News Most digital businesses now use ‘dark patterns’ to manipulate consumers, FTC warns Three-quarters of websites employ deceptive tactics such as "sneaking" or "interface interference" to force purchases or trick people into handing over data
Citigroup Citigroup fined $136 million: Regulator warns of "enterprise-wide deficiencies” Banking group facing huge payout after allegedly making "insufficient progress" on risk and data quality management transformation
Microsoft Microsoft promises HCI on EU clouds as it settles complaint – but AWS, Google, other critics lash out "CISPE has given Microsoft the benefit of the doubt"
vulnerabilities Trio of unauthenticated ServiceNow vulnerabilities exposed 42,000 CVE-2024-4879 (CVSS 9.8) lets “an unauthenticated user remotely execute code” -- ServiceNow swiftly pushed fix to hosted instances but those self-hosting must...
LLMs OpenAI sends frontier model LLMs to fight bioterrorism at Los Alamos Lab "Measuring and understanding any potential dangers or misuse of advanced AI related to biological threats remain largely unexplored."
News AWS brings anti-hallucination Guardrails to Bedrock, promises 'grounding' in reality Cloud giant wants to make sure model responses are useful and founded on a firm foundation of enterprise data, rather than wild flights of fancy
fintech Global fintech investment slump worsens: UK suffers 'steep drop' The slowdown in funding activity during 2024 comes after a year so bad it was described as a "bloodbath" for fintech startups.
DARPA DARPA is creating “reprogrammable microorganisms” to produce petrochemicals Secretive US military research wing "aims to enable new concepts of operation for biomanufacturing that provide novel capabilities for national security.”
Patch Tuesday Patch Tuesday brings a Hyper-V vulnerability exploited in the wild, trio of CVSS 9.8 bugs in RDS Admins face prioritising 143 patches including two known-exploited.
NATO The cyber threats facing NATO: Google shares threat intel as leaders meet in Washington Threat actors may be preparing to attack critical infrastructure (if they haven't started already), researcher warns
LLMs Nvidia intern’s team beats OpenAI’s GPT-4 LLM in ‘knowledge-intensive’ showdowns Researchers give "RankRAG" large language models a dose of performance-enhancing instruction tuning and a pinch of ranking data before steering them to victory
cybercrime NCSC issues urgent security alert over Chinese threat actor's 'evolving' techniques A group called 'APT40' working for China's Ministry of State Security is allegedly capable of exploiting POCs within hours or days of public release
vulnerabilities Fake OpenSSH "exploit" is a real exploit. Just not the one you thought. Cisco says 42 products confirmed exposed to CVE-2024-6387 -- but OpenSSH exploit is malicious: Beware bogus POCs says Kaspersky
Outages Is the Wayback Machine down? Internet Archive suffers mysterious outages Treasure trove of altered or deleted websites brought offline after power cut as it fights legal appeal against decision which forced the removal of 500,000 books
Members only UK Where new technology minister Peter Kyle may focus, as Labour pledges national renewal
enterprise USA and China fighting 'enterprise tech trade war' in Middle East and Africa, analysts warn The region "is emerging as a battleground for international tech supremacy" in areas including cloud, networks for enterprise 5G, and artificial intelligence
public sector From AI to open source: Tech leaders' recommendations for the new Labour Government Leading industry figures set out key priorities for Sir Kier Starmer's new government, including employing Chief AI Officers in Whitehall and more open source in the public sector
IBM LzLabs vs IBM: The latest from court The latest from London’s Technology & Construction Court as companies clash over mainframe migration software.
DDoS ‘Evil’ botnet unleashes ‘record-breaking’ DDoS attack “This could be a new era for packet rate attacks: with botnets possibly capable of issuing billions of packets per second. It could seriously challenge how anti-DDoS infrastructures are built and scaled."
Members only artificial intelligence California pushes forward with AI regulations targeting Big Tech
Cobalt Strike Cobalt Strike takedown likely to make Sliver even more popular Brute Ratel, Sliver and other alternatives are less well-known and mature than Cobalt Strike but increasingly adopted.
ESG Can AWS really reduce the carbon footprint of AI workloads by 99% or is it 'greenwashing'? Cloud experts dig into claims that Amazon Web Services has pulled off the incredible feat of almost eliminating AI emissions by moving clients' workloads from on-premises infrastructure to its data centres