Author: HackWatchit

On Tuesday, a federal judge ruled in favor of Reuters’ parent company, Thomson Reuters, in their lawsuit against legal AI developer Ross Intelligence.U.S. Circuit Judge Stephanos Bibas said he was revising his 2023 summary judgment opinion on the case, court documents show.The ruling stems from a May 2020 lawsuit in which Thomson Reuters accused San Franciso-based Ross Intelligence of unlawfully copying content from its Westlaw platform to train its AI using data acquired from Michigan-based LegalEase Solutions.Since the launch of ChatGPT in 2022, media outlets, artists, and authors have expressed concerns that their content was being used to train AI…

Sentient has completed a large-scale ownership mint with 650,000 participants, setting a new benchmark in crypto and AI history. The campaign distributes NFTs tied to Dobby, the first decentralized Loyal AI model. Holders can later claim ownership and unique model fingerprints. The scale of participation reflects growing interest in decentralized AI. Sentient’s mint follows the rise of DeepSeek, an AI model rivaling OpenAI’s capabilities while operating on a limited budget. DeepSeek’s efficiency and open-source framework have fueled shifts in AI markets, affecting stock prices and token valuations.Sentient introduces a new approach to AI ownership with its fingerprinting technology. These digital…

U.S. CISA adds Microsoft Windows, Zyxel device flaws to its Known Exploited Vulnerabilities catalog Pierluigi Paganini February 12, 2025 U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Windows, Zyxel device flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added the following vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog: CVE-2024-40891 Zyxel DSL CPE OS Command Injection Vulnerability CVE-2024-40890 Zyxel DSL CPE OS Command Injection Vulnerability CVE-2025-21418 Microsoft Windows Ancillary Function Driver for WinSock Heap-Based Buffer Overflow Vulnerability CVE-2025-21391 Microsoft Windows Storage Link Following Vulnerability The vulnerability CVE-2024-40891 is a command injection issue in Zyxel CPE Series devices that remains…

It can be difficult to fully appreciate just what has changed when it comes to cybersecurity – and by how much. Up until around two decades ago, the network was the definitive perimeter of cyber defense, the place where organizations set up the sentinels to protect their digital environments. A decade later, with laptops and desktops, the focus shifted to the endpoint as the security perimeter. The thinking was clear: secure the endpoint that accesses the network, and you have the digital environment secured. In today’s mobility-driven world, however, the endpoint has become quite fluid. Users, be they employees or end-users, are…

Winter break is almost here, and if family gatherings aren’t quite hitting your end-of-year stress quota yet, don’t worry. You can always dive into working on your career for that extra dose of pressure! Jokes aside, now that you’re temporarily relieved of your academic duties, there’s time to do something meaningful for your future career while still getting some well-deserved rest. You can use these few weeks to boost your skills, gain practical experience, and level-up your resume so that you can impress future employers when the time comes for applying to jobs. You can also take time to fully…

A deep dive into securing containerized environments and understanding how they present unique security challenges.

Key Findings In January 2025, we observed over 18,000 new Valentine’s/love-related websites, marking a 5% increase compared to the previous month. Of these, 1 in 72 newly registered websites were identified as malicious or risky. Specifically focusing on Valentine’s-related websites, there was a 123% increase in newly registered websites in the past month, which aligns with trends seen in previous years (see visual below). Example of an email campaign In late January, Check Point Research (CPR) uncovered a phishing email campaign targeting consumers with a fraudulent offer to win a “Valentine basket.” The emails, which featured the subject line “You…

As digital interactions dominate modern communication, the rapid evolution of cyber threats demands robust security measures in customer engagement as a critical imperative. Traditional security methods are no longer sufficient, as cybercrime costs rise into the trillions annually. Addressing these challenges requires a comprehensive, triple-layered security approach in the Contact Center and Help Desk: ensuring the authenticity of the human, verifying the genuine user, and confirming the authorized agent. Check #1: Is it Human? The Deepfake Check One of the most insidious threats in today’s cyber landscape is deepfake audio. Deepfake technology uses AI to create highly realistic synthetic audio…

Dear Naked Security readers, Firstly, thank you for your interest, your time, and your contributions to the Naked Security community. Your invaluable engagement and expertise have helped improve cybersecurity for everyone. We have recently added the extensive catalog of Naked Security articles to the Sophos News blog platform, enabling us to provide all Sophos security research, insights, and intelligence in a single location. We are redirecting articles from Naked Security to Sophos News and you can continue to access the Naked Security article library whenever you need it. As adversary behaviors evolve, we’re seeing increased demand for deep threat research…