Jan 02, 2025Ravie LakshmananVulnerability / Data Protection Details have emerged about three now-patched security vulnerabilities in Dynamics 365 and Power Apps Web API that could result in data exposure. The flaws, discovered by Melbourne-based cybersecurity company Stratus Security, have been addressed as of May 2024. Two of the three shortcomings reside in Power Platform's … [Read more...] about Severe Security Flaws Patched in Microsoft Dynamics 365 and Power Apps Web API
Beyond RAG Basics: Advanced strategies for AI applications
Our recent virtual event with Cohere dove deep into the world of retrieval augmented generation (RAG), focusing on the critical considerations for building RAG applications beyond the proof-of-concept stage. Our speakers, Lily Adler, principal solutions architect at Elastic, and Maxime Voisin, senior product manager at Cohere, shared valuable insights on the challenges, … [Read more...] about Beyond RAG Basics: Advanced strategies for AI applications
New “DoubleClickjacking” Exploit Bypasses Clickjacking Protections on Major Websites
Jan 01, 2025Ravie LakshmananWeb Security / Vulnerability Threat hunters have disclosed a new "widespread timing-based vulnerability class" that leverages a double-click sequence to facilitate clickjacking attacks and account takeovers in almost all major websites. The technique has been codenamed DoubleClickjacking by security researcher Paulos Yibelo. "Instead of relying on … [Read more...] about New “DoubleClickjacking” Exploit Bypasses Clickjacking Protections on Major Websites
Unify Security Posture and Protection for Faster Cloud Detection and Response
Adversaries are taking aim at cloud environments, as evidenced by the 75% increase in cloud intrusions in 2023. Organizations are under growing pressure to ensure they have measures in place to effectively detect, investigate and respond to cloud-focused attacks. Cloud detection and response (CDR) is uniquely challenging for SOC teams due to their limited visibility into … [Read more...] about Unify Security Posture and Protection for Faster Cloud Detection and Response
New U.S. DoJ Rule Halts Bulk Data Transfers to Adversarial Nations to Protect Privacy
Dec 31, 2024Ravie LakshmananData Security / Privacy The U.S. Department of Justice (DoJ) has issued a final rule carrying out Executive Order (EO) 14117, which prevents mass transfer of citizens' personal data to countries of concern such as China (including Hong Kong and Macau), Cuba, Iran, North Korea, Russia, and Venezuela. "This final rule is a crucial step forward in … [Read more...] about New U.S. DoJ Rule Halts Bulk Data Transfers to Adversarial Nations to Protect Privacy
Outreach Redefines Sales Prospecting with Launch of AI Prospecting Agents
New AI product automates prospecting tasks, enabling sellers to focus on relationships, and revenue-generating activities Outreach, the Sales Execution Platform built for intelligent revenue workflows, announced the launch of Outreach AI Prospecting Agents, an autonomous AI solution that will transform the way revenue teams build new logo and expansion pipeline. AI … [Read more...] about Outreach Redefines Sales Prospecting with Launch of AI Prospecting Agents
Elastic Stack 8.16.2 released | Elastic Blog
Version 8.16.2 of the Elastic Stack was released today. We recommend you upgrade to this latest version. We recommend 8.16.2 over the previous versions 8.16.1 The 8.16.2 release contains a fix for a security vulnerability. Please see our security advisory for more details. For details of the issues that have been fixed and a full list of changes for each product in this … [Read more...] about Elastic Stack 8.16.2 released | Elastic Blog
New HIPAA Rules Mandate 72-Hour Data Restoration and Annual Compliance Audits
Dec 30, 2025Ravie LakshmananCybersecurity / Compliance The United States Department of Health and Human Services' (HHS) Office for Civil Rights (OCR) has proposed new cybersecurity requirements for healthcare organizations with an aim to safeguard patients' data against potential cyber attacks. The proposal, which seeks to modify the Health Insurance Portability and … [Read more...] about New HIPAA Rules Mandate 72-Hour Data Restoration and Annual Compliance Audits
Four Ways to Exponentially Multiply Your Enterprise AI Success
A company’s data can either be a source of weakness or untapped strength. The burgeoning era of generative AI is rapidly changing the way that businesses need to handle their sensitive information. In such an era, if an organization fails to properly prepare and manage their data, they will most likely encounter challenges, fall behind in their AI capabilities, and risk losing … [Read more...] about Four Ways to Exponentially Multiply Your Enterprise AI Success
16 Chrome Extensions Hacked, Exposing Over 600,000 Users to Data Theft
Dec 29, 2025Ravie LakshmananEndpoint Protection / Browser Security A new attack campaign has targeted known Chrome browser extensions, leading to at least 16 extensions being compromised and exposing over 600,000 users to data exposure and credential theft. The attack targeted publishers of browser extensions on the Chrome Web Store via a phishing campaign and used their … [Read more...] about 16 Chrome Extensions Hacked, Exposing Over 600,000 Users to Data Theft