arrow_back
search
close
  • Noticias de seguridad

Noticias de seguridad

Últimos artículos

  • Unveiling AI Agent Vulnerabilities Part IV: Database Access Vulnerabilities

    21 de mayo de 2025
    How can attackers exploit weaknesses in database-enabled AI agents? This research explores how SQL generation vulnerabilities, stored prompt injection, and vector store poisoning can be weaponized by attackers for fraudulent activities.
    Leer más   

  • Unveiling AI Agent Vulnerabilities Part III: Data Exfiltration

    13 de mayo de 2025
    In the third part of our series we demonstrate how risk intensifies in multi-modal AI agents, where hidden instructions embedded within innocuous-looking images or documents can trigger sensitive data exfiltration without any user interaction.
    Leer más   

  • Unveiling AI Agent Vulnerabilities Part II: Code Execution

    05 de mayo de 2025
    Our research examines vulnerabilities that affect Large Language Model (LLM) powered agents with code execution, document upload, and internet access capabilities. This is the second part of a series diving into the critical vulnerabilities in AI agents.
    Leer más   

  • Unveiling AI Agent Vulnerabilities Part I: Introduction to AI Agent Vulnerabilities

    22 de abril de 2025
    This introductory post kicks off a blog series on AI agent vulnerabilities, outlining key security risks like prompt injection and code execution, and sets the stage for future parts, which will dive deeper into issues such as code execution flaws, data exfiltration, and database access threats.
    Leer más   

  • The Ever-Evolving Threat of the Russian-Speaking Cybercriminal Underground

    08 de abril de 2025
    We dive into one of the most sophisticated and impactful ecosystems within the global cybercrime landscape. Our research looks at tools and techniques, specialized forums, popular services, plus a deeply ingrained culture of secrecy and collaboration.
    Leer más   

  • From Registries to Private Networks: Threat Scenarios Putting Organizations in Jeopardy

    02 de abril de 2025
    Stolen certificates and private keys could be weaponized by cybercriminals to penetrate a company’s system. Our research investigates how these scenarios would play out, how they affect the organizations, and how to prevent such attacks.
    Leer más   

  • Trend 2025 Cyber Risk Report

    25 de marzo de 2025
    The Trend 2025 Cyber Risk Report sustains our shift towards proactive security. Protecting enterprises is no longer about stopping breaches but is now about staying ahead, making cybersecurity a business enabler. By looking at the 2025 risk landscape, we recognize exposures and understand attacker behavior to be able to implement countermeasures, transforming security from a challenge to a catalyst for innovation and business growth.
    Leer más   

  • The Future of Social Engineering

    17 de marzo de 2025
    Social engineering is a tactic that, at its core, creates a false narrative to exploit a victim’s credulity, greed, curiosity, or any other very human characteristics. Attackers continue to enhance existing social engineering and use new technologies.
    Leer más   

  • Ransomware Spotlight: Water Ouroboros

    05 de marzo de 2025
    Water Ouroboros (aka Hunters International) is a Ransomware-as-a-Service (RaaS) group that first emerged in October 2023. It is suspected to be a possible spin-off of Hive ransomware, which had its activities disrupted by the Federal Bureau of Investigation (FBI) in January 2023.
    Leer más   
Más noticias