All articles tagged with #cybersecurity risks
EU regulators welcomed Anthropic’s decision to slow the rollout of Claude Mythos after findings that the model could outperform humans at identifying and exploiting software vulnerabilities; a group of 12 cybersecurity firms and 40 other unnamed organizations have access to test defenses, and the EU is in dialogue with Anthropic to ensure the model has adequate cybersecurity protections under EU AI rules.
Microsoft's support for Windows 10 ends in 10 days, leaving approximately 400 million users at risk of security vulnerabilities if they do not upgrade or pay for extended support, with many unable to upgrade to Windows 11 due to hardware requirements, raising concerns about security and e-waste.
The new "name drop" feature on the latest iPhone update is causing privacy and security concerns as it allows users to share their contact information, including profile picture, name, email address, and phone number, with other Apple devices in close proximity. While Apple states that users have control over whom they share their information with, critics are raising concerns about potential cybersecurity risks during the holiday season.
The FBI has warned that public USB ports can be used by hackers to introduce malware and monitoring software onto devices, a cybercrime known as "juice jacking." The agency advises carrying your own charger and USB cord and using an electrical outlet to power up your device instead. Cybersecurity experts recommend adopting newer USB technology or purchasing charging-only cables, which don't allow data extraction, and using wireless chargers. Signs of a compromised device include a loss of battery life, a slowdown in operations, overheating, settings being altered without input, and unusually high data usage.
The Securities and Exchange Commission (SEC) has proposed new requirements for Market Entities, including broker-dealers, clearing agencies, and national securities exchanges, to address their cybersecurity risks. The proposal would require all Market Entities to implement policies and procedures that are reasonably designed to address their cybersecurity risks and review and assess the effectiveness of their cybersecurity policies and procedures at least annually. The proposal also includes new notification and reporting requirements to improve the Commission's ability to obtain information about significant cybersecurity incidents affecting these entities and improve transparency about the cybersecurity risks that can cause adverse impacts to the U.S. securities markets.