Darkreading.com reported that “In the wake of AI’s explosive growth, security and risk are no longer polite footnotes at the end of a board meeting. Suddenly, everyone from the CEO to the most junior product manager is asking, “What’s our plan for AI risk?”” The October 27, 2025
Continue Reading AI has moved CISOs and Cybersecurity to Center Stage!
DarkReading.com reported that “AI search tools like Perplexity, ChatGPT, and OpenAI’s Atlas browser offer powerful capabilities for research and information gathering but are also dangerously susceptible to low-effort content manipulation attacks. It turns out websites that can detect when an AI crawler visits can serve completely different content than what
Continue Reading AI crawlers are easy to fool!
Computerworld.com reported that “Mirroring AI in general, the newest OpenAI service has the potential to deliver massive productivity gains. But the potential for errors and data leakage are equally great. OpenAI on Thursday rolled out its latest offering, a comprehensive data collection and analysis capability called “company knowledge”. And although
Continue Reading Watch out OpenAI wants all of your internal data!
DarkReading.com reported that “Attackers are pouncing on financially strapped US government agencies and furloughed employees. And the effects of this period might be felt for a long time hereafter.” The October 24, 2025 article entitled “Shutdown Sparks 85% Increase in US Government Cyberattacks” (https://www.darkreading.com/cybersecurity-operations/shutdown-increase-us-government-cyberattacks) included these comments:
The Media Trust found that the most targeted agency during this shutdown, by far, has been the Department of Veterans Affairs (VA). In second place — again, some distance from third — is the Department of Justice (DoJ). The chart below shows the volume of attacks that reached each agency in the first week of October.
Though the VA and DoJ might sound like an arbitrary duo, there may well be some hidden logic underneath.
When a government shutdown happens, employees fall into two buckets. Many are furloughed — sent home and barred from even checking their government email inbox. Some are deemed “essential,” though, and they have to keep working.
Essential workers are just as unpaid, stressed, and vulnerable, yet they still have to walk into their workplace everyday. Miller points out how, especially in these cases, “you’re going to have morale issues. And then with this minimal staffing, you’re creating a higher burden on the personnel who are there having to do probably additional work,” meaning cyber threats are more likely to slip through.
Because so many of them perform crucial medical and benefits work, 96.8% of employees at the VA are still going into work Monday through Friday. Similarly, 90% of DoJ employees are considered essential.
The White House has advised that, during the shutdown, “generally, agency cybersecurity functions are excepted as these functions are necessary to avoid imminent threat to Federal property,” but agencies have discretion in how they interpret this guideline. And with two-thirds of the Cybersecurity and Infrastructure Security Agency (CISA) sitting at home, agencies already lack the support they’re used to at a time when they’re at greatest risk.
Are you surprised?
First published at https://www.vogelitlaw.com/blog/85-increase-in-us-government-cyberattacks-blamed-on-shutdown
Continue Reading 85% increase in US Government Cyberattacks blamed on shutdown!
Computerworld.com reported that “The genAI browser from the company that created ChatGPT brings with it security concerns that could hinder widespread corporate adoption.” The October 24, 2024 article entitled “Enterprises should not install OpenAI’s new Atlas browser, analysts warn” (https://www.computerworld.com/article/4078115/enterprises-should-not-install-openais-new-atlas-browser-analysts-warn.html) included these comments:
Atlas can help automate online browsing based on user preferences. The browser has ChatGPT as its landing page, where the technology can take control of the browser to run web-based tasks.
If a user is viewing a recipe and wants to make it, for example, the browser will automatically go to sites like Instacart and place an order for the ingredients. Or the agent chatbot — which sits in a side panel — can make changes to documents in Google Docs based on user requests. (Google Docs already has a prompting feature to automate document changes.)
Critics were quick to point out that Atlas is vulnerable to prompt hijacking, where malicious prompts embedded in webpages could lead to data theft.
What do you think?
First published at https://www.vogelitlaw.com/blog/think-twice-before-installing-openais-new-atlas-browser
Continue Reading Think twice before installing OpenAI’s new Atlas browser!Think twice before installing OpenAI’s new Atlas browser!
CSOonline.com reported that “Enterprises have long relied on firewalls, routers, VPN servers, and email gateways to protect their networks from attacks. Increasingly, however, these network edge devices are becoming security liabilities themselves.” The October 20, 2025 entitled “Network security devices endanger orgs with ’90s era flaws” (https://www.csoonline.com/article/4074945/network-security-devices-endanger-orgs-with-90s-era-flaws.html) included
Continue Reading Can you still defend your enterprise network with 90’s technology?
The BBC.com reported that “Amazon Web Services (AWS) had a bad day.” The October 21, 2025 article entitled “What caused the AWS outage – and why did it make the internet fall apart?” (https://www.bbc.com/news/articles/cev1en9077ro) included these comments:
That’s how the boss of another big US tech firm Cloudflare
Continue Reading AWS has demonstrated how vulnerable the Internet is!
Computerworld.com reported that “Microsoft’s Copilot will soon be able to work autonomously on local files in Windows, with Copilot Actions, an “experimental” feature that can perform tasks such as sending emails, updating documents and organizing files on its own.” The October 16, 2025 article entitled “The newest Windows Copilot agent
Continue Reading Do you want Windows Copilot to send emails for you?
DarkReading.com reported that “Agentic AI deployments are becoming an imperative for organizations of all sizes looking to boost productivity and streamline processes, especially as major platforms like Microsoft and Salesforce build agents into their offerings. In the rush to deploy and use these helpers, it’s important that businesses understand that
Continue Reading You need to take responsibility for security when using AI Agents!
Computerworld.com reported that “The Microsoft CEO is handing over sales and marketing duties to another exec so Nadella himself can smartly focus on AI and the company’s future.” The October 15, 2025 article entitled ” Satya Nadella is running scared. That’s a good thing” (https://www.computerworld.com/article/4072283/satya-nadella-is-running-scared-thats-a-good-thing.html) included these comments:
Continue Reading Microsoft AI seems to be going in the right direction!