DarkReading.com reported that “Fake DeepSeek ads in Google search results are delivering infostealing malware to unsuspecting users.”  The March 27, 2025 article entitled “Fake DeepSeek Ads Spread Malware to Google Users” (https://www.darkreading.com/vulnerabilities-threats/fake-deepseek-ads-spread-malware-google) included these comments:

DeepSeek, a Chinese generative AI (GenAI) company, became a household name earlier this

Continue Reading Watch out for malware for Google from fake DeepSeek!

CSOonline.com reported “Since modern enterprises run on software, poor vulnerability management represents a serious business risk. So, how are CISOs modernizing their programs to improve risk mitigation?” The April 2, 2025 article entitled “10 best practices for vulnerability management according to CISOs” (https://www.csoonline.com/article/3853759/10-best-practices-for-vulnerability-management-according-to-cisos.html) included these comments about #7.

Continue Reading Good advice from CISOs about 10 best practices for vulnerability management includes strict Service Level Agreements!

CSOonline.com reported that “A threat actor has reportedly breached Oracle Cloud infrastructure, exfiltrating six million sensitive authentication records and potentially endangering more than 140,000 enterprise customers. The attacker is now demanding ransom payments while actively marketing the stolen data on underground forums,…”  The March 24, 2025 article entitled ” Oracle

Continue Reading 140,000 Oracle Cloud enterprise customers at risk because of ransomware demand!

SCWorld.com reported that “Almost all businesses need cybersecurity insurance to manage their digital risk, but not all realize that there are ways to reduce their insurance premiums by implementing certain protections.” The March 26, 2025 article entitled “How two organizations beat the cyber insurance maze” (https://tinyurl.com/mu2wec54) included these

Continue Reading How MFA, EDR, and XDR can reduce the cost of Cybersecurity insurance!

SCWorld.com reported that “News of the troubled DNA testing services company 23andMe filing for Chapter 11 bankruptcy protection set off a spirited debate in the security community this week as experts expressed concern over the fate of the DNA data the company collected for the past two decades.”  The March

Continue Reading 23andMe bankruptcy threatens privacy of millions around the world!

Darkreading.com reported that “Research finds that organizations are granting root access by default and making other big missteps, including a Jenga-like building concept, in deploying and configuring AI services in cloud deployments.” The March 18, 2025 article entitled “AI Cloud Adoption Is Rife With Cyber Mistakes” (https://www.darkreading.com/cloud-security/ai-cloud-adoption-cyber-mistakes) included

Continue Reading AI in the Cloud may lead to Cyberattacks!

Darkreading.com reported that “Attackers are actively exploiting a flaw in ChatGPT that allows them to redirect users to malicious URLs from within the artificial intelligence (AI) chatbot application, with more than 10,000 exploit attempts in a week coming from a single malicious IP address.” The March 18, 2025 article entitled

Continue Reading ChatGPT bug puts many users at Risk!

BankInfoSecurity.com reported that “Buying Wiz for $32 billion reduces Google’s dependence on external vendors for multi-cloud security, mirroring Microsoft’s approach with Defender for Cloud,…”  The March 19, 2025 article entitled ” How Google’s $32B Wiz Acquisition Will Reshape Cloud Defense” (https://tinyurl.com/4z649faf) included these comments from Gartner’s Charlie Winckless:

Continue Reading $32B investment in Wiz will change Google’s Multi-Cloud!

The New York Times reported “The giant chipmaker has transformed its annual developer conference from an academic event into a who’s who gathering for the future of artificial intelligence.”  The March 18, 2025 article entitled ” Nvidia Is Hosting the Super Bowl of A.I.” (https://www.nytimes.com/2025/03/18/technology/nvidia-gtc-conference-ai.html) included these comments:

Continue Reading Chip maker Nvidia is hosting 25,000 at the “Super Bowl of AI!”

DarkReading.com reported that “Expired domains can pose a significant cyber-risk for organizations. Vigilant domain management is the first step for sustainable mitigation.” The March 10, 2025 article entitled “Why You Should Track Down Expired Domain Names” (https://www.darkreading.com/cyber-risk/why-you-should-track-down-expired-domain-names) included these comments:

Cybercriminals are always looking for new ways to

Continue Reading Are you vigilant about domain name management?