SEARCH
Archive
The Impacts of the SEC Cyber Rules on Incident Disclosure, CISO Liability
CISOs sound off on the long-term impacts of the SEC's cyber rules, with the regulations in effect for months now.
Zero Day Exploit Reuse and A Busy Week for Iranian APTs
The focus was on Iranian APTs this week, both from private threat intelligence teams and CISA, exposing new operations from UNC757 and other groups targeting government, higher education, and private industry. We also check in on a new report from Google's Threat Analysis Group on APTs using the same exploits for zero days that were developed by private commercial surveillance vendors NSO Group and Intellexa.
What We Learned at Black Hat 2024
Dennis Fisher and Lindsey O'Donnell-Welch reflect on their week in Las Vegas at Black Hat and discuss the talks they liked, including Moxie Marlinspike's keynote and the Google Project Zero retrospective, and the other topics they found interesting, including vulnerability exploitation versus social engineering and the AI ecosystem.
The Growing Threat of Data Feudalism in AI Models
AI and machine learning security expert Gary McGraw joins Dennis Fisher to discuss the concept of data feudalism in LLM foundation models, what the security implications of it are, and whether narrowly focused models may help address these issues.
Black Hat USA 2024 Preview: AI, AI, and More AI
Decipher editors Dennis Fisher and Lindsey O'Donnell-Welch are joined by Brian Donohue to dissect the Black Hat talks they're looking forward to.