Get the Ultimate Cybersecurity & IT Career Certification Training Bundle for just $35. StackSocial It’s no secret that cybersecurity and IT skills are in high demand. This means they are some of the most sought-after (and possibly lucrative) career paths. And if you want to get in on this hot field, you do not have […] More
da-kuk/Getty Images The US and UK will work together on the development and safety of artificial intelligence. The two allies on Tuesday signed an accord that will see both countries collaborate on AI. As part of the agreement, which was signed by US Commerce Secretary Gina Raimondo and UK Technology Secretary Michelle Donelan, the countries […] More
Adela Stefan/Getty Images/500px Internet cookies can be useful when browsing the web, saving your site preferences and browsing information for a more seamless experience, but they can also be used to track you or even steal your data. Google’s latest project attempts to stop malicious actors from doing the latter. On Tuesday, Google unveiled Device […] More
The Monetary Authority of Singapore (MAS) and six banks have launched COSMIC, a common data platform to let financial institutions exchange insights on possible financial crime activities. DBS, UOB, Standard Chartered, Citibank, and HSBC have begun sharing customer information carrying “red flags” so they can warn each other of potential financial crime, such as money laundering and terrorism financing, MAS said. The six banks will only share data if the customer’s profile or behavior exhibits “certain objectively-defined indicators of suspicion,” the central bank said in a statement on Monday. COSMIC is supposed to plug gaps where financial institutions are unable to alert each other about unusual activities involving their customers due to confidentiality requirements.Also: Singapore wants banks and telcos to bear losses if found negligent in phishing scamsIn May 2023, Singapore proposed amendments to its Financial Services and Markets Bill to facilitate the sharing of data and establish the legal framework to do so via the data platform. These amendments have kicked in with the launch of COSMIC, according to MAS. The bill sets out policies and operational guidelines to which participants must adhere to safeguard the confidentiality of the shared data.”This will allow participant financial institutions to share information on potential criminal behavior, while safeguarding the interests of the vast majority of customers who are legitimate,” MAS said. “Customers are encouraged to continue to provide timely responses if requested by financial institutions to provide clarifications on their risk profiles or transactions, so that financial institutions can make informed risk assessments.” More
Thomas Barwick/Getty Images Cybersecurity attacks continue to climb in Asia-Pacific, even as organizations in markets such as Singapore struggle to adopt the necessary security measures due to a lack of knowledge. The region saw a 15% increase in cyberattacks in 2023, clocking an average of 1,963 attacks weekly, with ransomware leading the pack. The financial […] More
AT&T/ZDNETMillions of AT&T customers may have been affected by a data leak, forcing the carrier to change their passcodes. In a notice posted on Saturday, AT&T said that data seemingly from 2019 and earlier was leaked on the dark web, impacting 7.6 million current AT&T subscribers and 65.4 million former AT&T account holders.The scope of the leaked data found on the dark web varies from account to account. In addition to passcodes for all affected customers, it may also include full names, email addresses, mailing addresses, phone numbers, social security numbers, dates of birth, and AT&T account numbers. The carrier said that the dataset does not contain any personal financial information or call history.Also: Why were millions of AT&T customers left disconnected? We have an answerAT&T said the company sent emails or letters to all current and former subscribers who were impacted by the leak. In addition to resetting customer passcodes, the company urged customers to monitor their account activity and credit reports. To do so yourself, you can set up free fraud alerts with Equifax, Experian, and TransUnion, and review a free credit report through Freecreditreport.com.”The severity of this data breach is significantly heightened because of the Personal Identifiable Information (PII), including full names, email addresses, mailing addresses, phone numbers, Social Security numbers, dates of birth, AT&T account numbers, and passcodes, that were part of the compromised data,” Anne Cutler, a cybersecurity evangelist at Keeper Security, told ZDNET. “The immediate concern is the potential exploitation of this exposed data, which could lead to various malicious activities such as identity theft, phishing attacks, and unauthorized access to user accounts.”If you’re an AT&T subscriber affected by this breach, change your passcode. To do that, go to your myAT&T profile page and sign in when prompted. Scroll to the section for “My linked accounts,” select Edit for the passcode you want to change, and follow the prompts. More
Sabrina Ortiz/ZDNETIf you’re planning to use an AI chatbot for nefarious purposes, watch out. Microsoft is on the case.In a blog post published today, the company announced a new feature coming to its Azure AI Studio and Azure OpenAI Service, which people use to create generative AI applications and custom Copilots. Known as Prompt Shields, the technology is designed to guard against two different types of attacks for exploiting AI chatbots.Also: Microsoft Copilot vs. Copilot Pro: Is the subscription fee worth it?The first type of attack is known as a direct attack, or a jailbreak. In this scenario, the person using the chatbot writes a prompt directly designed to manipulate the AI into doing something that goes against its normal rules and limitations. For example, someone may write a prompt with such keywords or phrases as “ignore previous instructions” or “system override” to intentionally bypass security measures.In February, Microsoft’s Copilot AI got into hot water after including nasty, rude, and even threatening comments in some of its responses, according to Futurism. In certain cases, Copilot even referred to itself as “SupremacyAGI,” acting like an AI bot gone haywire. When commenting on the problem, Microsoft called the responses “an exploit, not a feature,” stating that they were the result of people trying to intentionally bypass Copilot’s safety systems. More
d3sign/Getty Images Apple device owners are facing a new phishing hack that uses “multi-factor authentication (MFA) bombing” to steal their data. Several Apple users in recent days have reported a hacking attempt that appears to take advantage of Apple’s password reset feature, KrebsOnSecurity reported, citing people who have been targeted. The scammers have used Apple’s password […] More
