Researchers
-
Blog
Oracle breach claims spark war of words with security researchers
A war of words has erupted between Oracle and cybersecurity researchers following claims the company suffered a security breach. In mid-March, a threat actor by the name ‘rose87168’ published six million records, claiming the data was stolen from Oracle’s Cloud federated Single Sign-On (SSO) login service and demanding payment from affected customers. Posted to the dark web, the sample database…
Read More » -
Blog
‘Frontier models are still unable to solve the majority of tasks’: The death of the software engineer may not happen as soon as you think – OpenAI researchers found AI models still lag behind humans on coding tasks
AI might not replace software engineers just yet as new research from OpenAI reveals ongoing weaknesses in the technology. Having created a benchmark dubbed ‘SWE-Lancer’ to evaluate AI’s effectiveness at completing software engineering and managerial tasks, researchers concluded that the technology is lacking. “We evaluate model performance and find that frontier models are still unable to solve the majority of…
Read More » -
Blog
Nakivo backup flaw still present on some systems months after firms’ ‘silent patch’, researchers claim
Over 200 vulnerable internet-facing Nakivo backup and replication instances have been identified months after the firm silently patched a security flaw without publicly disclosing the issue. Security researchers at watchTowr recently published a report detailing their discovery of an arbitrary file read vulnerability in Nakivo’s central management solution. The report noted that, if exploited, the flaw could enable an attacker…
Read More » -
Blog
The new ransomware groups worrying security researchers in 2025
Ransomware gangs are being arrested and taken down, but the threat from the data locking malware doesn’t go away. In 2024, a number of completely new ransomware gangs entered the fray. Take, for example, up and coming group Termite, which claimed responsibility for the Blue Yonder cyber-attack, or the AI-assisted Funksec group. The last year has seen fragmentation in the…
Read More » -
Blog
Virginia Tech researchers raise red flags about mixed-reality security – Computerworld
“There are only a few collaboration platforms in use today for enterprise and defense, and a good chunk of the potentially vulnerable collaboration tools most likely don’t connect to the open internet,” Sag said. “That’s why I think a lot of the implementations that the government wants to use — or any kind of secure applications like enterprises [rely on] —…
Read More » -
Blog
There’s a new ransomware player on the scene: the ‘BlackLock’ group has become one of the most prolific operators in the cyber crime industry – and researchers warn it’s only going to get worse for potential victims
The BlackLock ransomware group has become one of the most prolific operators in the Ransomware as a Service (RaaS) ecosystem, with experts warning it could accelerate its growth over the next year. Also known as El Dorado, BlackLock was ranked as the the seventh most active ransomware group based on the number of posts on its data leak site by…
Read More » -
Blog
Researchers trained an OpenAI rival in half an hour for less than $50
To do this, researchers at Stanford and the University of Washington used a method known as distillation — which allows smaller models to draw from the answers produced by larger ones — to refine s1 using answers from Google’s AI reasoning model, Gemini 2.0 Flash Thinking Experimental. Google’s terms of service note that you can’t use Gemini’s API to “develop…
Read More » -
Blog
Researchers Just Found Photo-Scanning Malware on Apple’s App Store for the First Time
Not all apps are safe. It’s why I always recommend downloading apps from official app stores, like the iOS App Store and Google Play Store, rather than a random website: Apple and Google both have policies to scan for malware and stop them before reaching app stores. But neither company is perfect, and apps infected with malware end up on…
Read More » -
Blog
Almost half of US organizations still using Kaspersky, researchers claim
Almost half (40%) of US organizations are still using Kaspersky software despite a ban enacted in the summer, new research from Bitsight has revealed. Though the ban went into effect months ago, active use of Kaspersky products remains high, with more than 1,000 US organizations observed to be connecting to Kaspersky servers post-ban. Bitsight said only 58% of US organizations…
Read More » -
Blog
Researchers claim an AMD security flaw could let hackers access encrypted data
Researchers have exposed an issue with the memory implementation on AMD’s data center chips that could threaten the integrity of data, but the chipmaker has hit back at the claims. In a paper due to be presented at IEEE in 2025, researchers from University of Lübeck, KU Leven, and University of Birmingham highlighted a potential weakness in AMD’s secure encrypted…
Read More »