Author: Admin

To capitalize on the enormous potential of artificial intelligence (AI) enterprises need systems purpose-built for industry-specific workflows. Strong domain expertise, solid data foundations and innovative AI capabilities will help organizations accelerate business outcomes and outperform their competitors. Enterprise technology leaders discussed these issues and more while sharing real-world examples during EXL’s recent virtual event, “AI in Action: Driving the Shift to Scalable AI.” “The key to driving real impact lies in seamlessly integrating data and…

A new cyber-threat campaign targeting Colombian government institutions and organizations since November 2024 has been linked to the threat group Blind Eagle, also known as APT-C-36. The attackers have been distributing malicious .url files that mimic the effects of the recently patched CVE-2024-43451 vulnerability. The vulnerability CVE-2024-43451, patched by Microsoft on November 12 2024, allowed attackers to extract NTLMv2 hashes, which could be used for authentication attacks.  While Blind Eagle’s .url variant does not exploit this vulnerability directly,…

New York attorney general, Letitia James, has filed a lawsuit against Allstate’s National General unit, alleging the company failed to adequately protect consumer data and neglected to report data breaches that exposed thousands of driver’s license numbers. The lawsuit, filed in a Manhattan state court on Monday, seeks financial penalties and improved security measures. The breaches, which occurred in 2020 and 2021, stemmed from vulnerabilities in National General’s online auto insurance quoting tools. Hackers exploited…

  Welcome U.S. Bank, a new Principal Participating Organization (PPO) at the PCI Security Standards Council! In this special spotlight edition of our PCI Perspectives Blog, U.S. Bank’s VP PCI Program Management, Richard Mann, introduces us to his company and how they are helping to shape the future of payment security.  

All organizations today rely on technology. Whether you’re a small non-profit, a government agency, a hospital, or a traditional business, digital tools power everything from communications to service delivery to data management. This dependency means that every organization, regardless of its mission or sector, faces cyber risks. For organizations heading into 2025, these cybersecurity challenges are both a pressing concern and a strategic priority. As we look toward the future, organizations must prepare for both…

6Critical 50Important 0Moderate 0Low Microsoft addresses 56 CVEs, including seven zero-day flaws, with six of those being exploited in the wild. Microsoft patched 56 CVEs in its March 2025 Patch Tuesday release, with six rated critical, and 50 rated as important. This month’s update includes patches for: .NET ASP.NET Core & Visual Studio Azure Agent Installer Azure Arc Azure CLI Azure PromptFlow Kernel Streaming WOW Thunk Service Driver Microsoft Local Security Authority Server (lsasrv) Microsoft…

As we move into 2025, organizations are laser-focused on maximizing resources and achieving better business outcomes. Increasingly, this translates into leveraging AI and automation to streamline operations, improve efficiency, and enhance cybersecurity efforts. While we’re not on the brink of AI achieving sentience, its role in cybersecurity is undeniable—particularly in automating repetitive, time-consuming tasks. However, the same tools that empower defenders can be easily weaponized by adversaries, leading to a heightened and more complex threat…