Remediation
The company will expand its engineering team, deepen integrations, and accelerate go-to-market initiatives. The post Reclaim Security Raises $20 Million to Accelerate Remediation appeared first on SecurityWeek.
Cisco Warns of More Catalyst SD-WAN Flaws Exploited in the Wild
The networking giant has added the recently patched CVE-2026-20128 and CVE-2026-20122 to the list of exploited vulnerabilities. The post Cisco Warns of More Catalyst SD-WAN Flaws Exploited in the Wild appeared first on SecurityWeek.
Russian Ransomware Operator Pleads Guilty in US
Evgenii Ptitsyn was extradited to the United States from South Korea in November 2024. The post Russian Ransomware Operator Pleads Guilty in US appeared first on SecurityWeek.
Google: Half of 2025’s 90 Exploited Zero-Days Aimed at Enterprises
Less than half of the total zero-days have been attributed to a threat actor, but spyware vendors and China are in the lead. The post Google: Half of 2025’s 90 Exploited Zero-Days Aimed at Enterprises appeared first on SecurityWeek.
Data Security Firm Evervault Raises $25 Million in Series B Funding
The company has raised a total of $46 million in funding for its developer-focused encryption and orchestration platform. The post Data Security Firm Evervault Raises $25 Million in Series B Funding appeared first on SecurityWeek.
The MSP Guide to Using AI-Powered Risk Management to Scale Cybersecurity
Scaling cybersecurity services as an MSP or MSSP requires technical expertise and a business model that delivers measurable value at scale. Risk-based cybersecurity is the foundation of that model. When done right, it builds client trust, increases upsell opportunities, and drives recurring revenue. But to deliver this consistently and efficiently, you need the right technology […]
Iran-Linked MuddyWater Hackers Target U.S. Networks With New Dindoor Backdoor
New research from Broadcom’s Symantec and Carbon Black Threat Hunter Team has discovered evidence of an Iranian hacking group embedding itself in several U.S. companies’ networks, including banks, airports, non-profit, and the Israeli arm of a software company. The activity has been attributed to a state-sponsored hacking group called MuddyWater (aka Seedworm). It’s affiliated with […]
Stakeholder event on political advertising: agenda available now
Stakeholder event on political advertising: agenda available now icolonnm Fri, 06/03/2026 – 10:12 6 March 2026 EDPB Brussels, 6 March – The EDPB organises a remote event to collect stakeholders’ input on its Guidelines on the processing of personal data to target or deliver political advertisements under the regulation on the transparency and targeting of […]
Teenage hacker myth primed for a middle-age criminal makeover
The Hollywood image of criminal hackers being largely teenage ne’er do wells is due for an update. That’s because profit-seeking career criminals — often approaching middle age — make up the largest cohort of today’s cybercriminals, according to an analysis of criminal cases carried out by Orange Cyberdefence. The Orange Group’s cybersecurity unit analysed 418 […]
China-Linked Hackers Use TernDoor, PeerTime, BruteEntry in South American Telecom Attacks
A China-linked advanced persistent threat (APT) actor has been targeting critical telecommunications infrastructure in South America since 2024, targeting Windows and Linux systems and edge devices with three different implants. The activity is being tracked by Cisco Talos under the moniker UAT-9244, describing it as closely associated with another cluster known as FamousSparrow. It’s worth
Challenges and projects for the CISO in 2026
Sophisticated attacks and the incorporation of AI tools, talent shortages, and tight budgets are some of the challenges commonly cited when it comes to managing cybersecurity in organizations. In a changing environment, the key is no longer to stay one step ahead, but to maintain a resilient infrastructure that ensures a rapid response when — […]
Zero-day exploits hit enterprises faster and harder
Google tracked 90 vulnerabilities exploited as zero-days last year, with Chinese cyberespionage groups doubling their count from 2024 and commercial surveillance vendors overtaking state-sponsored hackers for the first time. Nearly half of the recorded zero-days targeted enterprise technologies such as security appliances, VPNs, networking devices, and enterprise software platforms. “Increased exploitation of security and networking […]
Microsoft Reveals ClickFix Campaign Using Windows Terminal to Deploy Lumma Stealer
Microsoft on Thursday disclosed details of a new widespread ClickFix social engineering campaign that has leveraged the Windows Terminal app as a way to activate a sophisticated attack chain and deploy the Lumma Stealer malware. The activity, observed in February 2026, makes use of the terminal emulator program instead of instructing users to launch the […]
Hikvision and Rockwell Automation CVSS 9.8 Flaws Added to CISA KEV Catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added two security flaws impacting Hikvision and Rockwell Automation products to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The critical-severity vulnerabilities are listed below – CVE-2017-7921 (CVSS score: 9.8) – An improper authentication vulnerability affecting
Europa im Visier von Cyber-Identitätsdieben
Deutsche Unternehmen müssen sich warm anziehen: Sowohl staatliche als auch „private“ Akteure haben es auf sie abgesehen. Shutterstock Wie die Experten von Darktrace in ihrem aktuellen Threat Report 2026 darstellen, bleiben Cloud- und E-Mail-Konten das Einfallstor Nummer Eins in Europa. Dem Bericht zufolge begannen im vergangenen Jahr in Europa 58 Prozent der Attacken mit kompromittierten […]
7 Anzeichen für akuten MSSP-Bedarf
Managed Security Service Provider können das Sicherheitsniveau nachhaltig steigern. Godlikeart | shutterstock.com Ein Managed Security Service Provider (MSSP) bietet seinen Kunden ein umfassendes Spektrum an Sicherheits-Services. Als Drittanbieter kann ein MSSP die Arbeitsbelastung der internen IT-Teams deutlich reduzieren und Zeit freisetzen, um sich mit essenziellen Unternehmensprozessen und strategischen Überlegungen auseinanderzusetzen. Darüber hinaus kann ein MSSP […]
ISC Stormcast For Friday, March 6th, 2026 https://isc.sans.edu/podcastdetail/9838, (Fri, Mar 6th)
Post Content
LeakBase marketplace unplugged by cops in 14 countries
The LeakBase cyberforum, considered one of the world’s largest online marketplaces for cybercriminals to buy and sell stolen data and cybercrime tools, has been seized by the US, and arrests have also been made in other countries. The US Department of Justice said Thursday that earlier this week, law enforcement agencies in 14 countries took […]
25-00291.pdf
25-00291.pdf Anonymous (not verified) Thu, 03/05/2026 – 14:40 Case ID 25-00291 Forum FINRA Document Type Award Claimants The Leroy And Janelle Fischer Trust Respondents Daryl Calton Calton & Associates, Inc. Neutrals Charles G. Michaels Gary L Young Anne Marie O’Brien Hearing Site Omaha, NE Award Document 25-00291.pdf Documentum DocID b58b77b5 Award Date Official Thu, 03/05/2026 […]
CIO코리아·한국IBM, 제조·유통 IT 리더 대상 조찬 포럼 개최···“에이전틱 AI 성공은 운영·데이터 준비에 달려”
CIO코리아와 한국IBM은 3월 5일 서울 그랜드 인터컨티넨탈 서울 파르나스에서 ‘에이전틱 AI 리더십 익스체인지(Agentic AI Leadership Exchange)’ 조찬 포럼을 개최했다. 제조·유통 산업의 CIO, CDO, AX·DX 리더들을 대상으로 열린 이번 행사에는 30여 명의 업계 관계자가 참석해 ‘무엇을 할 수 있는가’를 넘어 ‘어떻게 실제 성과로 연결할 것인가’를 핵심 화두로 에이전틱 AI 도입과 확산 전략을 논의했다. 행사에서는 EY 컨설팅의 […]
성큼 다가온 에이전틱 결제 시대 “우리 회사는 준비됐나?”
대형 AI 솔루션 업체와 결제 플랫폼, 유통사가 잇달아 에이전틱 결제(agentic payments)를 내놓고 있다. 고객에게는 ‘클릭 몇 번’의 편의가 늘지만, 기업 입장에서는 브랜드 통제력 약화부터 보안·재무 리스크까지 감수할 가치가 있는지 따져봐야 하는 상황이다. 챗GPT는 이미 제품 검색의 ‘첫 번째 선택지’로 빠르게 자리 잡고 있다. 구글이 먼저 치고 나가지 않는다면, 결제까지 챗GPT가 처리하는 흐름이 곧 현실이 될 […]
BMW brings AI humanoid robots to Leipzig factory
While C-3PO was science fiction in the first Star Wars film in 1977, humanoid robots are now a reality in BMW’s factory halls. Following Figure 2 at the Spartanburg, S.C., plant in the US, BMW is now also introducing humanoid robots at its Leipzig plant. Figure 2 has already proven what humanoid robots are capable of at […]
Building IT leaders for an AI-driven future
Since joining Travelers in 2018, Mojgan Lefebvre has been a driving force behind the company’s digital and operational transformation, modernizing core platforms, strengthening customer experience, and enabling business growth through technology. As executive vice president and chief technology and operations officer, she leads the global technology and operations organization, spanning cloud, cybersecurity, data, AI, digital […]
The hidden tax on every AI initiative (and how to stop paying it)
I watched the tension rise in the boardroom as the CFO leaned forward. “We’ve spent $18 million on AI initiatives over the past two years. So, can anyone tell me what we have actually gained for this?” The CTO had shuffled through slides showing impressive technical achievements: model accuracy rates, deployment timelines, infrastructure upgrades — […]
21 agent orchestration tools for managing your AI fleet
The hype-mongers who create television commercials for big AI vendors make it seem like AI agents will do everything we ask and more. They’ll anticipate our needs, process the data, spruce up everything, and take out the trash. Well, that last part is left for you. Imagining a life of working from a hammock is […]
AI data centers are becoming fortresses — and that’s the point
10 years ago, in NVIDIA’s developer conference, The GPU Technology Conference (GTC), NVIDIA CEO Jensen Huang had already declared that, “In this era, software writes itself and machines learn. Soon, hundreds of billions of devices will be infused with intelligence. AI will revolutionize every industry.” So AI is being viewed as the engine of intelligence in the […]
The AI productivity paradox: Why your teams are busier, but not faster
In retail e-commerce, speed is everything. Leaders are judged by how quickly they can deliver, whether it’s launching a new loyalty program before Black Friday or integrating a third-party shipping API because customers expect it. Now, generative AI (GenAI) tools are stepping in to help developers draft code snippets and even generate full client APIs […]
システム開発発注で企業が陥るフリーランス法違反の罠とは?
はじめに:フリーランス法がシステム開発現場にもたらした不可逆な変化 近年、日本のIT業界においてフリーランスエンジニアの存在感はかつてないほど高まっています。慢性的なIT人材の不足を背景に、高い技術力を持つ個人の開発者にプロジェクトの重要な部分を委託する企業は急増しています。しかし、そうした依存度の高さとは裏腹に、システム開発の受発注においては旧態依然とした不透明な取引慣行が蔓延していました。仕様が曖昧なまま口約束で開発がスタートしたり、発注側の都合による無償の追加対応が常態化したりと、立場の弱いフリーランスが不利益を被るケースが後を絶たなかったのです。こうした状況を是正し、個人として働くフリーランスが安心して業務に取り組める環境を整備するために施行されたのが、通称「フリーランス法」と呼ばれる特定受託事業者に係る取引の適正化等に関する法律です。 この法律の施行は、これまで下請法ではカバーしきれなかった個人のフリーランスに対する保護を強固なものとし、システム開発を発注する企業側に極めて厳格な義務を課すことになりました。業務委託時の取引条件の明示義務はもちろんのこと、報酬の支払期日の設定や、不当なやり直し要求の禁止など、開発現場の日常的な業務フローに直結する規制が多数盛り込まれています。システム開発は本質的に要件が変動しやすく、関係者間の認識のズレが生じやすい性質を持っています。だからこそ、フリーランス法という新しいルールのもとでは、発注企業はこれまでの「なぁなぁ」な関係を根底から見直し、適法かつ透明性の高い契約管理とプロジェクト運営体制を構築しなければなりません。本記事では、システム開発の現場で実際に起こり得る法的リスクを、想定されるNGケーススタディを通じて具体的に紐解き、企業が直ちに講じるべき対策を考察していきます。 ※本記事で紹介する事例は、システム開発の現場で起こりやすい典型的なトラブルを基に構成した架空のケーススタディですが、実際に法令違反や指導の対象となり得るリアルなリスクを含んでいます。 NGケーススタディ1:曖昧な要件定義が生んだ「無償の仕様変更」と不当なやり直し要求 システム開発において最も頻発し、かつ深刻なトラブルに発展しやすいのが、要件定義の不備に起因する仕様変更の取り扱いです。フリーランス法では、発注者の自己都合による「不当な給付内容の変更及びやり直しの禁止」が明確に定められています。架空の中堅IT企業A社が、自社サービスのWebアプリケーション開発の一部をフリーランスのフロントエンドエンジニアに委託したケースを想定してみましょう。このプロジェクトでは、スケジュールの逼迫を理由に、詳細な画面設計書が作成されないまま、口頭での打ち合わせと簡単なワイヤーフレームのみで開発がスタートしました。 エンジニアは提示された少ない情報から意図を汲み取り、指定された期日までにプロトタイプを納品しました。しかし、それを見た発注側のプロジェクトマネージャーは、「想定していたユーザーインターフェースと違う」「この画面には検索機能とフィルター機能が必須だ」と主張し、大規模な修正と機能追加を要求しました。エンジニア側がそれらは当初の契約範囲外であるとして追加費用を提示したところ、発注側は「これはシステムとして当然備わっているべき機能であり、要件の漏れではなくバグ修正の一環である」と強弁し、無償でのやり直しを強要したのです。エンジニアが業務の継続を人質に取られる形で泣く泣く応じてしまうことは少なくありませんが、このような事実が発覚した場合、関係機関からの厳しい指導対象となり得ます。 システム開発においては、どこまでが当初の契約範囲(スコープ)であり、どこからが追加の仕様変更なのかという線引きが非常に困難な場合があります。しかし、フリーランス法の下では、そのような曖昧さを発注者の都合の良いように解釈することは許されません。契約時に業務内容を明確に書面等で明示する義務を怠ったばかりか、優越的な地位を利用して不当な労働を強いるようなこのケーススタディは、開発現場の悪しき慣習が明確な法令違反となるリスクを示しています。発注企業は、いかにアジャイル的な柔軟な開発を志向する場合であっても、現時点での合意事項と作業範囲を明確に定義し、そこから外れる要求については必ず別途の報酬合意と手続きを経る必要があるのです。 NGケーススタディ2:検収遅延と「買いたたき」による下請けいじめの代償 納品後のフェーズに潜む大きな罠が、検収作業の遅延と報酬の不当な減額です。フリーランス法では、報酬の支払期日を「物品等を受領した日から起算して六十日以内」のできる限り短い期間内に定めること、そして決定した報酬を事後的に減額する「買いたたき」を厳格に禁止しています。架空のシステム開発会社B社が、業務システムのリプレイス案件におけるデータベース移行プログラムの作成をフリーランスに委託したケーススタディを考えてみます。 フリーランスは契約通りの期日にプログラムのソースコードと実行結果のログを納品しました。しかし、発注側の担当者は他のプロジェクトとの兼務で多忙を極めており、納品物の動作確認(検収)を数週間にわたって放置してしまいました。フリーランス側から再三の確認依頼があったにもかかわらず、「現在社内でテスト環境を構築中なので待ってほしい」と先延ばしにし続けました。結果として、納品日から六十日が経過しても検収は完了せず、当然ながら報酬も支払われませんでした。さらに悪質なことに、いざ検収を開始した段階でプロジェクト全体の予算超過が発覚し、発注側はフリーランスに対して「テスト工程が長引いたことでこちらのコストも膨らんでいる。今回の報酬を二割ほどカットさせてくれないか。応じてくれないなら次からの発注は見送る」と不当な減額を要求したとします。 このような行為は、フリーランス新法における支払期日の制限違反と不当な給付受領の拒否、そして減額の禁止という複数の条項に抵触する極めて重い違反行為となります。発注企業側の論理として、「検収が終わっていないから成果物として認められず、支払い義務は生じない」という主張が聞かれることがありますが、法律上は「受領した日」が起算点となります。受領したものを放置することは発注者の責任であり、フリーランスの不利益にしてはならないのです。このケーススタディは、社内のリソース不足やプロジェクト管理の杜撰さが、そのままコンプライアンス違反に直結する危険性を浮き彫りにしています。納品物を受け取ったら速やかに検査を行い、法定期日内に確実に支払いを行う経理・管理フローの構築が不可欠です。 NGケーススタディ3:ハラスメントと不適切なコミュニケーションによる就業環境の悪化 フリーランス法における極めて現代的かつ重要な規定の一つが、ハラスメント行為に対する体制整備の義務化です。発注者は、セクシュアルハラスメント、妊娠・出産等に関するハラスメント、そしてパワーハラスメントによってフリーランスの就業環境が害されることのないよう、相談体制の整備や迅速な事後対応を講じなければなりません。システム開発の現場では、オンラインのチャットツールやビデオ会議システムがコミュニケーションの主軸となっており、テキストベースのやり取りにおける言葉の暴力が深刻な問題を引き起こす事例が増加しています。 架空のスタートアップ企業C社での開発プロジェクトにおいて、フリーランスのサーバーサイドエンジニアに対して、発注企業のリードエンジニアが日常的にチャットツール上で暴言を浴びせているケースを想定してみましょう。コードのレビューにおいて、技術的な指摘にとどまらず「こんな小学生レベルのコードを書くなんてプロ失格だ」「給料泥棒」「使えないから今すぐ契約を打ち切るぞ」といった人格を否定するようなメッセージが公開のチャンネルで連日投稿されていたとします。また、深夜や休日であってもメンションを付けて即時の返信を強要し、数分でもレスポンスが遅れると激しく叱責するという異常な監視状態が続いていれば、このフリーランスエンジニアは精神的な不調をきたしてプロジェクトから離脱せざるを得なくなるかもしれません。 こうした事態に対し、発注企業側が「技術レベルを上げるための熱血指導のつもりだった」「ベンチャー特有のスピード感についてきてもらいたかった」と弁明したとしても、客観的に見て優越的な関係を背景とした業務の適正な範囲を超える言動であり、明確なパワーハラスメントに該当します。フリーランスは労働基準法で保護される労働者ではないため、これまではこうしたハラスメントの被害が見過ごされがちでした。しかし新法の下では、発注企業は自社の従業員に対するのと同等のハラスメント防止措置をフリーランスに対しても講じる義務があります。チャット上での威圧的なコミュニケーションはすべてログとして残るため、言い逃れができない確たる証拠となります。システム開発の現場におけるハラスメントは、個人の尊厳を傷つけるだけでなく、プロジェクトを崩壊させる致命的なリスクであることを深く認識すべきです。 システム開発の発注者が陥りやすい法的リスクとNG行動 これまでに挙げた事例から、システム開発という特殊な業務環境には、フリーランス法に抵触しやすい特有のリスクが潜んでいることがわかります。発注企業が特に警戒すべきNG行動は、アジャイル開発などの柔軟な開発手法を盾にした「書面交付義務の軽視」です。アジャイル開発では、短いサイクルで開発とリリースを繰り返すため、事前にすべての要件を確定させることが困難です。それを理由に「まずはざっくりとした月額の準委任契約を結んでおき、具体的な作業内容は都度口頭で指示すればいい」と考える発注者がいますが、これは非常に危険です。フリーランス法では、業務委託の都度、給付の内容、報酬の額、支払期日などを直ちに書面または電磁的方法で明示しなければなりません。スプリントごとにタスクが変わるとしても、その都度チケット管理システムや電子メール等で明確な委託内容を記録し、双方の合意形成を行うプロセスを省略してはならないのです。 また、「偽装請負」のリスクも忘れてはなりません。フリーランスエンジニアと業務委託契約(請負または準委任)を結んでいるにもかかわらず、社員と同じように出退勤の時間を細かく管理したり、業務の進め方について事細かな指揮命令を下したりする行為は、実態として労働契約であるとみなされる可能性があります。システム開発の現場では、チームで協力して作業を進める都合上、フリーランスに対しても社員と同様のミーティング参加や細かいタスクの割り振りを要求してしまいがちです。しかし、独立した事業者であるフリーランスの裁量を奪うような過度な管理統制は、偽装請負として労働者派遣法や職業安定法に抵触するだけでなく、フリーランス法における不当な取り扱いとして問題視される要因にもなります。発注者は「成果物の完成」や「善良な管理者としての注意義務を伴う業務の遂行」という契約の本質を理解し、手段や時間配分についてはエンジニアの専門性と裁量に委ねる姿勢が求められます。 フリーランスエンジニアと適法かつ健全な関係を築くための実務対策 これらの法的リスクを回避し、フリーランスエンジニアと適法かつ健全なパートナーシップを築くために、発注企業は具体的な実務対策を組織全体で徹底する必要があります。第一に取り組むべきは、契約締結前の「スコープの厳密な定義と証跡の保存」です。口頭での曖昧な依頼を完全に排除し、電子契約ツールを導入して、業務内容、報酬、納期を必ずテキスト化して合意するフローを義務付けます。開発途中で仕様変更や追加機能の要望が生じた場合は、現場のエンジニア同士のチャットベースでのやり取りで済ませるのではなく、必ずプロジェクトマネージャーを経由し、工数見積もりの再算出と追加の発注書(または覚書)を取り交わすルールを厳格に運用します。課題管理ツール(JiraやRedmineなど)を活用し、どのチケットがどの契約に紐づいているかを可視化することも有効な手段です。 第二に、「検収ルールの明確化と支払いサイクルの自動化」が挙げられます。納品物を受け取ってから何日以内に誰がどのように確認し、合否を判定するのかという検収のフローを事前に定義し、契約書に明記します。また、社内のワークフローシステムを見直し、納品が行われた時点で自動的に検収の期限を知らせるアラート機能などを実装することで、担当者の多忙による放置を防ぎます。支払期日については、経理部門と連携し、受領日から六十日以内という法定のルールをシステムの支払いサイクルに確実に組み込み、いかなる理由があっても遅延を許さない体制を構築することが急務です。 さらに、「コンプライアンス教育の徹底と相談窓口の設置」も不可欠です。社内でシステム開発のディレクションを担当するすべての社員に対し、フリーランス法の概要と禁止行為、そしてハラスメントに関する研修を定期的に実施します。特に、外部の協力者に対する言葉遣いやチャットでのコミュニケーションマナーについて具体的なガイドラインを策定し、相手の立場を尊重したプロフェッショナルな対応を求めます。同時に、フリーランス側から契約内容の相違やハラスメントについて匿名で通報・相談できる外部の専用窓口を設置し、問題が現場で隠蔽されることなく早期に経営層に上がってくる仕組みを作ることで、自浄作用を働かせることが重要です。 おわりに:コンプライアンス遵守こそがプロジェクト成功の最短ルート フリーランス法の施行は、システム開発を発注する企業にとって、これまでの便利な下請け構造から脱却し、対等なビジネスパートナーとしての関係構築を迫る大きな転換点です。法律で定められた義務を負担に感じる企業もあるかもしれませんが、これを機に社内の受発注フローを整備し、透明性の高いプロジェクト運営を実現することは、企業自身の防衛にとどまらず、長期的には大きなメリットをもたらします。 優秀なフリーランスエンジニアは、技術力だけでなく、自身の専門性を正当に評価し、適正な契約環境を提供してくれるクライアントを選びます。要件定義が明確で、不当な仕様変更がなく、支払いが迅速で、かつ心理的にも安全な就業環境が保証されている現場には、自然と質の高い人材が集まり、定着します。結果として、開発のスピードは向上し、システムの品質も高まり、プロジェクトの成功確率は飛躍的に上昇するでしょう。フリーランス法への対応を単なる法令遵守のコストと捉えるのではなく、開発組織の競争力を高めるための投資と位置づけ、適法かつ健全なシステム開発のあり方を追求していくことが、現代の企業に求められる最も合理的な戦略と言えます。
Strategy fails when leaders confuse ambition with readiness
Ambition is rarely the problem in strategy. In most organizations I have worked in, leaders are not lacking vision, urgency or conviction. They see markets shifting, competitors accelerating and customer expectations evolving. They understand the cost of standing still and the risk of falling behind. As a result, strategies are often bold, directional and intellectually […]
Cisco issues emergency patches for critical firewall vulnerabilities
Cisco has handed security teams one of the largest ever patching workloads affecting its firewall products, including fixes for two ‘perfect 10’ vulnerabilities in the company’s Secure Firewall Management Center (FMC) Software. Overall, the March 4 release, the first of its semiannual firewall updates for 2026, addresses 25 security advisories covering 48 individual CVEs. The […]
SR-FINRA-2025-003
SR-FINRA-2025-003 K32984 Thu, 03/05/2026 – 12:19 Rule Filing Status: Approved Rule change to amend FINRA Rule 3220 (Influencing or Rewarding Employees of Others) to increase the gift limit from $100 to $300 per person per year, provide for exemptive relief, and incorporate existing guidance and interpretive letters. The proposed rule change also would make a […]
Preparing for the Quantum Era: Post-Quantum Cryptography Webinar for Security Leaders
Most organizations assume encrypted data is safe. But many attackers are already preparing for a future where today’s encryption can be broken. Instead of trying to decrypt information now, they are collecting encrypted data and storing it so it can be decrypted later using quantum computers. This tactic—known as “harvest now, decrypt later”—means sensitive data […]
Cisco Confirms Active Exploitation of Two Catalyst SD-WAN Manager Vulnerabilities
Cisco has disclosed that two more vulnerabilities affecting Catalyst SD-WAN Manager (formerly SD-WAN vManage) have come under active exploitation in the wild. The vulnerabilities in question are listed below – CVE-2026-20122 (CVSS score: 7.1) – An arbitrary file overwrite vulnerability that could allow an authenticated, remote attacker to overwrite arbitrary files on the local file […]
Coruna iOS exploit kit moved from spy tool to mass criminal campaign in under a year
Google’s threat intelligence researchers have identified a sophisticated exploit kit targeting iPhones that was first used by a commercial surveillance vendor’s customer before being repurposed by a suspected Russian espionage group and then by Chinese cybercriminals, highlighting what researchers describe as an active secondary market for high-end zero-day exploits. “How this proliferation occurred is unclear, […]
ThreatsDay Bulletin: DDR5 Bot Scalping, Samsung TV Tracking, Reddit Privacy Fine & More
Some weeks in cybersecurity feel routine. This one doesn’t. Several new developments surfaced over the past few days, showing how quickly the threat landscape keeps shifting. Researchers uncovered fresh activity, security teams shared new findings, and a few unexpected moves from major tech companies also drew attention. Together, these updates offer a useful snapshot of […]
Europol: Großer Markt für gestohlene Daten geschlossen
Europol koordinierte den Schlag gegen Leakbase. PixelBiss – shutterstock.com Die Polizei von Amsterdam hat im Zuge einer internationalen Aktion laut Europol einen der weltweit größten Handelsplätze für gestohlene Daten geschlossen. Leakbase hatte weltweit 142.000 registrierte Nutzer, wie die europäische Polizeibehörde in Den Haag mitteilte. Die Server des Marktes waren in Amsterdam. Die Daten wurden sichergestellt. […]
Dust Specter Targets Iraqi Officials with New SPLITDROP and GHOSTFORM Malware
A suspected Iran-nexus threat actor has been attributed to a campaign targeting government officials in Iraq by impersonating the country’s Ministry of Foreign Affairs to deliver a set of never-before-seen malware. Zscaler ThreatLabz, which observed the activity in January 2026, is tracking the cluster under the name Dust Specter. The attacks, which manifest in the […]
CISA Adds Five Known Exploited Vulnerabilities to Catalog
CISA has added five new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2017-7921 Hikvision Multiple Products Improper Authentication Vulnerability CVE-2021-22681 Rockwell Multiple Products Insufficient Protected Credentials Vulnerability CVE-2021-30952 Apple Multiple Products Integer Overflow or Wraparound Vulnerability CVE-2023-41974 Apple iOS and iPadOS Use-After-Free Vulnerability CVE-2023-43000 Apple Multiple products Use-After-Free […]
Delta Electronics CNCSoft-G2
View CSAF Summary Successful exploitation of this vulnerability could result in an attacker achieving remote code execution on the device. The following versions of Delta Electronics CNCSoft-G2 are affected: CNCSoft-G2 CVSS Vendor Equipment Vulnerabilities v3 7.8 Delta Electronics Delta Electronics CNCSoft-G2 Out-of-bounds Write Background Critical Infrastructure Sectors: Critical Manufacturing Countries/Areas Deployed: Worldwide Company Headquarters Location: […]
ISC Stormcast For Thursday, March 5th, 2026 https://isc.sans.edu/podcastdetail/9836, (Thu, Mar 5th)
Post Content
LastPass Warns of New Phishing Campaign
The attackers are sending out fake alerts claiming unauthorized access or master password changes. The post LastPass Warns of New Phishing Campaign appeared first on SecurityWeek.
AI Security Firm JetStream Launches With $34 Million in Seed Funding
The startup aims to provide organizations with visibility into how AI operates across their environment. The post AI Security Firm JetStream Launches With $34 Million in Seed Funding appeared first on SecurityWeek.
How Pirated Software Turns Helpful Employees Into Malware Delivery Agents
Employees seeking free versions of paid software may unknowingly install malware-laced “cracked” apps that can steal credentials, deploy cryptominers, or open the door to ransomware. The post How Pirated Software Turns Helpful Employees Into Malware Delivery Agents appeared first on SecurityWeek.
Hacker Conversations: Inti De Ceukelaire, Raging Against the Machine Creatively
A Belgian national, De Ceukelaire’ did not set out to be a hacker. Like many hackers he was born with the potential to become one and only gradually realized he is one. The post Hacker Conversations: Inti De Ceukelaire, Raging Against the Machine Creatively appeared first on SecurityWeek.
Zurich Acquires Beazley in $11 Billion Deal to Lead Cyberinsurance
The deal awaits final shareholder and regulatory approvals and is expected to be completed in the second half of 2026. The post Zurich Acquires Beazley in $11 Billion Deal to Lead Cyberinsurance appeared first on SecurityWeek.
New LexisNexis Data Breach Confirmed After Hackers Leak Files
The hackers claim to have stolen 2GB of files, including 400,000 personal information records. The post New LexisNexis Data Breach Confirmed After Hackers Leak Files appeared first on SecurityWeek.
Tycoon 2FA Phishing Platform Dismantled in Global Takedown
The phishing-as-a-service platform was used to send fraudulent emails to over 500,000 organizations every month. The post Tycoon 2FA Phishing Platform Dismantled in Global Takedown appeared first on SecurityWeek.
Nation-State iOS Exploit Kit ‘Coruna’ Found Powering Global Attacks
Google and iVerify analysis reveals a powerful exploit kit originally used by Russian state actors that is now appearing in broader criminal campaigns. The post Nation-State iOS Exploit Kit ‘Coruna’ Found Powering Global Attacks appeared first on SecurityWeek.
Cisco Patches Critical Vulnerabilities in Enterprise Networking Products
Cisco has rolled out patches for 48 vulnerabilities in Firewall ASA, Secure FMC, and Secure FTD products. The post Cisco Patches Critical Vulnerabilities in Enterprise Networking Products appeared first on SecurityWeek.
LeakBase Cybercrime Forum Shut Down, Suspects Arrested
The stolen credential marketplace had been active since 2021 and in late 2025 it counted 142,000 users. The post LeakBase Cybercrime Forum Shut Down, Suspects Arrested appeared first on SecurityWeek.
Where Multi-Factor Authentication Stops and Credential Abuse Starts
Organizations typically roll out multi-factor authentication (MFA) and assume stolen passwords are no longer enough to access systems. In Windows environments, that assumption is often wrong. Attackers still compromise networks every day using valid credentials. The issue is not MFA itself, but coverage. Enforced through an identity provider (IdP) such as Microsoft Entra ID, Okta, […]
APT28-Linked Campaign Deploys BadPaw Loader and MeowMeow Backdoor in Ukraine
Cybersecurity researchers have disclosed details of a new Russian cyber campaign that has targeted Ukrainian entities with two previously undocumented malware families named BadPaw and MeowMeow. “The attack chain initiates with a phishing email containing a link to a ZIP archive. Once extracted, an initial HTA file displays a lure document written in Ukrainian concerning […]
State-affiliated hackers set up for critical OT attacks that operators may not detect
Several state-linked threat groups known for breaking into operational technology (OT) networks have shifted their focus over the past year from gaining and maintaining access to actively mapping out ways to disrupt physical industrial processes. The shift poses a significant threat because fewer than one in 10 OT networks have monitoring in place to detect […]
Europol-Led Operation Takes Down Tycoon 2FA Phishing-as-a-Service Linked to 64,000 Attacks
Tycoon 2FA, one of the prominent phishing-as-a-service (PhaaS) toolkits that allowed cybercriminals to stage adversary-in-the-middle (AitM) credential harvesting attacks at scale, was dismantled by a coalition of law enforcement agencies and security companies. The subscription-based phishing kit, which first emerged in August 2023, was described by Europol as one of the largest phishing
FBI and Europol Seize LeakBase Forum Used to Trade Stolen Credentials
A joint law enforcement operation has dismantled LeakBase, one of the world’s largest online forums for cybercriminals to buy and sell stolen data and cybercrime tools. The LeakBase forum, per the U.S. Department of Justice (DoJ), had over 142,000 members and more than 215,000 messages between members as of December 2025. Those attempting to access […]
14 old software bugs that took way too long to squash
In 2021, a vulnerability was revealed in a system that lay at the foundation of modern computing. An attacker could force the system to execute arbitrary code. Shockingly, the vulnerable code was almost 54 years old — and there was no patch available, and no expectation that one would be forthcoming. Fortunately, that’s because the […]
Die besten Cyber-Recovery-Lösungen
Nicht greifende Recovery-Prozesse sind für Unternehmen ein Albtraumszenario, das dank ausgefeilter Angriffe immer öfter zur Realität wird. Arjuna Kodisinghe | shutterstock.com Im Rahmen traditioneller Incident-Response– und Recovery-Prozesse wird eine Kompromittierung identifiziert und ein “Desaster” deklariert – woraufhin die betroffenen Systeme aus dem Backup wiederhergestellt werden. Diese Abläufe erfolgen größtenteils manuell und erfordern an jedem Entscheidungspunkt […]
Microsoft leads takedown of Tycoon2FA phishing service infrastructure
The infrastructure hosting the Tycoon2FA service, which Europol said was among the largest phishing operations worldwide, has been taken down by a coalition of IT companies and law enforcement agencies. At least temporarily, this removes access to one more tool for evading multifactor authentication defenses from threat actors. Europol, which coordinated the operation, said Wednesday […]
Differentiating Between a Targeted Intrusion and an Automated Opportunistic Scanning [Guest Diary], (Wed, Mar 4th)
[This is a Guest Diary by Joseph Gruen, an ISC intern as part of the SANS.edu BACS program]
2025088422001 Danish Rauf CRD 5006655 AWC lp.pdf
2025088422001 Danish Rauf CRD 5006655 AWC lp.pdf Anonymous (not verified) Wed, 03/04/2026 – 19:20 Case ID 2025088422001 Document Number 5767e81b Document Type AWCs (Letters of Acceptance, Waiver, and Consent) Individuals Danish Rauf Action Date Wed, 03/04/2026 – 12:00 Related Content Off Attachment 2025088422001 Danish Rauf CRD 5006655 AWC lp.pdf Individual CRD 5006655
2025088109801 David N. Cohen CRD 5083883 AWC lp.pdf
2025088109801 David N. Cohen CRD 5083883 AWC lp.pdf Anonymous (not verified) Wed, 03/04/2026 – 19:20 Case ID 2025088109801 Document Number 96be25d2 Document Type AWCs (Letters of Acceptance, Waiver, and Consent) Individuals David N. Cohen Action Date Tue, 03/03/2026 – 12:00 Related Content Off Attachment 2025088109801 David N. Cohen CRD 5083883 AWC lp.pdf Individual CRD 5083883
25-00638.pdf
25-00638.pdf Anonymous (not verified) Wed, 03/04/2026 – 18:50 Case ID 25-00638 Forum FINRA Document Type Award Claimants Todd Bendell Respondents Merrill Lynch Pierce Fenner & Smith Inc. Neutrals Roger A. Geddes Hearing Site Phoenix, AZ Award Document 25-00638.pdf Documentum DocID 0eb45766 Award Date Official Wed, 03/04/2026 – 12:00 Related Content Off Claimant Representatives Austin Davis […]
25-02317.pdf
25-02317.pdf Anonymous (not verified) Wed, 03/04/2026 – 18:50 Case ID 25-02317 Forum FINRA Document Type Award Claimants Vincent Mercaldi Respondents Charles Schwab & Co., Inc. Neutrals Stephanie E. Simmons Hearing Site Houston, TX Award Document 25-02317.pdf Documentum DocID 45dfbb4b Award Date Official Wed, 03/04/2026 – 12:00 Related Content Off Claimant Representatives Vincent Mercaldi Respondent Representatives […]
24-01858.pdf
24-01858.pdf Anonymous (not verified) Wed, 03/04/2026 – 18:50 Case ID 24-01858 Forum FINRA Document Type Award Claimants Bobbie McRae Cathy Shubert Darryl McRae Elizabeth Palompo Elvis Miller John Sims Kay Sims Lacrecha Anderson Linda Sims Margaret Mayes Marilyn Atkinson Sandra Odol Sonja Mattingley Respondents Charles Schwab & Co., Inc. TD Ameritrade Clearing, Inc. TD Ameritrade, […]
Why AI, Zero Trust, and modern security require deep visibility
AI. Automation. Zero Trust. They dominate every security strategy document. But there’s a truth sitting underneath all three: none of them work without deep, trustworthy visibility. You can’t continuously verify identities without knowing how they behave. You can’t train AI on incomplete data and expect accurate detection. You can’t automate response if every decision is built […]
The 10-hour problem: How visibility gaps are burning out the SOC
Security teams aren’t drowning because the threats improved. They’re drowning because the visibility got worse. The October 2025 commissioned Forrester Consulting study conducted on behalf of NETSCOUT surfaces a problem that every analyst already knows: 61% of survey respondents say their analysts spend more than ten hours a week in the “analyze” phase alone. This isn’t […]
AIの進化の影で深刻化する電力消費問題:持続可能性と技術発展のジレンマ
生成AIがもたらす電力需要の爆発的増加とその背景 人工知能、特に近年目覚ましい発展を遂げている大規模言語モデル(LLM)をはじめとする生成AIの普及は、世界の電力需要の構造に根底から変革をもたらそうとしている。従来のインターネット検索やクラウドサービスと比較して、生成AIは計算リソースに対する要求が桁違いに大きいという根本的な特徴を持っている。この電力消費は大きく「学習(トレーニング)」と「推論(インファレンス)」の二つのフェーズに分けることができる。学習フェーズにおいては、数千億から数兆というパラメータを持つ巨大なニューラルネットワークに対し、インターネット上の膨大なテキストや画像データを読み込ませ、最適化計算を昼夜を問わず数ヶ月間にわたって実行し続ける必要がある。この過程で使用される最先端のグラフィックス処理装置(GPU)群は、一つあたり数百ワットから一千ワット超の電力を消費し、それが数万基規模で並列稼働するため、一つの最先端モデルを学習させるだけで中規模な都市の数日分から数週間分に匹敵する電力が消費される計算となる。 しかし、真に持続可能性を脅かしているのは、モデルが完成した後にユーザーからのプロンプト(指示)に応答する「推論」フェーズの電力消費である。従来のウェブ検索エンジンが、あらかじめインデックス化されたデータベースから最も関連性の高いウェブサイトのリンクを抽出して表示するだけであったのに対し、生成AIによる回答生成は、入力された文脈を解析し、単語の確率分布に基づいてゼロから文章や画像を合成するという高度な計算をその都度実行している。国際的なエネルギー研究機関の試算や各種の学術報告によれば、生成AIによる一度のクエリ(質問)処理は、従来の検索エンジンの約十倍から数十倍の電力を消費すると指摘されている。ChatGPTのようなサービスが世界中で数億人に日常的に利用され、さらに企業の業務システムやスマートフォンの基本機能にまでAIが組み込まれるようになった現在、推論フェーズにおける電力需要は際限なく膨張を続けている。国際エネルギー機関(IEA)の予測においても、世界のデータセンターの電力消費量は、人工知能の普及と暗号資産のマイニングなどの影響により、数年のうちに現在の二倍近くに達し、日本のような先進国一カ国分の総電力消費量に匹敵する規模になると警告されている。これは単なる一時的な技術ブームに伴う現象ではなく、人類のデジタルインフラの前提が根本から覆るほどの構造的な変化を意味している。 環境負荷とエネルギーインフラへの圧迫という現実 こうした天文学的な電力需要の急増は、単に電気代の高騰という経済的な問題にとどまらず、地球環境への深刻な負荷と、各国のエネルギーインフラに対する限界を超えた圧迫を引き起こしている。データセンターは世界中に均等に分散しているわけではなく、通信インフラが整備され、かつては電力が安価であった特定の地域に集中する傾向がある。例えば、米国のバージニア州北部やアイルランドのダブリン周辺などでは、データセンターが地域の総電力消費量の大きな割合を占める事態となっており、一部の地域では電力網の許容限界に達したため、新規のデータセンター建設計画に対する送電網への接続制限や一時的な建設モラトリアムが発動される事態にまで発展している。日本においても、首都圏郊外や北海道などで大規模なデータセンターの建設計画が相次いでおり、今後の電力需給の逼迫要因として強く懸念されている。 電力インフラの構築には長いリードタイムが必要であるという事実が、この問題をさらに複雑にしている。最先端のAI向けデータセンターは計画から一、二年という短期間で稼働を開始できるのに対し、それらを支えるための新しい送電網の敷設や発電所の建設には、環境アセスメントや地域住民の合意形成を含めて五年から十年以上の歳月を要する。この開発スピードの致命的な不一致により、電力会社は急増するデータセンターの需要に応えるため、本来であれば老朽化を理由に廃止される予定であった石炭火力発電所や天然ガス火力発電所の稼働期間を延長したり、緊急用の化石燃料由来のピーク電源を頻繁に稼働させたりせざるを得ない状況に追い込まれている地域も存在する。これは、世界的な温室効果ガス削減のシナリオを大きく狂わせる要因となっている。 さらに見過ごされがちなのが、巨大な電力を消費するサーバー群を冷却するための「水資源」の枯渇問題である。サーバーが排出する膨大な熱を処理するため、多くのデータセンターでは蒸発冷却システムを採用しており、毎日数百万リットル単位の真水を消費している。気候変動の影響で世界各地で深刻な干ばつや水不足が常態化する中、人間が生活し農業を営むための貴重な水資源と、AIの計算を維持するための工業用水とが競合するという倫理的かつ死活的な問題も顕在化している。電力消費はそのまま水消費へと直結しており、AIの環境フットプリントは炭素排出という単一の指標だけでは測れない多層的な広がりを見せている。 ビッグテックの対応とクリーンエネルギー化への高い障壁 この危機的状況に対し、AI開発を主導する巨大IT企業(ビッグテック)も決して無策ではない。各社は数年前から「二酸化炭素排出量の実質ゼロ(ネットゼロ)」や「消費電力をすべて再生可能エネルギーで賄う」といった野心的な環境目標を掲げ、太陽光発電や風力発電のプロジェクトに対して巨額の投資を行ってきた。しかし、これらの企業の最新の環境報告書を批判的に読み解くと、AI開発競争の激化に伴い、実際の温室効果ガス排出量(特にサプライチェーン全体を含むスコープ3の排出量)は削減されるどころか、数年前と比較して大幅に増加しているという矛盾した現実が浮き彫りになっている。 彼らが直面している最大の障壁は、再生可能エネルギーの「間欠性」とデータセンターの「常時稼働性」の間の根本的なミスマッチである。太陽光や風力は天候や時間帯によって発電量が大きく変動するが、AIを駆動するデータセンターは二十四時間三百六十五日、常に最大出力に近い電力を安定して消費し続ける。企業が年間消費量と同等のクリーンエネルギーを購入した(電力購入契約を結んだ)と主張しても、風が吹かない夜間には結局のところ地域の化石燃料ベースの電力網から電力を供給してもらわなければデータセンターは停止してしまう。つまり、帳簿上は「百パーセント再生可能エネルギー」であっても、物理的な現実としては化石燃料に深く依存しているのが実態である。 この間欠性の問題を克服し、二酸化炭素を排出しない安定したベースロード電源を確保するため、近年ビッグテックの関心は「原子力発電」へと急速に回帰している。過去の原発事故で閉鎖された原子炉の再稼働計画にIT企業が資金を提供したり、次世代技術とされる小型モジュール炉(SMR)の開発スタートアップに巨額の出資を行ったりする動きが相次いでいる。しかし、この原子力への傾倒に対しても批判的な視点は欠かせない。SMRは未だ実証段階を抜け出しておらず、商用化されデータセンターの電力源としてスケールするまでには早くとも二千三十年代半ば以降になると予測されている。また、使用済み核燃料の最終処分問題や事故時の深刻なリスクといった原子力特有の負の側面は依然として解決されておらず、単に「炭素を出さない」という一点のみをもってクリーンエネルギーと見なすアプローチは、持続可能性の観点から極めて近視眼的であると言わざるを得ない。AIの電力需要の伸びはあまりにも急激であり、原発の建設や新技術の商用化という悠長な時間軸では到底カバーできないのが現状である。 技術的解決策の模索と社会全体に求められるパラダイムシフト AIの電力消費という巨大な壁を乗り越えるため、ハードウェアとソフトウェアの両面から様々な効率化の試みが行われている。ハードウェア面では、電力あたりの計算性能を飛躍的に高めた次世代GPUの開発や、AIの特定の推論処理に特化した省電力な専用チップ(NPUなど)の設計が進んでいる。また、冷却効率を極限まで高めるための液冷システムの導入なども進展している。ソフトウェアやアルゴリズムの面でも、巨大すぎるモデルをあらゆる用途に使うのではなく、特定の業務に特化させることでパラメータ数を大幅に減らし、少ない電力で同等の性能を発揮できる「小規模言語モデル(SLM)」へのシフトや、計算時に必要な部分だけを稼働させるスパース(疎)なモデル構造への移行など、電力消費を抑えるための研究が活発化している。 しかし、歴史が教える「ジェボンズのパラドックス」を我々は忘れてはならない。これは、技術の進歩によってエネルギー利用効率が向上すると、むしろその技術の利用コストが下がるため需要が喚起され、結果的に社会全体としてのエネルギー消費量は増加してしまうという経済学の法則である。AIの計算が効率化され省電力になればなるほど、AIはあらゆるデバイスやソフトウェアの背後に組み込まれ、人々はより無自覚に、より高頻度でAIを呼び出すようになるだろう。効率化という技術的なアプローチだけでは、総量としての電力消費の爆発を抑え込むことは極めて困難である。 したがって、最終的に求められるのは技術的解決だけでなく、社会構造や価値観のパラダイムシフトである。私たちは「そのAIの使用は、投入される莫大なエネルギーに見合っているのか」という本質的な問いを立てる必要がある。新薬の発見や気候変動モデルの解析といった人類の生存に関わる複雑な計算にAIのリソースと電力を投じることは正当化されるかもしれない。しかし、単なる暇つぶしのための高解像度画像の生成や、自ら数分考えれば済むような簡単なメールの文章作成のために、多大な環境負荷をかけてクラウド上のGPUをフル稼働させることが果たして適切なエネルギーの使い方と言えるだろうか。 今後の社会においては、AIサービスを提供する企業に対し、一回の検索や生成にかかる電力消費量や炭素排出量をユーザーに明示させるような透明性の確保(環境ラベリングなど)が法的に義務付けられるべきであろう。また、エネルギー効率の悪い無差別なAIインフラの拡張に対して、炭素税などの経済的ペナルティを課す政策的介入も議論の遡上に載せる必要がある。人工知能は間違いなく人類に飛躍的な生産性をもたらす強力なツールであるが、私たちが住む地球の物理的、エネルギー的限界を無視して発展し続けることはできない。無制限な技術の拡張主義から脱却し、環境負荷という「コスト」と技術がもたらす「便益」を冷静に天秤にかけ、持続可能な範囲内でAIと共存していくための新たな倫理観と規制の枠組みを構築することこそが、いま人類に課せられた最大の急務である。
“청구서는 기업으로?” AI 업체의 매출 증가 전망에 우려도 커져
오픈AI, 앤트로픽, 엔비디아 등 AI 관련 주요 업체가 내놓는 매출 전망치가 기업 고객들의 시선을 끄는 동시에, 그 부담이 최종 고객에게 전가될 수 있다는 우려도 커지고 있다. 지난 4년간의 과열 투자 이후, 결국 기업이 고객이 비용을 치르게 될 것이라는 지적이다. 일반적으로 신기술의 고객 단가는 시간이 갈수록 낮아지지만, 최근 AI ‘골드러시’가 가격 인하를 수년간 지연시킬 수 있다는 […]
Situated cognitive guidance: A new interaction pattern for human-in-the-loop workflows
What is situated cognitive guidance (SCG)? A cognitive interaction pattern for live digital workflows refers to a mode of human–system interaction in which an AI system understands the live operational context of a task (interface, state and workflow) and supports human decision-making by framing actions, interpreting states and sequencing steps, without executing actions on behalf […]
Agentic payments are coming. Is your company ready?
ChatGPT is quickly becoming the first choice for product research, and it might soon be handling the payments as well, if Google doesn’t get there first. But for merchants, this means potential risks to business models as they lose control of the customer experience, might see their brands damaged by malfunctioning agents, and face mostly […]
A strategic roadmap for the post-quantum CIO
The recent Palo Alto Networks Quantum Safe Summit assembled industry titans and cybersecurity leaders to deliver a sobering message to CIOs: the harvest now, decrypt later (HNDL) threat is real and active, and the window for cryptographic transition is closing. For the modern CIO, quantum readiness is more than just a technical upgrade, it’s a […]
La publicidad y el marketing en los tiempos de la IA: un “momento apasionante” en el todo cambia a velocidad de vértigo
Desde fuera, cuando se piensa en marketing y en publicidad, se tiende a visualizar el sector casi como si fuese una versión moderna de un capítulo de Mad Men. Lo importante es, solamente, lo creativo. Lo cierto es, sin embargo, que en la propia Mad Men estaban ya abrazando la tecnología y que la creatividad […]
How a morning in Spain changed the way I view data centers
I’m walking back to the hotel after an early morning loop through Málaga, Spain, the kind of walk that clears your head before the city fully wakes up. I’m looking forward to one thing, coffee, a simple mission, a basic human requirement and the quiet satisfaction of returning somewhere that already feels familiar. I cut […]
The hidden cost of waiting for best practices in AI adoption
For most of my career, I have watched the same pattern repeat. A new technology emerges. Early adopters experiment, struggle and learn in public. Everyone else waits for best practices. By the time those practices are well documented, the competitive advantage has already moved. AI is following that exact script. Only this time, the cost […]
From OpEx to CapEx: The case for modular AI pods
If you want to see the immediate future of enterprise org planning, don’t look at NVIDIA’s stock price. Look at the severance packages at Chegg. In late 2025, the education giant cut 45% of its workforce, leaving it with fewer than 500 employees, down from nearly 2,000 just two years prior. The reason? They were […]
SAP integrates SmartRecruiters with SuccessFactors
SAP has integrated SmartRecruiters, the hiring tool it acquired last September, into its SuccessFactors platform, it said Wednesday. The move, it said, “establishes the foundation for a fully connected talent architecture, where hiring decisions, skills intelligence, and workforce planning can operate as one system.” SmartRecruiters for SAP SuccessFactors offers an end-to-end hiring experience with embedded […]
149 Hacktivist DDoS Attacks Hit 110 Organizations in 16 Countries After Middle East Conflict
Cybersecurity researchers have warned of a surge in retaliatory hacktivist activity following the U.S.-Israel coordinated military campaign against Iran, codenamed Epic Fury and Roaring Lion. “The hacktivist threat in the Middle East is highly lopsided, with two groups, Keymous+ and DieNet, driving nearly 70% of all attack activity between February 28 and March 2,” Radware […]
Data brokers market study
Data brokers market study icolonnm Wed, 04/03/2026 – 15:37 4 March 2026 The Data brokers market study provides a methodology to identify data brokers and presents a typology of data brokers, together with an analysis of their business models and an initial risk assessment. In addition, the report provides an in-depth overview of a number of […]
Coruna iOS Exploit Kit Uses 23 Exploits Across Five Chains Targeting iOS 13–17.2.1
Google said it identified a “new and powerful” exploit kit dubbed Coruna (aka CryptoWaters) targeting Apple iPhone models running iOS versions between 13.0 and 17.2.1. The exploit kit featured five full iOS exploit chains and a total of 23 exploits, Google Threat Intelligence Group (GTIG) said. It’s not effective against the latest version of iOS. […]
Iranian cyberattacks fail to materialize but threat remains acute
Five days into US and Israel’s war with Iran, the worst predictions for cyber-retaliation have yet to materialize. But Iran has built one of the world’s most active cyber operations, which means this is likely a temporary reprieve, experts warn. At the weekend, both the UK National Cyber Security Centre (NCSC) and the Canadian Centre […]
New RFP Template for AI Usage Control and AI Governance
As AI becomes the central engine for enterprise productivity, security leaders are finally getting the green light — and the budget — to secure it. But there’s a quiet crisis unfolding in the boardroom: many organizations know they need “AI Governance,” but they have no idea what they are actually looking for. The CISO’s Dilemma: […]
Android Update Patches Exploited Qualcomm Zero-Day
An integer overflow or wraparound in the Qualcomm graphics component, the bug leads to memory corruption. The post Android Update Patches Exploited Qualcomm Zero-Day appeared first on SecurityWeek.
1.2 Million Affected by University of Hawaii Cancer Center Data Breach
Hackers stole names, Social Security numbers, driver’s license information, voter registration records, and health-related information. The post 1.2 Million Affected by University of Hawaii Cancer Center Data Breach appeared first on SecurityWeek.
New ‘AirSnitch’ Attack Shows Wi-Fi Client Isolation Could Be a False Sense of Security
Researchers have uncovered a Wi-Fi vulnerability that allows nearby attackers to intercept sensitive data and execute machine-in-the-middle attacks against connected devices. The post New ‘AirSnitch’ Attack Shows Wi-Fi Client Isolation Could Be a False Sense of Security appeared first on SecurityWeek.
Quantum Decryption of RSA Is Much Closer Than Expected
For decades, the quantum threat to RSA and ECC encryption has been tied to Shor’s algorithm and the assumption that we would need million-qubit quantum computers to make it practical. A newly announced algorithm challenges that assumption and suggests the breaking point could arrive far sooner than expected. The post Quantum Decryption of RSA Is […]
Honeywell, Researcher Clash Over Impact of Building Controller Vulnerability
The researcher says he has identified thousands of internet-exposed IQ4 building management controllers. The post Honeywell, Researcher Clash Over Impact of Building Controller Vulnerability appeared first on SecurityWeek.
Fig Security Launches With $38 Million to Bolster SecOps Resilience
The company was founded in March 2025 and it has now emerged from stealth mode. The post Fig Security Launches With $38 Million to Bolster SecOps Resilience appeared first on SecurityWeek.
Iranian Strikes on Amazon Data Centers Highlight Industry’s Vulnerability to Physical Disasters
Two AWS data centers in the United Arab Emirates were “directly struck” and another facility in Bahrain was also damaged after a drone landed nearby. The post Iranian Strikes on Amazon Data Centers Highlight Industry’s Vulnerability to Physical Disasters appeared first on SecurityWeek.
VMware Aria Operations Vulnerability Exploited in the Wild
The recently patched CVE-2026-22719 can be exploited by an unauthenticated attacker for remote code execution. The post VMware Aria Operations Vulnerability Exploited in the Wild appeared first on SecurityWeek.
Critical FreeScout Vulnerability Leads to Full Server Compromise
A patch bypass for an authenticated code execution bug, the flaw leads to zero-click remote code execution attacks. The post Critical FreeScout Vulnerability Leads to Full Server Compromise appeared first on SecurityWeek.
Global Coalition Publishes 6G Security and Resilience Principles
The principles cover security, resilience against attacks and disasters, AI, and openness and interoperability. The post Global Coalition Publishes 6G Security and Resilience Principles appeared first on SecurityWeek.
Want More XWorm?, (Wed, Mar 4th)
And another XWorm[1] wave in the wild! This malware family is not new and heavily spread but delivery techniques always evolve and deserve to be described to show you how threat actors can be imaginative! This time, we are facing another piece of multi-technology malware.
Fake Laravel Packages on Packagist Deploy RAT on Windows, macOS, and Linux
Cybersecurity researchers have flagged malicious Packagist PHP packages masquerading as Laravel utilities that act as a conduit for a cross-platform remote access trojan (RAT) that’s functional on Windows, macOS, and Linux systems. The names of the packages are listed below – nhattuanbl/lara-helper (37 Downloads) nhattuanbl/simple-queue (29 Downloads) nhattuanbl/lara-swagger (49 Downloads)
Anthropic AI ultimatums and IP theft: The unspoken risk
Two recent high-profile events concerning Anthropic’s Claude AI underscore a little-discussed risk at the heart of the enterprise’s rush to capitalize on leading AI capabilities. The first incident involved a China-based extraction campaign against Anthropic’s intellectual property. The second was the Trump administration’s banning of Claude for federal use after the company resisted US demands […]
APT41-Linked Silver Dragon Targets Governments Using Cobalt Strike and Google Drive C2
Cybersecurity researchers have disclosed details of an advanced persistent threat (APT) group dubbed Silver Dragon that has been linked to cyber attacks targeting entities in Europe and Southeast Asia since at least mid-2024. “Silver Dragon gains its initial access by exploiting public-facing internet servers and by delivering phishing emails that contain malicious attachments,” Check Point […]
How to know you’re a real-deal CSO — and whether that job opening truly seeks one
Recruiters of senior-level IT professionals often say that a truly skilled and experienced CSO is among the hardest of all IT roles to fill. The reason is due to the increased responsibility placed on these key employees, who are often part of the C-suite and may even report directly to the CEO. Unfortunately, this can […]
How to know you’re a real-deal CSO — and whether that job opening truly seeks one
Recruiters of senior-level IT professionals often say that a truly skilled and experienced CSO is among the hardest of all IT roles to fill. The reason is due to the increased responsibility placed on these key employees, who are often part of the C-suite and may even report directly to the CEO. Unfortunately, this can […]
CISA Adds Actively Exploited VMware Aria Operations Flaw CVE-2026-22719 to KEV Catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a recently disclosed security flaw impacting Broadcom VMware Aria Operations to its Known Exploited Vulnerabilities (KEV) catalog, citing active exploitation in the wild. The high-severity vulnerability, CVE-2026-22719 (CVSS score: 8.1), has been described as a case of command injection that could allow an
Risky Business #827 -- Iranian cyber threat actors are down but not out
On this week’s show, Patrick Gray, Adam Boileau and James WIlson discuss the week’s cybersecurity news. They cover: The US-Israeli attack on Iran had a whole lot of cyber. It’s clearly in the playbook now! The NSA Triangulation / L3 Harris Trenchant iOS exploit kit is on the loose, and being used by Chinese crypto […]
AI-powered attack kits go open source, and CyberStrikeAI may be just the beginning
AI is making it ever easier for bad actors to launch attacks, and a newly-identified open source platform, CyberStrikeAI, seems to be lowering the bar even further. The platform packages end-to-end attack automation into a single AI-native orchestration engine, and is linked to the threat actor behind the recent campaign that breached hundreds of Fortinet […]
ISC Stormcast For Wednesday, March 4th, 2026 https://isc.sans.edu/podcastdetail/9834, (Wed, Mar 4th)
Post Content
25-01878.pdf
25-01878.pdf Anonymous (not verified) Tue, 03/03/2026 – 18:25 Case ID 25-01878 Forum FINRA Document Type Award Claimants Juan Elwaw Respondents Morgan Stanley Neutrals Paul H. Lamboley Leon Fox Carol Maria Luttati Hearing Site Boca Raton, FL Award Document 25-01878.pdf Documentum DocID fe3d2dd2 Award Date Official Tue, 03/03/2026 – 12:00 Related Content Off Claimant Representatives Randi […]
25-00604.pdf
25-00604.pdf Anonymous (not verified) Tue, 03/03/2026 – 18:25 Case ID 25-00604 Forum FINRA Document Type Award Claimants Carolina Rida Jaafar Respondents J.P. Morgan Securities, LLC Neutrals Katherine Hendricks Mark R. Lee Neil Harvey Smith Hearing Site San Diego, CA Award Document 25-00604.pdf Documentum DocID 1f12b0dc Award Date Official Tue, 03/03/2026 – 12:00 Related Content Off […]
24-01922.pdf
24-01922.pdf Anonymous (not verified) Tue, 03/03/2026 – 18:25 Case ID 24-01922 Forum FINRA Document Type Award Claimants Morgan Stanley Respondents Gary McCarthy Kwame Adusei Neutrals David J. Pollitzer Natalie Jennifer Bordeaux Lisa A Proskin Hearing Site Albany, NY Award Document 24-01922.pdf Documentum DocID 6911daf7 Award Date Official Mon, 03/02/2026 – 12:00 Related Content Off Claimant […]
25-00727.pdf
25-00727.pdf Anonymous (not verified) Tue, 03/03/2026 – 18:25 Case ID 25-00727 Forum FINRA Document Type Award Claimants Eric Stiba Respondents Lion Street Financial, LLC Neutrals Evalyn Lipton Fishbein Debra Black Leo Jason Allen Rosner Hearing Site Dallas, TX Award Document 25-00727.pdf Documentum DocID 58dd7fc0 Award Date Official Tue, 03/03/2026 – 12:00 Related Content Off Claimant […]
24-00915.pdf
24-00915.pdf Anonymous (not verified) Tue, 03/03/2026 – 18:25 Case ID 24-00915 Forum FINRA Document Type Award Claimants Ameriprise Financial Services, LLC. Respondents Mitchell McCann LPL Financial LLC Wesley McCann Neutrals Richard C. Downing Richard Edward Rassel John Klusinske Hearing Site Detroit, MI Award Document 24-00915.pdf Documentum DocID 1826ad54 Award Date Official Tue, 03/03/2026 – 12:00 […]
1,700 Dutch police officers get reminder not to access files without legitimate purpose
Dutch Police reports: Nearly 1,700 police officers will receive a letter in the coming period because they used police systems when there was likely no need to do so. These colleagues were looking for information about the violent death of 17-year-old Lisa from Abcoude. The letter is primarily intended to remind police officers of the… […]
국방부 계약 파장? 앱스토어 1위 오른 앤트로픽, 삭제율 뛴 오픈AI
2026년 2월 말, 앤트로픽이 AI의 무기화 및 대량 감시 목적 활용을 허용하라는 정부 측 요구를 ‘안전 가이드라인 준수’를 이유로 거절하자, 시장에서는 이 회사의 윤리적 원칙에 대한 대중적 지지가 빠르게 확산되는 분위기다. CNBC 보도에 따르면 클로드는 지난 주말 오픈AI의 챗GPT를 제치고 미국 앱스토어 무료 앱 부문 1위를 기록했다. 센서타워(Sensor Tower) 데이터 기준으로 클로드는 1월 말까지만 해도 […]
HM Hospitales impulsa un espacio para explorar casos de uso tecnológicos en el ámbito sanitario
Juan Abarca Cidón, presidente de HM Hospitales, Andrés Yin Hui, CEO de Huawei Iberia, y Alfredo Estirado, presidente de TRC, han materializado públicamente en el MWC de Barcelona que se celebra esta semana la firma del acuerdo anunciado el pasado mes de enero por las tres empresas para poner en marcha un proyecto que, en […]
IT’s brand resuscitation begins with enterprise CIOs
The IT brand is in trouble. Long gone are the good vibes associated with IT stepping up and enabling remote work and social connectivity during the COVID crisis. Gone is the general good feeling associated with putting compute power in the hands of ordinary workers during the PC boom. Out-of-sight and no longer remembered is […]
Open source isn’t altruism. It’s how you avoid getting surprised
For a long time, I thought I understood what open source was about. Like many engineers, my early understanding was shaped by its origin story: the hacker ethic, academic collaboration, the idea that software should be shared because it was the right thing to do. I read the books. I absorbed the culture. Open source […]
AI revenues skyrocket — and enterprise CIOs pay the bill
Leading AI vendors and infrastructure providers have invested more than $1 trillion in the emerging technology in recent years, and the check is coming due, with some of these companies now aiming to cash in on past spending. Huge revenue projections from AI companies like OpenAI, Anthropic, and Nvidia have raised eyebrows from potential customers, […]
What shapes an organization’s ability to manage data
In boardrooms and executive forums, data is commonly described as the lifeblood of the organization or the foundation of digital transformation. One of the clearest indicators of how central data has become is how much organizations are willing to spend simply to protect it. Globally, annual spending on cybersecurity, data protection and backup and recovery […]
Composable infrastructure and build-to-fit IT: From standard stacks to policy-defined intent
For years, many of us built infrastructure the same way we built data centers in the 2000s: Pick a “standard stack,” stamp it out and treat exceptions like a paperwork problem. It worked, until it didn’t. Retail made the breaking point obvious. Demand patterns stopped being “seasonal” and became “event-driven.” A product drop goes viral. […]
AI data center optimization needs a semantic digital twin
AI has turned the data center into a coupled constraint problem. Power, cooling, redundancy posture and workload placement now move together, which means optimization is no longer a set of independent knobs you can tune in parallel. A semantic digital twin is the missing layer that grounds those constraints in shared meaning, so decisions become […]
SAP shakes up its service and support portfolio, but only for the cloud
SAP has unveiled an update to its services and support portfolio that focuses on cloud and AI, while leaving on premises offerings untouched. Split into three tiers, the new plans provide what the company describes as a “simplified engagement model” that leans heavily on AI-based tools. Historically a provider of on-premises software, SAP had also […]
SAP: Latest news and insights
SAP (NYSE:SAP) is an enterprise software vendor based in Walldorf, Germany. Its cloud and on-premises enterprise resource planning (ERP) software, including S/4HANA, helps organizations manage their business operations and customer relations. The German multinational also offers a vast array of software solutions tailored to specific facets of the enterprise, including data management, analytics, and supply […]
Fake Tech Support Spam Deploys Customized Havoc C2 Across Organizations
Threat hunters have called attention to a new campaign as part of which bad actors masqueraded as fake IT support to deliver the Havoc command-and-control (C2) framework as a precursor to data exfiltration or ransomware attack. The intrusions, identified by Huntress last month across five partner organizations, involved the threat actors using email spam as […]
Bruteforce Scans for CrushFTP , (Tue, Mar 3rd)
CrushFTP is a Java-based open source file transfer system. It is offered for multiple operating systems. If you run a CrushFTP instance, you may remember that the software has had some serious vulnerabilities: CVE-2024-4040 (the template-injection flaw that let unauthenticated attackers escape the VFS sandbox and achieve RCE), CVE-2025-31161 (the auth-bypass that handed over the […]
Building a High-Impact Tier 1: The 3 Steps CISOs Must Follow
Every CISO knows the uncomfortable truth about their Security Operations Center: the people most responsible for catching threats in real time are the people with the least experience. Tier 1 analysts sit at the front line of detection, and yet they are also the most vulnerable to the cognitive and organizational pressures that quietly erode […]
Open-Source CyberStrikeAI Deployed in AI-Driven FortiGate Attacks Across 55 Countries
The threat actor behind the recently disclosed artificial intelligence (AI)-assisted campaign targeting Fortinet FortiGate appliances leveraged an open-source, AI-native security testing platform called CyberStrikeAI to execute the attacks. The new findings come from Team Cymru, which detected its use following an analysis of the IP address (“212.11.64[.]250”) that was used by the suspected
Israeli spies ‘hacked every traffic camera in Tehran to plot killing of Iran’s Ayatollah Ali Khamenei’
Maira Butt reports: Israeli spies hacked nearly every traffic camera in Tehran for years in order to monitor the movements of Ayatollah Ali Khamenei in an unprecedented intelligence-gathering campaign, according to a report. Officials surveilled highly trained and loyal security guards, bodyguards and drivers of senior Iranian officials to pick up on their “pattern of life”, the Financial Times reported. This real-time data, including from cameras focused… […]
Congress finds data brokers cost consumers tens of billions of dollars
A congressional investigation estimates broker breaches have cost consumers $20 billion in identity theft. Major brokers now promise to make it easier to opt out of their databases. By: Colin Lecher Breaches at data brokers have cost American consumers more than $20 billion, Congress’s Joint Economic Committee revealed Friday as part of an investigation triggered… […]
CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-21385 Qualcomm Multiple Chipsets Memory Corruption Vulnerability CVE-2026-22719 Broadcom VMware Aria Operations Command Injection Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise. Binding […]
Everon OCPP Backends
View CSAF Summary Successful exploitation of these vulnerabilities could enable attackers to gain unauthorized administrative control over vulnerable charging stations or disrupt charging services through denial-of-service attacks. The following versions of Everon OCPP Backends are affected: api.everon.io vers:all/* CVSS Vendor Equipment Vulnerabilities v3 9.4 Everon Everon OCPP Backends Missing Authentication for Critical Function, Improper Restriction […]
Hitachi Energy Relion REB500 Product
View CSAF Summary Hitachi Energy is aware of vulnerabilities that affect the Relion REB500 product versions listed in this document. Authenticated users with certain roles can exploit the vulnerabilities to access and modify the directory contents they are not authorized to do so. Please refer to the Recommended Immediate Actions for information about the mitigation/remediation. […]
Mitsubishi Electric MELSEC iQ-F Series EtherNet/IP module and Ethernet module
View CSAF Summary Successful exploitation of these vulnerabilities could allow a remote attacker to cause a denial-of-service condition by continuously sending UDP packets to the affected products. The following versions of Mitsubishi Electric MELSEC iQ-F Series EtherNet/IP module and Ethernet module are affected: MELSEC iQ-F Series FX5-ENET/IP Ethernet Module FX5-ENET/IP <=1.106, vers:all/* (CVE-2026-1874, CVE-2026-1876) MELSEC […]
Portwell Engineering Toolkits
View CSAF Summary Successful exploitation of this vulnerability could allow a local attacker to escalate privileges or cause a denial-of-service condition. The following versions of Portwell Engineering Toolkits are affected: Portwell Engineering Toolkits 4.8.2 CVSS Vendor Equipment Vulnerabilities v3 8.8 Portwell Portwell Engineering Toolkits Improper Restriction of Operations within the Bounds of a Memory Buffer […]
ePower epower.ie
View CSAF Summary Successful exploitation of these vulnerabilities could enable attackers to gain unauthorized administrative control over vulnerable charging stations or disrupt charging services through denial-of-service attacks. The following versions of ePower epower.ie are affected: epower.ie vers:all/* CVSS Vendor Equipment Vulnerabilities v3 9.4 ePower ePower epower.ie Missing Authentication for Critical Function, Improper Restriction of Excessive […]
Labkotec LID-3300IP
View CSAF Summary Successful exploitation of this vulnerability could allow attackers to gain unauthorized control over system operations, leading to disruption of normal functionality and potential safety hazards. The following versions of Labkotec LID-3300IP are affected: LID-3300IP vers:all/* LID-3300IP Type 2 CVSS Vendor Equipment Vulnerabilities v3 9.4 Labkotec Labkotec LID-3300IP Missing Authentication for Critical Function […]
Hitachi Energy RTU500 Product
View CSAF Summary Hitachi Energy is aware of vulnerabilities that affect RTU500 product versions listed in this document. Successful exploitation of these vulnerabilities can result in the exposure of low-value user management information and device outage. Please refer to the Recommended Immediate Actions for information about the mitigation/remediation. The following versions of Hitachi Energy RTU500 […]
Mobiliti e-mobi.hu
View CSAF Summary Successful exploitation of these vulnerabilities could enable attackers to gain unauthorized administrative control over vulnerable charging stations or disrupt charging services through denial-of-service attacks. The following versions of Mobiliti e-mobi.hu are affected: e-mobi.hu vers:all/* CVSS Vendor Equipment Vulnerabilities v3 9.4 Mobiliti Mobiliti e-mobi.hu Missing Authentication for Critical Function, Improper Restriction of Excessive […]
AI Agents: The Next Wave Identity Dark Matter - Powerful, Invisible, and Unmanaged
The Rise of MCPs in the Enterprise The Model Context Protocol (MCP) is quickly becoming a practical way to push LLMs from “chat” into real work. By providing structured access to applications, APIs, and data, MCP enables prompt-driven AI agents that can retrieve information, take action, and automate end-to-end business workflows across the enterprise. This […]
Starkiller Phishing Suite Uses AitM Reverse Proxy to Bypass Multi-Factor Authentication
Cybersecurity researchers have disclosed details of a new phishing suite called Starkiller that proxies legitimate login pages to bypass multi-factor authentication (MFA) protections. It’s advertised as a cybercrime platform by a threat group calling itself Jinkusu, granting customers access to a dashboard that lets them select a brand to impersonate or enter a brand’s real […]
Conference on cross-regulatory cooperation in the EU (17 March) - Programme available now
Conference on cross-regulatory cooperation in the EU (17 March) – Programme available now icolonnm Tue, 03/03/2026 – 12:03 3 March 2026 EDPB The conference “Cross- regulatory interplay and cooperation in the EU: a data protection perspective” takes place on 17 March 2026 from 9.15 to 15.30. This event will offer a high-level overview of the EDPB’s […]
US-Israel and Iran Trade Cyberattacks: Pro-West Hacks Cause Disruption as Tehran Retaliates
Both sides conduct hacking and other attacks, including the deployment of wiper malware, DDoS, and disruptions to critical infrastructure. The post US-Israel and Iran Trade Cyberattacks: Pro-West Hacks Cause Disruption as Tehran Retaliates appeared first on SecurityWeek.
Google Working Towards Quantum-Safe Chrome HTTPS Certificates
The internet giant is developing an evolution of the certificates based on Merkle Tree Certificates (MTCs). The post Google Working Towards Quantum-Safe Chrome HTTPS Certificates appeared first on SecurityWeek.
North Korean APT Targets Air-Gapped Systems in Recent Campaign
Using Windows shortcut files, the APT deployed a new implant, a loader, a propagation tool, and two backdoors. The post North Korean APT Targets Air-Gapped Systems in Recent Campaign appeared first on SecurityWeek.
AWS Expands Security Hub Into a Cross-Domain Security Platform
The AWS Security Hub Extended plan aims to reduce security tool sprawl by correlating findings across multiple security domains. The post AWS Expands Security Hub Into a Cross-Domain Security Platform appeared first on SecurityWeek.
Nick Andersen Appointed Acting Director of CISA
Madhu Gottumukkala has been assigned to a new role within the Department of Homeland Security. The post Nick Andersen Appointed Acting Director of CISA appeared first on SecurityWeek.
Madison Square Garden Data Breach Confirmed Months After Hacker Attack
The company is one of the many victims of the 2025 Oracle E-Business Suite (EBS) hacking campaign. The post Madison Square Garden Data Breach Confirmed Months After Hacker Attack appeared first on SecurityWeek.
OpenClaw Vulnerability Allowed Websites to Hijack AI Agents
Malicious websites could open a WebSocket connection to localhost on the OpenClaw gateway port, brute force passwords, and take control of the agent. The post OpenClaw Vulnerability Allowed Websites to Hijack AI Agents appeared first on SecurityWeek.
Vulnerability Allowed Hijacking Chrome’s Gemini Live AI Assistant
Malicious extensions could hijack the Gemini Live in Chrome feature to spy on users and steal their files. The post Vulnerability Allowed Hijacking Chrome’s Gemini Live AI Assistant appeared first on SecurityWeek.
Researchers Uncover Method to Track Cars via Tire Sensors
Using low-cost receivers deployed along roads, academic researchers tracked drivers and their movement patterns. The post Researchers Uncover Method to Track Cars via Tire Sensors appeared first on SecurityWeek.
Vulnerability in MS-Agent AI Framework Can Allow Full System Compromise
Improper input sanitization in the framework can be exploited through the Shell tool, allowing attackers to modify system files and steal data. The post Vulnerability in MS-Agent AI Framework Can Allow Full System Compromise appeared first on SecurityWeek.
Epic Fury introduces new layer of enterprise risk
Operation Epic Fury — the US administration’s sustained kinetic pressure on core Iranian regime assets — introduces a new layer of operational risk for every multinational with people, assets, or dependencies in the Middle East region and beyond. The immediate briefings from Washington — early damage assessments, stated intent, geopolitical framing, and situational updates and […]
Studie: Hacker legen Betrieb bei vielen Unternehmen lahm
Hacker hatten auch 2025 deutsche Unternehmen im Visier. Studio-M – shutterstock.com Hacker haben im vergangenen Jahr bei vielen Unternehmen in Deutschland Schäden angerichtet. Das zeigt eine repräsentative Befragung des Zentrums für Europäische Wirtschaftsforschung (ZEW) aus Mannheim, die der Deutschen Presse-Agentur vorliegt. In der Informationswirtschaft, die unter anderem IT- und Mediendienstleister umfasst, gab ungefähr jedes siebte […]
Microsoft Warns OAuth Redirect Abuse Delivers Malware to Government Targets
Microsoft on Monday warned of phishing campaigns that employ phishing emails and OAuth URL redirection mechanisms to bypass conventional phishing defenses implemented in email and browsers. The activity, the company said, targets government and public-sector organizations with the end goal of redirecting victims to attacker-controlled infrastructure without stealing their tokens. It described
Google Confirms CVE-2026-21385 in Qualcomm Android Component Exploited
Google on Monday disclosed that a high-severity security flaw impacting an open-source Qualcomm component used in Android devices has been exploited in the wild. The vulnerability in question is CVE-2026-21385 (CVSS score: 7.8), a buffer over-read in the Graphics component. “Memory corruption when adding user-supplied data without checking available buffer space,” Qualcomm said in an […]
7 factors impacting the cyber skills gap
Individuals with strong cybersecurity skills are in high demand. That’s no secret. What’s most important is the fact that the shortage is preventing many enterprises from building sustainable cybersecurity talent pipelines. According to World Economic Forum statistics, only 14% of organizations are confident they have the people and skills required to meet their cybersecurity objectives. […]
SloppyLemming Targets Pakistan and Bangladesh Governments Using Dual Malware Chains
The threat activity cluster known as SloppyLemming has been attributed to a fresh set of attacks targeting government entities and critical infrastructure operators in Pakistan and Bangladesh. The activity, per Arctic Wolf, took place between January 2025 and January 2026. It involves the use of two distinct attack chains to deliver malware families tracked as […]
Das gehört in Ihr Security-Toolset
Lesen Sie, welche Werkzeuge essenziell sind, um Unternehmen gegen Cybergefahren abzusichern. Gorodenkoff | shutterstock.com Sicherheitsentscheider sind mit einer sich kontinuierlich verändernden Bedrohungslandschaft, einem zunehmend strengeren, regulatorischen Umfeld und immer komplexeren IT-Infrastrukturen konfrontiert. Auch deshalb wird die Qualität ihrer Sicherheits-Toolsets immer wichtiger. Das Problem ist nur, dass die Bandbreite der heute verfügbaren Cybersecurity-Lösungen überwältigend ist. Für […]
24-02417.pdf
24-02417.pdf Anonymous (not verified) Mon, 03/02/2026 – 22:15 Case ID 24-02417 Forum FINRA Document Type Award Claimants Yvan Cao Respondents Edward Jones Neutrals Roger M. Deitz Randy R. Maher Donna Ross Philip Hearing Site Los Angeles, CA Award Document 24-02417.pdf Documentum DocID a558cb89 Award Date Official Mon, 03/02/2026 – 12:00 Related Content Off Claimant Representatives […]
25-00190.pdf
25-00190.pdf Anonymous (not verified) Mon, 03/02/2026 – 22:15 Case ID 25-00190 Forum FINRA Document Type Award Claimants Carson Strategic Management LLC Carson Strategic Derivatives, L.P. Respondents Marex Capital Markets Inc. Neutrals Michael David Broder Ruth M. Moore Francis Vincent Cristiano Hearing Site Denver, CO Award Document 25-00190.pdf Documentum DocID 14ac3718 Award Date Official Mon, 03/02/2026 […]
09-03564.pdf
09-03564.pdf Anonymous (not verified) Mon, 03/02/2026 – 22:15 Case ID 09-03564 Forum FINRA Document Type Award Claimants Mark D. Oge and Linda K. Oge Respondents James Cox Neutrals William John Sommers Jacqueline Mae Goldberg Lynn L. Lightfoot Hearing Site New Orleans, LA Award Document 09-03564.pdf Documentum DocID ac23d2f7 Award Date Official Mon, 03/02/2026 – 12:00 […]
ISC Stormcast For Tuesday, March 3rd, 2026 https://isc.sans.edu/podcastdetail/9832, (Tue, Mar 3rd)
Post Content
Sigma Financial Corporation and Parkland Securities, LLC Comment On Regulatory Notice 26-02
Sigma Financial Corporation and Parkland Securities, LLC Comment On Regulatory Notice 26-02 fnrw-backend Mon, 03/02/2026 – 18:06 Randolph F. Pistor MI US rpistor@axtella.com Sigma Financial Corporation and Parkland Securities, LLC Regulatory Notice 26-02 Core Official Date Mon, 03/02/2026 – 12:00 Comment File Sigma Financial Corporation and Parkland Securities, LLC Comments on Regulatory Notice 26-02.pdf
Catherine Mustico Comment On Regulatory Notice 26-02
Catherine Mustico Comment On Regulatory Notice 26-02 fnrw-backend Mon, 03/02/2026 – 18:02 Catherine Mustico NY US catherine.mustico@fundamentalcc.com Regulatory Notice 26-02 Core Official Date Mon, 03/02/2026 – 12:00 Comment File Comment Letter on Regulatory Notice 26.pdf
Evoke Wellness at Hilliard updates its breach notification
On February 27, external counsel for OCAT, LLC dba Evoke Wellness at Hilliard (“Evoke”), submitted a breach notification to the Maine Attorney General’s Office. The sample notification letter submitted with it claims that the Ohio addiction treatment center learned of an incident on August 7, 2025: On August 7, 2025, OCAT became aware of unauthorized… […]
Data from Insight Hospital and Medical Center Leaked on Dark Web
On or about January 26, 2026, Insight Hospital and Medical Center (“Insight”) in Chicago issued a substitute notice. It states that in September 2025, Insight learned of unusual activity within its network. An investigation subsequently determined that an unauthorized individual accessed the network between August 22, 2025 and September 11, 2025. As of the date… […]
Vulnerability monitoring service secures public-sector websites faster
An automated scanning system has cut the time it takes to fix cybersecurity vulnerabilities across public sector IT systems, reducing median remediation time for general cyber vulnerabilities from 53 days to 32, and slashing DNS-specific average fix times from 50 days to eight. The results come from the UK government’s newly launched vulnerability monitoring service […]
Wisconsin k-12 district hit by weeklong outage
Dysruption Hub reports: A reported “cyber incident” left the Denmark School District in the Village of Denmark, Wisconsin, without internet access for five school days, forcing teachers and students to rely on paper-based workarounds, according to a local news report. But that “cyberincident” appears to be a cyberattack by INC Ransom, or so the gang… […]
Project Compass: first operational results against The Com network
Europol reports: In its first year of operation, Project Compass has delivered concrete operational results against “The Com”, a decentralised extremist network targeting minors and vulnerable individuals both online and offline. Since January 2025, Project Compass has contributed to: 4 victims safeguarded 30 perpetrators arrested 62 identified and partially identified victims 179 identified and partially… […]
Hacktivists claim to have hacked Homeland Security to release ICE contract data
Lorenzo Franceschi-Bicchierai reports: A group of hacktivists calling themselves “Department of Peace” claimed to have hacked the Department of Homeland Security (DHS), leaking allegedly stolen documents online. On Sunday, the nonprofit transparency collective DDoSecrets published data relating to contracts between DHS, Immigration and Customs Enforcement (ICE), and more than 6,000 companies, including defense contractors Anduril, L3Harris, Raytheon,… […]
AI時代のスキルギャップをどう埋めるか ──日本企業が直面する構造的課題と、人材育成の新戦略
日本企業のAI導入はなぜ遅れているのか AI導入が世界的に進む中、日本企業は依然として後れを取っている。ランスタッドが2024年に発表した調査では、AIを職務で活用している人材の割合は15カ国中最下位の19%にとどまった。ランスタッドのデジタルタレントソリューション事業本部、常務執行役員本部長の北上由香氏は、この背景には日本特有のIT構造があると指摘する。 「日本の事業会社では、いまだに自社に所属するエンジニアが二、三割程度しかいません。大規模案件になればなるほど外部ベンダーに丸投げする構造が続いており、結果として自社にノウハウが蓄積されないままです」 一部の大手銀行や外資系企業では内製化の動きが進んでいるものの、全体としては依然としてSIer依存が強い。AI導入においては、技術そのものよりも「自社のビジネスやデータの意味を理解しているか」が重要になるため、この構造は大きな障壁となる。 「ベンダーは技術には詳しいですが、自社のビジネスの文脈やデータの意味までは理解できません。AI時代に求められるのは、技術だけでなくビジネスの中身を理解し、ベンダーと事業部門をつなぐ役割を担える人材です」(北上氏) AI導入が進むにつれ、IT人材に求められる役割は大きく変化している。従来のように技術だけを扱うエンジニアではなく、ビジネス課題を理解し、データを整備し、プロジェクトを推進する「チェンジエージェント」としての役割が求められる。 北上氏は次のように語る。 「AIを活用するには、ビジネス側が持つデータをAIが使える形に整える必要があります。データクレンジングやアノテーションの設計、ビジネスプロセスのどこにAIを組み込むかの判断など、技術とビジネスの両方を理解した人材が不可欠です」 AI導入は単なる技術プロジェクトではなく、ビジネス変革そのものだ。だからこそ、IT部門がビジネスの課題を理解し、事業部門と共に変革を推進する力が求められる。 「AIを入れることでどれだけの価値が生まれるのか、投資対効果をシミュレーションし、ビジネスと一緒に改善ポイントを見つけていく。そうしたプロジェクト推進力を持つ人材が必要です」(北上氏) データ設計・管理能力がAI活用の成否を左右する AI導入において最も重要な要素の一つがデータである。AIは「ゴミを食べればゴミを出す」。つまり、データが整備されていなければ、AIの性能は発揮されない。 北上氏は、データ整備の重要性を繰り返し強調する。 「AIが使えるデータを整えるには、単にデータを集めるだけでは不十分です。データの意味づけを理解し、どのようにクレンジングし、どの形式に変換すればAIが活用できるのかを設計する必要があります」 Excelの列が結合されているだけでAIが読み取れなくなるケースもある。PDFをそのまま読み込ませても、構造化されていなければAIは正しく理解できない。こうした細かな設計を行うのは、ビジネスの文脈を理解したIT人材の役割だ。 AI人材育成において、座学だけでは不十分だ。北上氏は、実際のビジネス課題に基づくプロジェクト経験が不可欠だと語る。 「POC(概念実証)だけを担当させても意味がありません。実際にビジネス価値を生むプロジェクトに参加し、課題の特定から改善策の設計、効果検証までを経験することが重要です」(北上氏) また、AIはIT部門だけのものではない。ビジネス側もAIの基本概念を理解し、共通言語を持つ必要がある。 「IT部門の担当者だけがAIを理解していても意味がありません。AIを使うのはビジネス側です。全社的にAI教育を行い、ビジネス側もAIの可能性を理解し、どこに活用できるかを想像できるようにすることが重要です」(北上氏) ランスタッドの「ワークモニター2025」では、働き手の価値観が大きく変化していることが明らかになった。調査開始以来初めて、ワークライフバランスが報酬を上回り、最も重要なモチベーションとなった。 さらに、働き手の多くが「スキル習得の機会」を重視している。将来を見据えたスキルを身に付ける機会が提供されない場合、41%が離職を検討すると回答している。 「働き手は、自分が価値ある存在であり続けるために、スキル習得の機会を求めています。企業がリスキリングの機会を提供しなければ、優秀な人材ほど離れていくでしょう」(北上氏) 日本はAIスキルの学習機会でも最下位 ランスタッドの「AIと公平性」レポートでは、日本のAI活用度や学習機会が15カ国中最下位であることが示された。AIスキルを持つ人材の需要は急増しているにもかかわらず、学習機会が提供されていない。 特に深刻なのは、男女間や世代間の格差だ。AIスキルを持つ人材の71%が男性であり、女性は29%にとどまる。高齢層はAIスキル習得の機会が若年層の半分以下で、AIに対する懐疑心も強い。 企業は、こうした格差を放置すれば人材不足がさらに深刻化すると認識すべきだ。 AI人材の育成には時間がかかる。だからこそ、採用戦略の多様化も重要だ。 「新卒でコンピューターサイエンスを学んだ人材を年収1000万円クラスで採用する企業も出てきています。外国人人材を積極的に採用する企業とそうでない企業の二極化も進んでいます」(北上氏) 外部採用と内部育成を組み合わせ、必要なスキルを持つ人材を確保する戦略が求められる。 AI導入を成功させる企業には共通点がある。経営層が強くコミットし、CIOとビジネス責任者が連携していること。そして、継続的な学習環境を整え、実務経験を積ませる仕組みがあることだ。 北上氏は次のように語る。 「AI導入は一度きりのプロジェクトではありません。継続的に学び、改善し続ける文化が必要です。経営層が旗を振り、ビジネスとITが二人三脚で進むことが成功の鍵です」 AI導入の本質は「組織文化の変革」にある AI導入が技術的な取り組みだけで完結するという考え方は、すでに時代遅れになりつつある。AIは単なるツールではなく、組織の意思決定、働き方、価値創造のプロセスそのものを変える存在だ。だからこそ、AI導入の本質は「組織文化の変革」にあると言える。 北上氏は、AI導入が進まない企業の多くが「文化的な壁」に直面していると指摘する。 「日本企業では、失敗を避ける文化が根強く残っています。AI導入は試行錯誤が前提で、最初から完璧な成果を求めると前に進めません。まずは小さく始め、成功と失敗を積み重ねながら学習していく姿勢が必要です」 AI導入の初期段階では、必ずしも大きな成果が出るわけではない。むしろ、試行錯誤を通じて組織がAIに慣れ、データの整備が進み、ビジネス側の理解が深まることが重要だ。こうした「学習する組織」への転換こそが、AI時代の競争力を左右する。 さらに北上氏は、AI導入を阻むもう一つの文化的課題として「縦割り構造」を挙げる。 「日本企業は部門間の壁が厚く、データも部門ごとに閉じてしまいがちです。しかしAIは部門横断で価値を生むものです。サイロ化された組織では、AIの力を十分に引き出せません」 AI導入を成功させる企業は、例外なく部門横断のチームを組成し、ITとビジネスが一体となってプロジェクトを推進している。AIは組織の境界を越えて初めて価値を生む。だからこそ、組織文化の変革が不可欠なのだ。 「データの民主化」がAI活用の鍵を握る AIを活用するためには、データが整備されているだけでは不十分だ。データが「誰でも使える状態」になっていることが重要である。これを「データの民主化」と呼ぶ。 データの民主化とは、データが特定の部門や専門家だけのものではなく、ビジネス側の担当者も含め、組織全体がアクセスし、理解し、活用できる状態を指す。 北上氏は、データの民主化が進んでいない企業では、AI導入が必ず停滞すると語る。 「データがブラックボックス化している企業は、AI導入が進みません。データの意味を理解しているのが一部の担当者だけだと、AIをどこに活用できるのか判断できないからです」 データの民主化には、以下の3つの要素が必要だ。 ① データの可視化 誰が見ても理解できる形でデータを整理し、アクセスできるようにする。 ② データリテラシーの向上 ビジネス側の担当者がデータを読み解き、意思決定に活用できるようにする。 ③ データガバナンスの確立 データの品質、データ・セキュリティ、データ・プライバシーを保護すると同時に、データを安全かつ迅速に利活用するための「ルール」と「仕組み」を構築する。 […]
The 5 pillars of the agentic data center
For decades, the data center was a fortress of “if-then” logic. We built scripts to handle surges, set thresholds for heat, and kept an “eyes on glass” rotation of engineers ready to sprint when a P0 alert hit the dashboard. But in 2026, the physics of compute have shifted. The sheer scale of AI workloads […]
IT certifications take a turn for the practical
IT and tech certifications have long been a cornerstone of the industry, giving employers an easy way to identify skilled professionals, and allowing professionals to demonstrate and validate their IT and tech skillsets to employers. Now there’s an increasing amount of in-demand IT certifications earned through hands-on, skills-based criteria that can help tech workers progress […]
The rise of the outcome-orchestrating CIO
Like most IT executives, Kevin Rooney knows exactly how IT initiatives can tick all the boxes and still fall short of business outcome goals. Early in his career, Rooney delivered a technology project on time, on budget, and on spec — and still saw it fail. The electronic signature system his team implemented at an […]
Surgen nuevos puestos de TI para abordar la evaluación de la IA
Están emergiendo nuevos perfiles de TI para ayudar a las organizaciones a evaluar con mayor rigor los resultados de la inteligencia artificial (IA) a medida que pasan de proyectos piloto a despliegues a gran escala. Muchas compañías valoran ya crear o contratar equipos dedicados a la evaluación de la IA. Para algunos expertos, estos nuevos […]
The transplantable skeleton: Why agentic AI infrastructure must survive corporate surgery
Gartner predicts that more than 40% of agentic AI projects will be canceled by 2027. The debate has centered on escalating costs, unclear business value and inadequate risk controls. But having led IT infrastructure through major divestitures and cross-border integrations over the past two decades, I see a more fundamental problem: most agentic infrastructure is […]
電通デジタルCAIOに聞く、テクノロジーとクリエイティブの融合が切り開くAI時代のマーケティング
東大松尾研からビジネスの世界へ──AI研究者が経営側に回った理由 ──これまでの経歴についてお教えいただけますか。 電通グループに入社したのは2018年で、それ以前は独立系ベンチャーのCEOを務めていました。大学院では東京大学の松尾豊先生の研究室に所属し、AI研究に取り組んでいましたが、博士号を取得する前に退学し、ビジネスの世界に進むことを決意しました。 研究室時代は、ABテストツールの開発やクリエイティブ最適化のアルバイトをしており、その経験を通じて「これは事業として成立する」と感じました。そこでアルバイト先に正社員として入社し、1年後には独立・事業化の流れの中で自らCEOに立候補することで経営者としてのキャリアが始まりました。 当初はABテストツールの開発を手がけていましたが、やがて「表層的なツールよりも、その裏側のAI・機械学習エンジンの開発に注力すべきではないか」と考えました。電通がその技術を高く評価し支援してくれたこともあり、「このまま上場も視野に入るのでは」と考えた時期もありました。 しかし最終的には、「電通グループの営業基盤の中で事業を拡大した方がスピードも影響力も大きい」と判断し、2018年に社名の「データアーティスト」を残したまま電通グループに参画しました。 その後5年間、AI事業を着実に拡大し、2023年には電通デジタルとデータアーティストが統合。私はそのタイミングで電通デジタルの執行役員に就任しました。 統合から約2年後、AIブームの到来により社内で「誰が責任者を担うべきか」という議論が起こりました。その際に指名を受け、現在はCAIO(Chief AI Officer)としてAI戦略をリードしています。 「負けられない」電通の覚悟──AIシフトを導いた信念とは ──これまでのキャリアにおける最も大きな功績をお教えください。 2023年4月に電通デジタルへジョインしたことが、結果的に電通グループ全体に大きなシナジーをもたらしたと感じています。 もともと私はデータアーティストという会社でAI事業を展開していましたが、商流の拡大に課題を抱えていました。一方、電通デジタルではAIソリューションの強化を進めており、2022年に「一緒になった方が良いのではないか」という話が持ち上がりました。その提案をすぐに受け入れたのは正解でした。なぜなら、まさにその直後、2022年11月にChatGPTが登場したからです。 生成AI時代の幕開けに合わせてAI事業を全社的に強化できたこと、そしてその戦略を全面的に任せていただけたことが大きな転機でした。正式入社は2023年4月ですが、1月から役員会議に参加し、最初の経営会議でこう訴えました。 「必ず次はAIマーケティングの時代が来ます。検索や広告に加え、AIとの会話を通じて商品を選ぶ時代になります。今から準備しなければ手遅れになります」 このメッセージを一貫して発信し続け、今日まで粘り強く訴えてきたことが良かったと思っています。 最も重要なタイミングで電通デジタルに参画し、今まさに大きく成長しているさまざまな領域で、AIオプティマイゼーションやAI広告などに取り組んでいますが、「絶対にやらなければまずい」と諦めずに言い続けたことが、実績なのではないかと考えています。 広告はマスからデジタル、そしてソーシャルへと進化し、「自分ごと化」が進んできました。AIの時代にはさらに一歩進み、双方向のコミュニケーションが可能になります。広告と対話しながら購買行動が起こる世界が、確実に訪れると信じていたのです。 生成AIをリリースするプラットフォーマーが、この領域で活用しないはずがないですから、私たちも取り組まない理由はありません。 このように強い信念のもと、全社を巻き込んで推進している背景には、マスメディアに関しては、電通グループがビジネスにおいて大きな成功を収めたものの、デジタルメディアに関しては、その成功ゆえに他のデジタル専業代理店と比較して着手が少し遅れたという事実があると思います。 その中で「次のメディアでは絶対に負けるわけにはいかない」という電通グループ全体の危機感と「次の波には遅れずに挑むべき」という共通認識が生まれました。 推進にあたっては対話型マーケティングへの先行投資も比較的少なく、基礎を固めた上で資産を活用して拡大できる環境が整っていたことも追い風でした。「AIの可能性を信じ抜く」という確信、そして「次こそ必ず勝つ」という企業文化の両輪があったからこそ、電通のAIシフトは力強く前進できたのだと思います。 ハッカソンでの衝撃──若手クリエイターに「完敗」した経験からの学び ──大きな実績を上げるまでにはどのようなチャレンジがあり、それは現職でどう生かされていますか。 正直に言えば、これまでのキャリアは日々がチャレンジの連続で、「特定の大きな賭け」というよりも、継続的な試行錯誤の積み重ねでした。その中でも一番の決断は、「電通グループに入る」と決めたことだと思います。 統合前のデータアーティスト時代には、「上場を目指すべきではないか」という声もありました。しかし、私はAIを開発するだけではなく、それを社会に確実に届ける力こそが重要だと考えていました。AIの世界では「どう作るか」よりも「何を作るか」が決定的に重要になる。その想像力を最も持っているのは、クリエイティブの現場だと感じていたのです。 そう考えるきっかけになったのが、前職でCEOを務めていた時に参加したハッカソンでの経験でした。電通の若手クリエイターのチームに、私は完膚なきまでに打ちのめされたのです。 自分は技術の延長線上で「これができるから、これとこれを組み合わせよう」という発想しかできない一方で、彼は「社会が本当に必要としているものは何か」という観点から発想を始めていました。発想の出発点がまったく違っていることに気付いた瞬間、「こういう人たちと組めば、本当に大きなことができる」と確信しました。 この体験を経て、テクノロジーとクリエイティビティを融合させることを自分の使命にしようと決めました。当時の電通グループは、どちらかといえばクリエイティビティに軸足を置いていましたが、私はその創造力にテクノロジーという武器を掛け合わせることで、まったく新しい価値を生み出せると感じました。 ハッカソンでの経験は、次の方向性を教えてくれた原点です。クリエイティブとテクノロジーの融合こそが、これからの社会を動かす力になる——そう確信して挑み続けてきたことが、現在のAI戦略にも生きています。 「視座を上げるだけでは足りない」──現場を見抜く力が経営を支える ──仕事をする上で心に残っているアドバイスはありますか。 東京大学・松尾研究室に在籍していた頃、当時MITで経営学を教えていた外科医の先生から言われた「視座を高く持て。そして、視座を上げたら視力も良くしなければならない」という言葉が、今でも忘れられません。 高い視点で物事を俯瞰するだけなら誰にでもできる。重要なのは、視座を上げたうえで現場にも立ち、実態を正確に把握し、最適な方法を具体的に提案できることだ——。その教えは、今も仕事の根底にあります。 もう一つ印象に残っているのが、その先生とのやり取りです。「大学どこだ?」と聞かれ、「東京大学です」と答えると、「それはカレッジかい?」と返されました。「University of Tokyoです」と言うと、「ならば自分の専門以外のことも理解しなさい。Universityとは“統合された知”を学ぶ場所なのだから」と諭されたのです。 当時、私は博士課程で医療AIを研究していましたが、先生の言葉は「技術だけを追っていては人を幸せにできない」という意味でした。疫学、歴史、人の感情など——あらゆる文脈をつなげて理解しなければ本質にはたどり着けない。その考えが今も自分の中に根づいています。 この教えは、電通グループのクリエイターに「完敗」した経験とも重なりました。テクノロジーの知識だけでは太刀打ちできず、「人を動かす力」はクリエイティブの中にあると痛感したのです。 先生が伝えたかったのは、「高い視点で世界を見渡しながら、現場の細部まで見通せ」ということでした。自分では視座を高めたつもりでも、実際には専門領域の延長でしか物事を見ていないことがある。だからこそ「University出身者」を名乗るなら、「Universe全体」に目を配れ、という言葉が胸に残っています。 私は今でも若手にこの話を伝え、「視座を上げるだけでなく、視力を鍛えよう」と言い続けています。 社長を経験したことも、この言葉の意味をより深く実感するきっかけになりました。技術者としてだけでなく、営業、経理、法務まで自分で担わなければ会社は成り立たない。売上が立っても入金が遅れれば資金繰りが破綻する——そんな現実に直面し、「広い視野と高い視座を同時に持つ」ことの大切さを身をもって学びました。 アジアの循環を生む「橋渡し役」としてのCAIOの使命 ──CAIOとして、どのようなところにやりがいを感じますか。 「世界をつないでいる」という実感を強く持っています。AI技術においては、今後、国産でグローバルにも通用するLLM(大規模言語モデル)や基盤モデルの開発を進める必要がありますが、現時点では主に海外プラットフォーマーが提供するAIを活用しています。 だからこそ、米国のプラットフォーマーとの関係づくりが極めて重要です。ただ「使わせてください」という立場ではなく、「電通グループがアジアにおける価値創出をどう支援できるか」を提示し、双方にとってプラスとなる関係を築くことが大切だと考えています。電通はアジアに本社を置く世界有数の大型代理店であり、その立場を活かしてアジア全体に良い循環を生み出すことが使命だと思っています。 アジアは今、世界で最も成長している市場です。香港を中心に東京までを半径として円を描けば、その中に世界人口の約半数が含まれ、今後も増え続ける見込みです。生成AIの登場により、生産は必ずしも人口に比例しなくなりましたが、消費は依然として人口規模に大きく左右されます。つまり、人口の多いアジアは間違いなく巨大な市場であり、ここにおける存在感を高めることは、電通グループの競争力に直結します。 そのため、日系企業がアジアで事業を拡大し、アジア域内でクライアント同士の経済循環が生まれるよう支援することが重要です。私たちがこの循環を活性化できてこそ、米国のプラットフォーマーに対して「この地域で技術を活用させてください」と胸を張って提案できる。これは単なる戦略ではなく、原理的に取り組むべきテーマだと考えています。 そして何より、世界がつながり、自分たちの手でアジアという地域を活性化させていく実感を持ちながら働けることに、大きな喜びを感じています。 また、私はdentsu APACのプロダクトコミッティのメンバーとして、電通デジタルが開発したソリューションを日本国内だけでなく、アジア全域へと広げる役割も担っています。CAIOとして、アジア企業の競争力強化に貢献し、地域全体に新しい経済の循環を生み出す——その橋渡し役であることに、大きなやりがいを感じています。 AI時代に欠かせない「いつ、どこで何を使うか」を見極める力 ──CAIOに欠かせないリーダーシップとはどのようなものでしょうか。 少し前であれば、「みんなでAIを使おう」と旗を振る推進力がCAIOに求められていたと思います。しかし今や、AIを活用すること自体は命題です。その前提のもとで重要なのは、「AIをどう使うか」を正確に判断できる力です。 […]
SAP reshuffles executive responsibilities as it goes ‘all-in on AI’
SAP is combining its Customer Success and Customer Services and Delivery organizations into a single Customer Value group, headed by Thomas Saueressig, its member of the executive board of SAP for customer services and delivery, who now becomes chief customer officer. Saueressig will take charge of everything from sales onwards in the customer journey, the […]
New Chrome Vulnerability Let Malicious Extensions Escalate Privileges via Gemini Panel
Cybersecurity researchers have disclosed details of a now-patched security flaw in Google Chrome that could have permitted attackers to escalate privileges and gain access to local files on the system. The vulnerability, tracked as CVE-2026-0628 (CVSS score: 8.8), has been described as a case of insufficient policy enforcement in the WebView tag. It was patched […]
Google Develops Merkle Tree Certificates to Enable Quantum-Resistant HTTPS in Chrome
Google has announced a new program in its Chrome browser to ensure that HTTPS certificates are secure against the future risk posed by quantum computers. “To ensure the scalability and efficiency of the ecosystem, Chrome has no immediate plan to add traditional X.509 certificates containing post-quantum cryptography to the Chrome Root Store,” the Chrome Secure […]
⚡ Weekly Recap: SD-WAN 0-Day, Critical CVEs, Telegram Probe, Smart TV Proxy SDK and More
This week is not about one big event. It shows where things are moving. Network systems, cloud setups, AI tools, and common apps are all being pushed in different ways. Small gaps in access control, exposed keys, and normal features are being used as entry points. The pattern becomes clear only when you see everything […]
Shutdown Stalls Compliance Plans for Cyber Breach Reporting Rule
Cassandre Coyer reports: A partial government shutdown threatens to further derail a key federal cybersecurity agency’s incident reporting rule—and delay answers that companies need to comply. The Department of Homeland Security shutdown, now entering its third week, may push back the finish line for a Biden-era rule that would create stringent disclosure requirements for critical infrastructure entities after… […]
CISA Releases New Guidance on Assembling Multi-Disciplinary Insider Threat Management Teams
Ashley Nyquist, Ashden Fein, Caleb Skeath, John Webster Leslie, Matthew Harden, Catherine McGrath, and Samar Amidi of Covington and Burling write: On January 28, 2026, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) published a new resource on Assembling a Multi-Disciplinary Insider Threat Management Team.The guidance is intended to assist critical infrastructure stakeholders, which includes private… […]
How to Protect Your SaaS from Bot Attacks with SafeLine WAF
Most SaaS teams remember the day their user traffic started growing fast. Few notice the day bots started targeting them. On paper, everything looks great: more sign-ups, more sessions, more API calls. But in reality, something feels off: Sign-ups increase, but users aren’t activating. Server costs rise faster than revenue. Logs are filled with repeated […]
Quick Howto: ZIP Files Inside RTF, (Mon, Mar 2nd)
In diary entry “Quick Howto: Extract URLs from RTF files” I mentioned ZIP files.
Wireshark 4.6.4 Released, (Mon, Mar 2nd)
Wireshark release 4.6.4 fixes 3 vulnerabilities and 15 bugs.
Hackers Weaponize Claude Code in Mexican Government Cyberattack
The AI was abused to write exploits, create tools, and automatically exfiltrate over 150GB of data. The post Hackers Weaponize Claude Code in Mexican Government Cyberattack appeared first on SecurityWeek.
Innovation without exposure: A CISO’s secure-by-design framework for business outcomes
The brief for security leaders has changed. It used to be enough to reduce risk and keep the lights on. Now you are expected to enable AI adoption, connect more “things” to the network, modernize cloud at pace and still demonstrably reduce exposure, often without the comfort of ever-expanding budgets. In that environment, innovation is […]
APT28 Tied to CVE-2026-21513 MSHTML 0-Day Exploited Before Feb 2026 Patch Tuesday
A recently disclosed security flaw patched by Microsoft may have been exploited by the Russia-linked state-sponsored threat actor known as APT28, according to new findings from Akamai. The vulnerability in question is CVE-2026-21513 (CVSS score: 8.8), a high-severity security feature bypass affecting the MSHTML Framework. “Protection mechanism failure in MSHTML Framework allows an unauthorized
A scorecard for cyber and risk culture
Have you once watched a leadership team clap for their “security culture month” like they’d landed a rover? Posters everywhere. Quizzes. A prize draw. Someone baked cupcakes with padlocks iced on top. Cute. Two weeks later, a product manager asked an engineer to “just share the admin credentials for an hour” because the vendor demo […]
North Korean Hackers Publish 26 npm Packages Hiding Pastebin C2 for Cross-Platform RAT
Cybersecurity researchers have disclosed a new iteration of the ongoing Contagious Interview campaign, where the North Korean threat actors have published a set of 26 malicious packages to the npm registry. The packages masquerade as developer tools, but contain functionality to extract the actual command-and-control (C2) by using seemingly harmless Pastebin content as a dead […]
Hacker erpressen weniger Lösegeld
immer mehr betroffene Unternehmen und Organisationen folgen dem Rat, kein Lösegeld zu zahlen . fadfebrian – shutterstock.com Laut einem neuen Bericht des Analyseunternehmens Chainalysis konnten Hacker im Jahr 2025 im Zusammenhang mit Ransomware-Angriffen insgesamt 820 Millionen Dollar erbeuten. Auch wenn die Summe hoch ist, im Vergleich zum Vorjahr ist sie damit um 28 Prozent gesunken. […]
How CISOs can build a resilient workforce
With ongoing skills gaps, AI reshaping roles and workforce stress as standing concerns for many CISOs, ensuring the resilience of the workforce has become top of mind. But due to budget constraints, return to office mandates and teams struggling to keep up with the threat landscape, CISOs are faced with a real challenge. Stephen Ford, […]
Im Fokus: RZ-Modernisierung
Im Fokus: RZ-Modernisierung
Kubernetes Security: Wie Sie Ihre Cluster (besser) absichern
Anatoliy Eremin | shutterstock.com Kubernetes hat sich unter Enterprise-Softwareentwicklern zu einem durchschlagenden Erfolg entwickelt. Das veranlasst kriminelle Hacker zunehmend dazu, entsprechende Installationen mit speziell entwickelten Exploits anzugreifen. Dabei werden die Bedrohungsakteure immer besser darin, ihre Schadsoftware zu verstecken, (triviale) Sicherheitskontrollen zu umgehen und sich lateral durch Netzwerke zu bewegen, um weiteren Schaden anzurichten. Wie die […]
ISC Stormcast For Monday, March 2nd, 2026 https://isc.sans.edu/podcastdetail/9830, (Mon, Mar 2nd)
Post Content
South Korean Police Lose Seized Crypto By Posting Password Online
Kyle Torpey reports: South Korea’s National Tax Service seized crypto assets during recent enforcement actions against 124 high-value tax evaders, but now, a large chunk of that crypto cash has been lost. The operation originally resulted in the confiscation of crypto holdings worth about 8.1 billion won, or roughly $5.6 million. However, officials later issued… […]
Canadian Tire Data Breach Impacts 38 Million Accounts
Names, addresses, email addresses, phone numbers, and encrypted passwords were compromised in the attack. The post Canadian Tire Data Breach Impacts 38 Million Accounts appeared first on SecurityWeek.