Risk
-
Blog
Slopsquatting & Vibe Coding Can Increase Risk of AI-Powered Attacks
Security researchers and developers are raising alarms over “slopsquatting,” a new form of supply chain attack that leverages AI-generated misinformation commonly known as hallucinations. As developers increasingly rely on coding tools like GitHub Copilot, ChatGPT, and DeepSeek, attackers are exploiting AI’s tendency to invent software packages, tricking users into downloading malicious content. What is slopsquatting? The term slopsquatting was originally…
Read More » -
Blog
AI-hallucinated code dependencies become new supply chain risk
A new class of supply chain attacks named ‘slopsquatting’ has emerged from the increased use of generative AI tools for coding and the model’s tendency to “hallucinate” non-existent package names. The term slopsquatting was coined by security researcher Seth Larson as a spin on typosquatting, an attack method that tricks developers into installing malicious packages by using names that closely…
Read More » -
Blog
Poor cybersecurity practices cost SMBs £3.4 billion a year – and 28% risk going out of business after a single attack
Small businesses across the UK are losing £3.4 billion a year thanks to inadequate cybersecurity measures, according to new research. Cyber attacks against SMBs have surged in recent years, analysis from Vodafone Business shows, with more than a third experiencing a cyber incident last year alone. Meanwhile, 28% had between one and five attempted attacks, and 6% were targeted up…
Read More » -
Blog
‘Employers must look at the bigger picture’: Brits aren’t keen on going back to the office, and enterprises pushing for it risk a talent exodus – 48% of workers would quit if faced with a full RTO mandate as hybrid work remains popular
Faced with a full-time return to office (RTO) mandate, some employees might shell out for a season ticket, expand their office-casual wardrobe, and otherwise accept their fate — but half of professionals surveyed would consider simply quitting. That’s according to a survey about the ongoing debate over RTO mandates and hybrid working, with recruitment firm Hays revealing that 48% respondents…
Read More » -
Blog
AI is putting your cloud workloads at risk
AI cloud workloads are far riskier than their traditional counterparts, according to research from Tenable. Almost three-quarters (72%) of cloud workloads with an AI package installed contain a critical vulnerability, Tenable found, compared to only 59% of cloud workloads without one. A key factor behind the higher incidence of critical vulnerabilities is that many AI workloads run on Unix-based systems…
Read More » -
Blog
Volkswagen Atlas, Atlas Cross Sport SUVs Recalled for Fire Risk
Vehicles Recalled• Volkswagen Atlas SUVs manufactured between June 16, 2023, and Dec. 12, 2024• Volkswagen Atlas Cross Sport SUVs manufactured between June 16, 2023, and Dec. 9, 2024 The problem: If the engine cover is not properly reinstalled after a vehicle service, it could come into contact with a hot surface such as the exhaust or turbocharger. This could increase…
Read More » -
Blog
Billions of Devices at Risk of Hacking Due to Hidden Commands
Tarlogic team giving their presentation during RootedCON. Image: Tarlogic Billions of devices worldwide rely on a widely used Bluetooth-Wi-Fi chip that contains undocumented “hidden commands.” Researchers warn these commands could be exploited to manipulate memory, impersonate devices, and bypass security controls. ESP32, manufactured by a Chinese company called Espressif, is a microcontroller that enables Bluetooth and Wi-Fi connections in numerous…
Read More » -
Blog
Volkswagen ID4 and Audi Q4 E-Tron Recalled for Rollaway Risk
Vehicles recalled: 2021-2023 Volkswagen ID.4 EVs and 2022-2023 Audi Q4 E-Tron and Q4 E-Tron Sportback EVs. The problem: A software issue may prevent the instrument cluster from showing which gear the vehicle is in. This problem means the vehicles do not comply with Federal Motor Vehicle Safety Standard (FMVSS) 102, “Transmission Shift Lever Sequence, Starter Interlock, and Transmission Braking Effect.”…
Read More » -
Blog
Download the AI Risk Management Enterprise Spotlight
Download the March 2025 issue of the Enterprise Spotlight from the editors of CIO, Computerworld, CSO, InfoWorld, and Network World. Source link
Read More » -
Blog
How to Lower Your Risk From the Chemicals in Seafood
OystersOysters sponge chemicals, so I check where they’ve been raised. If they were near a military base, the Chesapeake, the lower Puget, or urban centers, then I won’t touch them. It requires a little effort, but you can do this by checking Google Maps for the oyster farm’s location in relation to nearby military bases and urban centers. ShrimpWhile I…
Read More »
