Geek-Guy.com

Tag: systems

Endpoint, Exploits, Global Security News

Simplify security management with CIS SecureSuite Platform

New operating systems prioritize usability, a reality which threat actors use to exploit security gaps. Every misconfiguration creates an opportunity for compromise, and lean teams struggle in their security management efforts to harden hundreds or thousands of endpoints. CIS SecureSuite Membership simplifies the process with tools, benefits, and resources for implementing the secure recommendations of…

Read more →

AI, APAC, Apps, Compliance, Global Security News

High-Quality Customer Outcomes Require Courageous Leadership

This article is written by Brett Diamond, CEO, 11:11 Systems, and provided to Channel Insider by 11:11 Systems. Every company claims to be customer-first. Many invest in support, success teams, and service management frameworks. But the uncomfortable truth is this: ensuring quality at every customer touch point often requires focused decision-making. And the decisions that…

Read more →

AI, Apps, Cybersecurity, Global Security News, Risk Management

Google talks ‘singularity’ while scaling up agentic AI for enterprises

Google is recasting its enterprise AI roadmap around autonomous systems and AGI, with DeepMind CEO Demis Hassabis telling I/O attendees the industry now sits at the “foothills of the singularity.” “When we look back at this time, I think we all realise that we were standing in the foothills of the singularity,” Hassabis said in his…

Read more →

AI, Endpoint, Exploits, Global Security News, Risk Management

Extending Security to MCP Servers: Closing a Critical Gap

The Model Context Protocol (MCP) is a de facto standard for providing structured access to privileged systems for AI agents and external integrations. It acts as a USB-C port for AI, enabling faster innovation by allowing organizations to expose tools, resources, and workflows without the time-consuming work of building APIs.  Adoption has surged in recent…

Read more →

AI, china, Cybersecurity, Exploits, Global Security News, Government & Policy, malware, Network Security, Risk Management, Russia

WannaCry, the ransomware attack that changed the history of cybersecurity

WannaCry showed how unpatched flaws and leaked cyber tools can cripple global systems, reshaping cybersecurity defenses worldwide. In memory of the day the digital world was shaken, but learned to fight back. The WannaCry ransomware attack represents one of the most significant events in recent cybersecurity history, not only for its global scale but also…

Read more →

AI, Apps, Exploits, Global Security News, Network Security, Risk Management

Pen tests show AI security flaws far more severe than legacy software bugs

Penetration tests of AI-based systems are revealing a greater percentage of high-risk flaws than those discovered in legacy systems. Security consultancy Cobalt’s annual State of Pentesting Report reveals that 32% of all AI and large language model (LLM) findings are rated as high risk — nearly 2.5 times the rate (13%) of severe flaws found…

Read more →

AI, Apps, Global Security News

Multi-model AI is creating a routing headache for enterprises

Application teams are moving AI inference into production systems that support business operations. Enterprises are expanding traffic management, identity controls, observability, and routing systems for multiple AI models and environments. F5’s 2026 State of Application Strategy Report found that 78% of organizations operate their own inference services and 77% identify inference as their primary AI…

Read more →

AI, Exploits, Global Security News, malware, Risk Management

‘Trivial’ exploit can give attackers root access to Linux kernel

CSOs must ensure their Linux-based systems block unauthorized privilege escalation until distros release patches to plug a serious kernel vulnerability affecting all Linux distributions shipped since 2017. Until fixes are available for what’s been dubbed the Copy Fail logic bug (CVE-2026-31431), which lets users easily obtain root access, there isn’t much CSOs can do, says…

Read more →

AI, Cybersecurity, Data Breaches, Global Security News, Network Security

Medtronic discloses security incident after ShinyHunters claimed theft of 9M+ records

Medtronic confirmed a breach of its IT systems after ShinyHunters claimed the theft of over 9 million records. Medtronic confirmed a cyberattack on its corporate IT systems after the hacker group ShinyHunters claimed to have stolen over 9 million records. The company did not share details on the security breach. Medtronic is an international medical…

Read more →

AI, Data Breaches, Exploits, Global Security News, malware, Network Security, Risk Management

Vercel attack fallout expands to more customers and third-party systems

Vercel said the fallout from an attack on its internal systems hit more customers than previously known, as ongoing analysis uncovered additional evidence of compromise.  The company, which makes tools and hosts cloud infrastructure for developers, maintains a “small number” of accounts were impacted, but it has yet to share a number or range of…

Read more →

AI, Global Security News, Government & Policy, malware, Network Security

Venezuela energy sector targeted by highly destructive Lotus wiper

Lotus Wiper hit Venezuelan energy systems, used scripts to disable defenses, then erased all data beyond recovery. Kaspersky researchers found Lotus Wiper targeting Venezuela’s energy and utilities sector amid regional tensions in 2025–2026. Attackers first used batch scripts to weaken systems, disable defenses, and prepare the environment. Then they deployed the wiper, which erased recovery…

Read more →

AI, Global Security News, privacy

Apple Intelligence flaw kept stolen tokens reusable on another device

Apple claims that Apple Intelligence, a GenAI service provided on its operating systems, is designed with an extra focus on user security and privacy through a two-stage authentication and authorization system using anonymous access tokens. However, researchers from The Ohio State University have identified vulnerabilities in this design, demonstrated on macOS 26.0 (Tahoe), that allow…

Read more →

AI, Global Security News, malware, Network Security

Inside ZionSiphon: politically driven malware aims at Israeli water systems

New ZionSiphon malware targets water systems, and allows attackers to alter pressure and chlorine levels. A flaw makes it ineffective for now. Darktrace analyzed ZionSiphon, a new malware designed to target water treatment and desalination systems, which aims to disrupt operations by altering hydraulic pressure and increasing chlorine levels to unsafe levels. The malware combines…

Read more →

AI, Apps, Global Security News

Mozilla challenges enterprise AI providers with Thunderbolt, open-source AI client under your control

For organizations that want to keep company data within their own systems and have more control over how AI is deployed, Mozilla is offering an alternative to externally hosted AI services with Thunderbolt, an open-source AI client designed for self-hosted use. Thunderbolt is available through a waitlist, with native applications for web, macOS, Windows, Linux,…

Read more →

AI, Cybersecurity, Endpoint, Exploits, Global Security News, Network Security

Microsoft drops its second-largest monthly batch of defects on record

Microsoft addressed 165 vulnerabilities affecting its various products and underlying systems, including one actively exploited vulnerability in Microsoft Office SharePoint, in this month’s Patch Tuesday update.  “By my count, this is the second-largest monthly release in Microsoft’s history,” Dustin Childs, head of threat awareness at Trend Micro’s Zero Day Initiative, wrote in a blog post…

Read more →

AI, Global Security News

Phishers sneak through using GitHub and Jira’s own mail delivery infrastructure

Attackers are abusing the notification systems of SaaS platforms like GitHub and Jira to send phishing and spam emails, Cisco Talos researchers are warning. “Because the emails are dispatched from the platform’s own infrastructure, they satisfy all standard authentication requirements (SPF, DKIM, and DMARC), effectively neutralizing the primary gatekeepers of modern email security,” they note.…

Read more →

AI, Global Security News

Genpact, Parallel Partner on Agentic AI Research Tools

Genpact has partnered with Parallel Web Systems to bring agentic AI-powered web research into enterprise workflows, aiming to accelerate decision-making and automation across insurance and sales operations. The collaboration integrates Parallel’s AI-native web research APIs into Genpact’s enterprise architecture, enabling agents to retrieve real-time data, automate analysis, and deliver verifiable insights for business users. Genpact…

Read more →

AI, Cybersecurity, Data Breaches, Exploits, Global Security News, malware, Risk Management

6 ways attackers abuse AI services to hack your business

Attackers are starting to exploit AI systems to mount attacks in the same way they once relied on built-in enterprise tools such as PowerShell. Instead of relying on malware, cybercriminals are increasingly abusing AI tools enterprises depend on — a trend some experts describe as living off the AI land. “We’re seeing it in things…

Read more →

AI, Endpoint, Global Security News, malware

Malware detectors trained on one dataset often stumble on another

Machine learning models built to catch malware on Windows systems are typically evaluated on data that closely resembles their training set. In practice, the malware arriving on enterprise endpoints looks different, comes from different sources, and in many cases has been deliberately obfuscated to evade detection. A study from researchers at the Polytechnic of Porto…

Read more →

AI, Global Security News

SystemRescue 13 updates its kernel to Linux 6.18 LTS, adds new recovery tools

Bootable Linux recovery environments occupy a specific niche in the systems administration and incident response toolkit. SystemRescue, an Arch-based live distribution built for repairing unbootable systems and recovering data from damaged drives, has shipped version 13.00 with a new long-term supported kernel, updated storage tools, and several additions to its command-line toolset. Kernel and storage…

Read more →

AI, Cybersecurity, Data Breaches, Europe, Global Security News, Network Security

The European Commission confirmed a cyberattack affecting part of its cloud systems

The European Commission confirmed a cyberattack affecting part of its cloud systems, now contained, with no impact on internal networks. On March 24, the European Commission detected a cyberattack affecting the cloud infrastructure hosting its Europa.eu websites. The incident was quickly contained, with mitigation measures applied and no disruption to website availability. Early findings suggest…

Read more →

AI, Global Security News

Microsoft hands Entra ID users new option for MFA

Organizations rely on MFA to enforce identity checks before granting access to systems and services. Microsoft has made external MFA generally available in Microsoft Entra ID, expanding support for third-party identity providers. Configure external MFA in Microsoft Entra ID (Source: Microsoft) External MFA supports organizations that use third-party MFA solutions to meet regulatory or business…

Read more →

AI, Global Security News

The AI safety conversation is focused on the wrong layer

Organizations have spent years accumulating fragmented identity systems: too many roles, too many credentials, too many disconnected tools. For a workforce of humans, that fragmentation was manageable. Humans log in, log out, and make decisions slowly enough that gaps in control rarely turned into immediate incidents. AI agents operate differently. “AI agents change that completely,”…

Read more →

AI, Exploits, Global Security News, malware

⚡ Weekly Recap: CI/CD Backdoor, FBI Buys Location Data, WhatsApp Ditches Numbers & More

Another week, another reminder that the internet is still a mess. Systems people thought were secure are being broken in simple ways, showing many still ignore basic advisories. This edition covers a mix of issues: supply chain attacks hitting CI/CD setups, long-abused IoT devices being shut down, and exploits moving quickly from disclosure to real…

Read more →

AI, Cybersecurity, Global Security News

How Cloud PBX Phone Systems Provide Flexibility, Reliability, And Scalability

Learn how cloud PBX phone systems provide flexibility, reliability, and scalability in this post.  Communication systems tend to become hard to handle as businesses expand. Traditional phone setups are highly reliant on hardware, constant maintenance, and complex upgrades. As the teams grow and the calling rush grows, these systems start to struggle. Calls may be…

Read more →

AI, Apps, Global Security News

Milestone Systems Redefines the Open Platform for an AI-Native Era

Milestone Systems, a global leader in data-driven video technology, today announced significant advancements to its XProtect video management software (VMS) and BriefCam video analytics. The XProtect App Platform, a new containerized application platform for VMS, and a new BriefCam analytics engine are designed to deliver increased reliability, greater customization, more efficient hardware utilization, and full readiness for Generative AI and analytics, empowering security…

Read more →

AI, Apps, Global Security News

Your APIs are under siege, and attackers are just getting warmed up

Internet-facing systems are handling sustained levels of malicious traffic across APIs, web applications, and DDoS channels. Akamai’s State of the Internet security report places these patterns within the same operating environment, with activity increasing across each area through 2025. The number of web attacks against apps and APIs continued an upward trajectory from January 2024…

Read more →

AI, Global Security News

Training AI Beyond the Known: Milestone Expands Hafnia with Synthetic Data and Training-as-a-Service at NVIDIA GTC

COMPANY NEWS:  At NVIDIA GTC in San Jose, Milestone Systems will showcase major advancements to its suite of AI developer tools coming out of Hafnia. The latest expansion introduces Synthetic Data and a forthcoming Training-as-a-Service (TaaS) offering, enabling developers to train AI models not only for real-world conditions, but also for rare and previously unseen…

Read more →

AI, Global Security News

Xona Systems brings real-time threat response to OT remote access sessions

Xona Systems has introduced Active Defense, a new capability that enables organizations to stop threats during live remote access sessions in operational technology (OT) environments automatically, without waiting for manual intervention. In many environments, the gap between detecting suspicious activity and stopping an active session can stretch from minutes to hours, leaving adversaries connected to…

Read more →

AI, Data Breaches, Europe, Global Security News, Government & Policy, Russia

Hackers targeted Poland’s National Centre for Nuclear Research

Hackers targeted Poland’s National Centre for Nuclear Research, but security systems detected and blocked the attack before any damage. The National Centre for Nuclear Research in Poland reported a cyberattack on its IT infrastructure. The intrusion attempt was quickly detected by security systems, allowing staff to secure the targeted systems and prevent any operational impact.…

Read more →

AI, Data Breaches, Exploits, Global Security News, Risk Management

Agent-to-Agent Attacks Are Coming: What API Security Teaches Us About Securing AI Systems

AI systems are no longer just isolated models responding to human prompts.  In modern production environments, they are increasingly chained together – delegating tasks, calling tools, and coordinating decisions with limited or no human oversight. Almost all that communication happens through APIs.  This shift offers enormous productivity benefits. But it has also complicated security. Because…

Read more →

AI, Endpoint, Global Security News, malware, Russia

HR, recruiters targeted in year-long malware campaign

An attack campaign targeting HR departments and job recruiters has been stealthily compromising systems, Aryaka researchers have discovered. By avoiding analysis environments and leveraging a specialized module designed to kill antivirus and endpoint detection software, the Russian-speaking attacker(s) behind this campaign have managed to keep their activity largely under the radar. “We currently lack telemetry…

Read more →