433 Central Ave., 4th Floor, St. Petersburg, FL 33701 | [email protected] | Office: (727) 493-2351

OX Security adds ChatGPT plugin for AppSec

OX Security, an application security vendor, now has a plugin for ChatGPT, allowing users to leverage the power of the headline-making generative AI assistant to protect the software supply chain, generate personalized security recommendations and remedy security issues quickly. The Israel-based company, in a press release issued yesterday, said that generative AI has already altered the security landscape, and not for the better. AI models, according to OX, have been used to seek out new vulnerabilities and draft phishing messages, among other things. To read this article in full, please click here
http://news.poseidon-us.com/SpFc3X

Cisco fixes critical flaws in Small Business Series Switches

Nine vulnerabilities – 4 of them critical – have been found in a variety of Cisco Small Business Series Switches. PoC exploit code is available (but not public), and there is no indication that they are being exploited in the wild. About the vulnerabilities The critical vulnerabilties (CVE-2023-20159, CVE-2023-20160, CVE-2023-20161, CVE-2023-20189) can be triggered via the switches’ web-based user interface, and may enable a remote attacker without authentication to run arbitrary code on a vulnerable … More → The post Cisco fixes critical flaws in Small Business Series Switches appeared first on Help Net Security.
http://news.poseidon-us.com/SpDJhk

ISC Stormcast For Thursday, May 18th, 2023 https://isc.sans.edu/podcastdetail/8502, (Thu, May 18th)

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
http://news.poseidon-us.com/SpCVQg

A common imperative for agencies starting their zero trust journeys: visibility

John Zangardi, the CEO of Redhorse Corp. and former CIO at DHS and the Navy, explains why knowing what’s on your network is foundational to achieving a zero trust architecture.
http://news.poseidon-us.com/SpBg9Q

Security breaches push digital trust to the fore

As digital transactions with customers, employees, suppliers, and other stakeholders grow, digital trustworthiness is set to become one of the most important enterprise-wide initiatives with the biggest potential impact (both negative and positive), even though it often has the smallest budget allocation. “Organizations are focusing on security and privacy, but if your customers don’t trust you, they will go elsewhere,” says Mark Thomas president of Escoute Consulting, which specializes in compliance. This view is borne out in a 2022 DigiCert digital trust survey that found 84% of customers would consider switching if they lost trust in a company. To read this article in full, please click here
http://news.poseidon-us.com/Sp99QN

ISC Stormcast For Wednesday, May 17th, 2023 https://isc.sans.edu/podcastdetail/8500, (Wed, May 17th)

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
http://news.poseidon-us.com/Sp8T3N

IRS to launch pilot of its free e-file system for taxpayers to test in 2024 filing season

The IRS is planning to allow some taxpayers to test out a free, online tax filing platform that’s run by the agency, before the Biden administration decides whether it should scale up the program for the rest of the public.
http://news.poseidon-us.com/Sp7h14