⚠️ VULNERABILITY DISCLOSURE 4[−]
27 Jul[New Whitepaper] Best Security Practices for AI Prompting and Building Agent SystemsBob Fabien wrote on X: "While some are still paying over a grand for AI courses, the biggest players are giving away high-value resources at no cost. From prompt engineering to agent frameworks, it is all here."KNOWBE4.COM
27 JulWhen Facial Recognition Fails… Real People Pay the PriceFacial recognition tech promises security—but what happens when it gets your face wrong? This short dives into real-world consequences of AI bias in law enforcement. Inspired by stories like Dr. Joy Buolamwini's "Coded Bias," it reveals how low representation in training data can…YOUTUBE.COM
27 JulThis One Fix Could Slash Your Vulnerability Count in HALF 🚨When patch management fails, vulnerabilities pile up—and it’s not always the security team’s fault. In this short, cybersecurity expert Matthew Toussain exposes a common and frustrating dilemma in most organizations: the blame game between patch teams and security scanners. Is it…YOUTUBE.COM
27 JulHe Only Knows One Password… And That’s the Point 🔐He didn’t grow up with tech. He didn’t care for digital security. But after getting engaged, he was forced into using a password manager—and now he only knows ONE password. That’s all it takes. This short reveals how cybersecurity often starts with the most unexpected person in t…YOUTUBE.COM
📢 SECURITY ADVISORIES 1[−]
27 JulWhy You Can’t Lone-Wolf Cybersecurity AnymoreIn this short, Martin Tschammer reveals what it really takes to secure AI systems at scale—and why going solo in cybersecurity is a dangerous myth. As head of security, he juggles risk management, legal compliance, and company-wide collaboration. But here's the twist: even the be…YOUTUBE.COM
🔥 INCIDENT REPORTING 4[−]
27 JulThis Is How Hackers Get In — Through Your Printer!Most people think installing a printer is harmless… until it becomes a backdoor for hackers. In this short, Danny Jenkins breaks down a real-world example of how one innocent download — like a printer driver — can trigger a chain of risky actions. Without blocking software, users…YOUTUBE.COM
27 JulIs Your Cloud Secrets Vault Actually Secure?Many cybersecurity pros think storing secrets in the cloud is secure… but what if it’s not? 😳 In this short, Vlad breaks down a game-changing approach to cloud-native secrets management — using BYOK (Bring Your Own Keys) and hardware-backed encryption to regain full control. If a…YOUTUBE.COM
27 JulThe Alarming Truth About Compromised Alumni Accounts 😳Even accounts from 30 years ago are now a major cybersecurity risk. In this short, Sheena Thomas reveals how compromised alumni accounts without MFA are becoming an open door for attackers — and why even MFA-protected accounts aren’t safe anymore. Social engineering, AI-generated…YOUTUBE.COM
27 JulTea Dating Advice app spills sensitive dataA woman's dating app designed to enhance safety and vet potential dating partners has itself suffered a serious security breach.GRAHAMCLULEY.COM
🕵️ THREAT INTELLIGENCE 3[−]
27 JulSoco404 and Koske Malware Target Cloud Services with Cross-Platform Cryptomining Attackssubmitted by MrSoup to cybersecurity 1 points | 0 comments https://thehackernews.com/2025/07/soco404-and-koske-malware-target-cloud.htmlSH.ITJUST.WORKS
27 JulNot Every Hacker Starts in a Hoodie… Some Start on StageBefore she was auditing networks and chasing vulnerabilities, Melina Scotto was chasing standing ovations. 🎭 This short dives into the unexpected journey of a cybersecurity pro who once dreamed of opera stages. From vocal warm-ups to risk assessments, her story proves not all hac…YOUTUBE.COM
27 JulAI Isn’t Just ChatGPT 🤯Most people hear "AI" and immediately think ChatGPT or generative tools — but cybersecurity expert Matthew Alderman wants you to look deeper. In this short, he and Matt Muller reveal the forgotten layers of artificial intelligence that professionals often overlook. It’s not all a…YOUTUBE.COM
📡 INFOSEC NEWS 1[−]
27 JulScattered Spider is running a VMware ESXi hacking spreeScattered Spider hackers have been aggressively targeting virtualized environments by attacking VMware ESXi hypervisors at U.S. companies in the retail, airline, transportation, and insurance sectors. [...]BLEEPINGCOMPUTER.COM