| Mobile Web

Search results for data breach

AI & Enterprise

U.S. government cuts deadline to 3 days for most critical cyber flaws amid AI attacks

The U.S. Cybersecurity and Infrastructure Security Agency has issued new guidance requiring federal agencies to address the most severe vulnerabilities within as little as three days. The policy shifts vulnerability management from a uniform approach to risk-based prioritisation, focusing first on flaws with high likelihood of exploitation and large potential impact. CISA said only 1 percent of vulnerabilities would fall under the three-day rule, while lower-risk issues could follow regular patch cycles.

AI & Enterprise

Coupang hit with 624.7 billion won fine over personal data breach, largest ever

South Korea\'s Personal Information Protection Commission imposed a record 624.7 billion won fine on Coupang over a large-scale personal data breach reported in November last year. It also levied a 16.8 million won penalty. The commission fined Coupang Fulfillment Services 248 million won for violations involving collection and use of personal data and limits on processing sensitive data. The regulator said about 37.5 million people were affected and ordered corrective steps.

AI & Enterprise

Cisco tests LLMs for security incident reports; time saved but hallucination risk remains

Cisco shared results of an experiment using AI to write reports for security incident response training, concluding it saves time but carries many risks. Nate Forth (네이트 포르스) of Cisco Talos said large language models can produce serious inaccuracies, odd conclusions and inconsistent writing styles. Cisco identified four main error patterns and said task-specific prompts and clear source, style and format rules reduced hallucinations. Drafting time fell 50%, but session mixing and weak proofreading prompts remained problems.