NVIDIA Merlin Flaw Enables Remote Code Execution with Root Access
A critical vulnerability in NVIDIA’s Merlin Transformers4Rec library allows attackers to achieve remote code execution with root privileges. Discovered by the Trend Micro Zero Day…
Month: September 2025
New framework sets baseline for SaaS security controls
Managing security across dozens or even hundreds of SaaS apps has become a major headache. Each tool has its own settings, permissions, and logs, and…
Banking Trojans Attacking Android Users Mimic as Government and Legitimate Payment Apps
A sophisticated cybercriminal campaign has emerged targeting Indonesian and Vietnamese Android users with banking trojans disguised as legitimate government identity applications and payment services. The…
Cyber compliance often overlooks third-party risks, warns Identifly CSO
Aaron Finnis, chief strategy officer at Identity and Access Management (IAM) specialist Identifly, has echoed others in the cybersecurity industry by saying he sees organisations…
Australian Gas Infrastructure Group in second phase of CRM transformation
Australian Gas Infrastructure Group is entering the second phase of a CRM transformation, with an end goal of establishing a more connected, transparent and proactive…
AI Comprehension Gaps: When Humans and AI See Different Things: · Joseph Thacker
There’s an AI Security and Safety concept that I’m calling an “AI Comprehension Gap.” It’s a bit of a mouthful, but it’s an important concept…
Internet shutdowns in Africa on upward trajectory
More than 190 internet shutdowns have been recorded in 41 African countries since 2016, the African Digital Rights Network (ADRN) has found, as governments across…
GIO deploys ‘Postie Pat’ to streamline offshore claims routing
GIO is using a digital assistant to help its Australia-based claims teams correctly route work to an offshore centre for processing without breaching local data…
OpenAI is testing a new GPT-5-based AI agent “GPT-Alpha”
OpenAI is internally testing a new version of its AI agent, which uses a special version of GPT-5 dubbed “GPT-Alpha.” Earlier today, OpenAI accidentally pushed…
Oktane 2025: Okta takes aim at agentic AI governance gap
Ahead of the official opening of identity specialist Okta’s annual Oktane customer conference in Las Vegas, Nevada, the cyber security supplier shared a preview of…
Home Affairs taps ex-Microsoft exec to lead AI development
Home Affairs has hired former Microsoft executive Rishi Nicolai to accelerate the development of artificial intelligence across its operations. Nicolai spent 13 years at Microsoft in…
New Supermicro BMC flaws can create persistent backdoors
Two vulnerabilities affecting the firmware of Supermicro hardware, including Baseboard Management Controller (BMC) allow attackers to update systems with maliciously crafted images. Supermicro is a maker of…