Today, almost every organization and most individuals are using or experimenting with Artificial Intelligence (AI). There are plenty of examples of how it is changing businesses for the better, from marketing and HR to IT teams. What was once computationally impossible, or prohibitively expensive to do, is now within reach with the use of AI. According to Gartner, approximately 80 percent of enterprises will have used generative AI (GenAI) APIs or models by 2026. As AI drives value for organizations, it is fueling further demand and adoption. In our modern digital environment, there is a pheno ..read more

The AI era is here -- and businesses are starting to capitalize. Britain’s AI market alone is already worth over £21 billion and expected to add £1 trillion of value to the UK economy by 2035. However, the threat of “shadow AI” -- unauthorized AI initiatives within a company -- looms large. Its predecessor -- “shadow IT” -- has been well understood (albeit not always well managed) for a while now. Employees using personal devices and tools like Dropbox, without the supervision of IT teams, can increase an organization’s attack surface -- without execs or the C-suite ever knowing. Examples… [Co ..read more

Five-hundred-and-ninety-four in a series. Welcome to this week's overview of the best apps, games and extensions released for Windows 10 and 11 on the Microsoft Store and elsewhere in the past seven days. Unactivated Windows 11 systems could soon prevent users from changing certain Microsoft Edge settings. Edge could show a "PC not activated" notification in Settings to users. As always, if I've missed an app or game that has been released this week that you believe is particularly good, let me know in the comments below or notify me via email. Discounts this week The following list is a ..read more

It should be the case that in the business world systems deliver for the customer. But often there can be conflict between what the customer wants -- usability and feeling valued -- and what the developer is looking to provide -- technical mastery, collaboration and self-serve capabilities. We spoke to Gilad Shriki, co-founder of Descope to discover how enterprises can satisfy the needs of both. BN: What is developer and customer onboarding and why is it important? GS: Developer onboarding is the process of integrating new developers into a new software project and customer onboarding is the p ..read more

Exciting news for Linux enthusiasts: Ubuntu Linux 24.10, codenamed "Oracular Oriole," has officially released its daily images for public testing. This release is designed for developers and testers who are eager to get a first look and provide feedback on the upcoming features of this new Ubuntu release. As of today, the latest build, dated May 9, 2024, is available for download. This continuous development cycle is a crucial part of Ubuntu’s development philosophy, providing a transparent process that allows both developers and users to participate in refining and enhancing the system before ..read more

Patching is something that we all know we have to do. But it is easier said than done. In reality, patching can be hard due to problems around application compatibility, having adequate downtime windows, or more pressing business risks to manage. This can lead to some very serious software problems being left open and vulnerable to exploitation. Here are three examples of common software vulnerabilities that existed for years with updates available, yet are still regularly targeted by threat actors. Example #1 -- CVE-2020-1472 Zerologon is an unauthenticated privilege escalation that can be us ..read more

A new report from Fortinet shows that the second half of 2023 saw attackers increase the speed with which they capitalized on newly publicized vulnerabilities. Attacks were carried out 43 percent faster than 1H 2023, starting on average 4.76 days after new exploits were publicly disclosed. But despite getting better at spotting new exploits cybercriminals are also continuing to target old ones. FortiGuard Labs observes threat actors exploiting some vulnerabilities that are more than 15 years old. Derek Manky, chief security strategist and global VP threat intelligence at FortiGuard Labs says ..read more

In The DevSecOps Playbook: Deliver Continuous Security at Speed, Wiley CISO and CIO Sean D. Mack delivers an expert analysis of how to keep your business secure, relying on the classic triad of people, process, and technology to examine -- in depth -- every component of DevSecOps. In the book, you'll learn why DevSecOps is as much about people and collaboration as it is about technology and how it impacts every part of our cybersecurity systems. You'll explore the shared responsibility model at the core of DevSecOps, as well as the people, processes, and technology at the heart of the fra ..read more

The latest Email Threat Trends report from VIPRE Security Group identifies the US as the top source of spam emails globally, followed by the UK, Ireland, and Japan. The US, UK, and Canada are the top three countries most subjected to email-based attacks. Looking at targets, the manufacturing, government, and IT sectors are the most attacked by malicious actors. In Q1 2024, the manufacturing sector suffered 43 percent of email-based attacks, with government (15 percent) and IT (11 percent) trailing well behind. This is a change from Q1 2023, when attackers targeted the financial (25 percent), h ..read more

Used for productivity, generative AI offers unprecedented potential to improve the performance and impact of modern software solutions. One of its major capabilities is that it lowers the barriers to entry for those without software development knowledge and experience. While this has its advantages, in the wrong hands, it can also be dangerous. GenAI has also raised the stakes for those looking to protect users against social engineering, with increasingly sophisticated and compelling scams making it more difficult than ever to filter genuine communication from fake. The commoditization of di ..read more