International Business Machines Corp. is reportedly exploring the sale of its weather business as part of a move to streamline its operations. The Wall Street Journal, referencing people with the matter, today reported that discussions are only in their early stages and a deal may not happen. Options on the table include auctioning the business, ...

A new report from threat intelligence firm Cybersixgill Ltd. details worrisome current trends in cybercrime, including a falling barrier to entry driven by generative artificial intelligence services such as OpenAI LP’s ChatGPT. The State of the Cybercrime Underground report was based on an analysis of Cybersixgill’s collected intelligence from the clear, deep and dark web in 2022. ...

Cybersecurity startup Inside-Out Defense today launched from stealth mode with an undisclosed amount of funding from Bain & Co. Inc. to provide real-time detection and remediation to privilege access abuse. Inside-Out Defense is a software-as-a-service, agentless privilege access abuse detection and remediation platform built for what it calls “Continuous Validation of Trust.” The platform complements existing ...

Penetration testing-as-a-service company Cobalt Labs Inc. detailed in a new report today the impact of budget cuts and talent shortages in the cybersecurity industry and it’s not good news: Cyber teams are struggling to manage the remediation process and monitor for vulnerabilities. Cobalt’s fifth annual State of Pentesting Report found that budget cuts and talent shortages ...

OpenAI LP, the company behind ChatGPT, has teamed with crowdsourced cybersecurity startup Bugcrowd Inc. to offer a bug bounty program to address cybersecurity risks in its artificial intelligence models. The bug bounty program is offering rewards from $200 to $20,000 to security researchers who report vulnerabilities, bugs or security flaws they discover in OpenAI’s systems. The ...

New reports released today from Microsoft Corp. and Citizen Lab detailed a little-known Israeli spyware vendor whose software has been used by governments to hack and spy on iPhones belonging to journalists, political figures and nongovernment organizations. The company goes by the name of QuaDream and, perhaps not surprisingly, it was founded by ex-employees of well-known ...

Enterprise authorization startup SGNL.ai Inc. today announced the launch of a free, noncommercial Continuous Access Evaluation Protocol/Profile Transmitter. The idea behind the Continuous Access Evaluation Protocol was first conceived by a Google LLC software in 2019. Since that time, an informal standards development effort has grown around it and ultimately merged with an existing working group ...

Cybersecurity company CrowdStrike Holdings Inc. today announced it has expanded its CrowdStrike Falcon platform to deliver a new endpoint detection and response and extended detection and response solution for what’s becoming known as extended Internet of Things assets. XIoT is a category that includes the Internet of Things, operational technology, medical devices, the industrial Internet ...

Apple Inc. has released patches for two unpatched vulnerabilities being exploited in the wild that target Apple devices, including iPhones, iPads and Mac computers. The first vulnerability, designated CVE-2023-28205, is described by Apple as an issue in WebKit that allowed for the processing of maliciously crafted web content that could lead to arbitrary code execution. The second, CVE-2023-28206, ...

A new report from cybersecurity firm XM Cyber Inc. has found that three-quarters of security exposures don’t put organizations at risk, but a small number of exposures can put more than 90% of critical exposures at risk. The exposure findings were among various takeaways in XM Cyber’s second annual research report, Navigating the Paths of Risk: ...