security postures – Experimental News Clipping Site

Microsoft Security Blog: New Microsoft Secure Future Initiative (SFI) patterns and practices: Practical guides to strengthen security

Oct 7, 2025

—

by

Source URL: https://www.microsoft.com/en-us/security/blog/2025/10/07/new-microsoft-secure-future-initiative-sfi-patterns-and-practices-practical-guides-to-strengthen-security/ Source: Microsoft Security Blog Title: New Microsoft Secure Future Initiative (SFI) patterns and practices: Practical guides to strengthen security Feedly Summary: Microsoft Secure Future Initiative (SFI) patterns and practices are practical, actionable, insights from practitioners for practitioners based on Microsoft’s implementation of Zero Trust through the Microsoft Secure Future Initiatives. By adopting these patterns, organizations can accelerate their…

Microsoft Security Blog: Inside Microsoft Threat Intelligence: Calm in the chaos

Oct 6, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.microsoft.com/en-us/security/security-insider/threat-landscape/inside-microsoft-threat-intelligence-calm-in-chaos#overview-video Source: Microsoft Security Blog Title: Inside Microsoft Threat Intelligence: Calm in the chaos Feedly Summary: Incident response is never orderly. Threat actors don’t wait. Environments are compromised. Data is missing. Confidence is shaken. But for Microsoft’s Incident Response (IR) team, that chaos is exactly where the work begins. The post Inside Microsoft…

Slashdot: Microsoft’s CTO Hopes to Swap Most AMD and NVIDIA GPUs for In-House Chips

Oct 4, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://hardware.slashdot.org/story/25/10/04/2142243/microsofts-cto-hopes-to-swap-most-amd-and-nvidia-gpus-for-in-house-chips?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Microsoft’s CTO Hopes to Swap Most AMD and NVIDIA GPUs for In-House Chips Feedly Summary: AI Summary and Description: Yes Summary: Microsoft is transitioning its AI workloads from traditional GPUs to its proprietary accelerators to enhance cost efficiency in its datacenters. This move exemplifies a trend towards customized hardware…

The Register: Cybercrims claim raid on 28,000 Red Hat repos, say they have sensitive customer files

Oct 2, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/10/02/cybercrims_claim_raid_on_28000/ Source: The Register Title: Cybercrims claim raid on 28,000 Red Hat repos, say they have sensitive customer files Feedly Summary: 570GB of data claimed to be stolen by the Crimson Collective A hacking crew claims to have broken into Red Hat’s private GitHub repositories, exfiltrating some 570GB of compressed data, including sensitive…

Simon Willison’s Weblog: How to stop AI’s “lethal trifecta”

Sep 26, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://simonwillison.net/2025/Sep/26/how-to-stop-ais-lethal-trifecta/ Source: Simon Willison’s Weblog Title: How to stop AI’s “lethal trifecta” Feedly Summary: How to stop AI’s “lethal trifecta” This is the second mention of the lethal trifecta in the Economist in just the last week! Their earlier coverage was Why AI systems may never be secure on September 22nd – I…

Microsoft Security Blog: AI vs. AI: Detecting an AI-obfuscated phishing campaign

Sep 24, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.microsoft.com/en-us/security/blog/2025/09/24/ai-vs-ai-detecting-an-ai-obfuscated-phishing-campaign/ Source: Microsoft Security Blog Title: AI vs. AI: Detecting an AI-obfuscated phishing campaign Feedly Summary: Microsoft Threat Intelligence recently detected and blocked a credential phishing campaign that likely used AI-generated code to obfuscate its payload and evade traditional defenses, demonstrating a broader trend of attackers leveraging AI to increase the effectiveness of…

Slashdot: Meta’s AI System Llama Approved For Use By US Government Agencies

Sep 22, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://yro.slashdot.org/story/25/09/22/1955220/metas-ai-system-llama-approved-for-use-by-us-government-agencies?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Meta’s AI System Llama Approved For Use By US Government Agencies Feedly Summary: AI Summary and Description: Yes Summary: The U.S. General Services Administration (GSA) has authorized Meta’s AI system, Llama, for use by federal agencies, indicating its compliance with security and legal standards. This approval may enhance operational…

Simon Willison’s Weblog: The Hidden Risk in Notion 3.0 AI Agents: Web Search Tool Abuse for Data Exfiltration

Sep 19, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://simonwillison.net/2025/Sep/19/notion-lethal-trifecta/ Source: Simon Willison’s Weblog Title: The Hidden Risk in Notion 3.0 AI Agents: Web Search Tool Abuse for Data Exfiltration Feedly Summary: The Hidden Risk in Notion 3.0 AI Agents: Web Search Tool Abuse for Data Exfiltration Abi Raghuram reports that Notion 3.0, released yesterday, introduces new prompt injection data exfiltration vulnerabilities…

The Register: One token to pwn them all: Entra ID bug could have granted access to every tenant

Sep 19, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/09/19/microsoft_entra_id_bug/ Source: The Register Title: One token to pwn them all: Entra ID bug could have granted access to every tenant Feedly Summary: Until Microsoft lobbed it into a virtual volcano A security researcher claims to have found a flaw that could have handed him the keys to almost every Entra ID tenant…

The Register: Crims bust through SonicWall to grab sensitive config data

Sep 18, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/09/18/sonicwall_breach/ Source: The Register Title: Crims bust through SonicWall to grab sensitive config data Feedly Summary: Vendor pulls plug on cloud backup feature, urges admins to reset passwords and re-secure devices SonicWall is telling some customers to reset passwords after attackers broke into its cloud backup service and accessed firewall configuration data.… AI…

Tag: security postures