Security Management

Related events

Related Videos

Today’s columnist, Steve Wilson of Exabeam, explores the concept of “fair use” when it comes to AI data. (Adobe Stock)

Hugging Face compromised with malicious AI models

SC StaffFebruary 10, 2025

Both malicious packages resembling proof-of-concept models were not identified by Hugging Face's Picklescan security tool due to differences in compression format with PyTorch, as well as a security issue that prevented the proper scanning of Pickle files that could facilitate compromise, according to a report from ReversingLabs.

(Credit: monticellllo – stock.adobe.com)

Vulnerability Management

CISA warns Trimble Cityworks customers of actively exploited RCE flaw

Laura FrenchFebruary 7, 2025

Immediately patching is recommended due to the risk of RCE on Microsoft IIS web servers in critical infrastructure sectors.

Privacy

Many state privacy laws fail to protect consumer data, report finds

SC StaffFebruary 7, 2025

Eight of the 19 states with consumer privacy data laws that were evaluated by the two organizations were deemed ineffective.

DeepSeek is an AI-powered platform specializing in advanced search and data analytics for business insights and decision-making.

AI/ML

House bill seeks to block DeepSeek on federal devices

SC StaffFebruary 7, 2025

DeepSeek could be exploited by the Chinese government to facilitate surveillance and misinformation operations, according to the bipartisan bill, which also moves to prohibit any AI apps developed by DeepSeek's parent firm High-Flyer while offering exemptions for research and national security purposes.

Government Regulations

Treasury curtails Musk-led DOGE’s government access

SC StaffFebruary 7, 2025

Such a development comes after a lawsuit against Treasury Secretary Scott Bessent and escalating concerns regarding DOGE's infiltration of several federal government systems, including those at the Labor and Education Departments and the Centers for Medicare and Medicaid Services.

Today’s columnist, Leila Powell of Panaseer, explains why US companies must pay attention to NIS2. (EU)

Critical Infrastructure Security

Why US companies need to take NIS2 seriously

Leila Powell February 7, 2025

American companies that market critical infrastructure services to EU countries must pay attention to NIS2.

Chinese hacker. Laptop with binary computer code and china flag

AI/ML

Former Google engineer charged with stealing AI trade secrets

Shaun NicholsFebruary 6, 2025

A Chinese national is facing multiple charges of economic espionage and theft of trade secrets after he was accused of stealing AI technology from Google

Security Management

Related events

Organization Culture as a Key to Cybersecurity Success

Exposure Management: How organizations can build cyber resilience

8 ways attackers target mobile apps to steal your data (and how to stop them)

Related Videos

Transform cybersecurity with process mining

CyCognito’s CEO on keeping people and endpoints secure

Lessons from Ukraine: How cyberwar shapes security at home

Hugging Face compromised with malicious AI models

CISA warns Trimble Cityworks customers of actively exploited RCE flaw

Many state privacy laws fail to protect consumer data, report finds

House bill seeks to block DeepSeek on federal devices

Treasury curtails Musk-led DOGE’s government access

Why US companies need to take NIS2 seriously

Former Google engineer charged with stealing AI trade secrets