The Wiretap: Lack Of AI Oversight Increases Data Breach Risks
As more companies adopt AI without oversight, the more they risk their own security. That's one of the implications of IBM's annual report on data breaches, which looks at the impact of AI for the first time this year. The tech giant found that 16% of breaches in the past year involved the use of AI tools. Additionally, 20% of organizations reported that they'd experienced a breach due to an employee using unsanctioned AI tools on company computers.Of the organizations that saw AI-related breaches, 97% didn't have any access controls in place and 63% didn't have an AI governance policy.
"The data shows that a gap between AI adoption and oversight already exists, and threat actors are starting to exploit it," Suja Viswesan, IBM's vice president of security said in a statement.
The stakes are high: In the United States, the average cost per data breach has reached a record $10.22 million–even as the average cost globally has declined to $4.44 million. Healthcare is the most expensive sector when it comes to a data breach: the average incident costs about $7.42 million, though that is a big decline from 2024's $9.77 million figure.
Companies are also getting better at managing data breaches: the average lifecycle of a data breach incident–from discovery to recovery–dropped to 241 days, compared to last year's 258 and the 280 days IBM identified in 2020. This is in part because more companies are discovering breaches on their own rather than hearing it first from their attackers–in part, because more companies are using AI to monitor their networks and keep them secure.
Got a tip on surveillance or cybercrime? Get me on Signal at +1 929-512-7964 .
Illustration by Samantha Lee for Forbes; Photos;F or college students looking for jobs or internships, the standard advice about social media has been this: Build up your professional profile on LinkedIn, but scrub other social media accounts (the ones displaying your political opinions or party antics) or just make them private.
Yet recent developments could make that playbook obsolete as students face a potential Catch-22: What they've said on social media can hurt them when they are job hunting. But students erasing or cloaking their public online presence could also backfire in less predictable ways.
Some prospective employers are adopting AI tools to screen social media to determine if applicants are real, because AI has led to an explosion of fake (or stolen) identities by scammers. Those tools screen for things like age of social accounts, posting and liking activity as well as LinkedIn connections, which makes scrubbing your profile a riskier proposition.
Read the whole story at Forbes Stories You Have To Read Today
Over 300 companies have been infiltrated by online scammers from North Korea pretending to be working remotely from elsewhere, according to a new report from Crowdstrike.
AI search engine Perplexity is obscuring the identity of its crawlers to sidestep websites that block them, per a new Cloudflare report.
The Senate confirmed Sean Cairncross, a Republican political operative with no professional cybersecurity experience, as the new head of the Office of the National Cyber Director, which advises the President on cyber defense issues.
Hackers backed by the Russian government are attempting to break into systems at foreign embassies in Moscow, Microsoft has warned.
Senators Marsha Blackburn (R-Tenn.) and Gary Peters (D-Mich.) have introduced legislation to develop a national cybersecurity strategy for protecting federal systems from quantum computers. Winner of the Week
Cybersecurity researchers stand to win tens of thousands of dollars if they can find security issues in popular software at the Pwn2Own contest being held this October in Ireland. The biggest prize? Meta announced last week that it is offering $1 million to any team that can find a 0-day exploit in WhatsApp. Loser of the Week
Security researchers found major security vulnerabilities in AI-coding tool Cursor which would allow hackers to remotely execute malicious code and bypass other protections. The vulnerabilities were patched in the latest release. More On Forbes Forbes Meet The Other Billionaire Behind Skydance's Paramount Deal By John Hyatt Forbes How Small Business Can Survive Google's AI Overview By Brandon Kochkodin Forbes Want To Hedge Against Inflation? Buy A Forest By William Baldwin
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Business Insider
9 minutes ago
- Business Insider
Pinterest (PINS) Is About to Report Q2 Earnings. Here's What to Expect
Social media platform Pinterest (PINS) is scheduled to announce its second-quarter results after the market closes on Thursday, August 7. PINS stock has rallied about 35% year-to-date, driven by strong performance from peers in the digital ad space, such as Meta Platforms (META), the adoption of artificial intelligence (AI) to enhance ad offerings, and the company's improving performance. Wall Street expects Pinterest to report earnings per share (EPS) of $0.35, reflecting an increase of about 21% compared to the prior-year quarter. Elevate Your Investing Strategy: Take advantage of TipRanks Premium at 50% off! Unlock powerful investing tools, advanced data, and expert analyst insights to help you invest with confidence. Revenue is projected to rise about 14.2% to $974.93 million. These expectations indicate a resilient performance despite the ongoing macro uncertainties. Analysts' Views Ahead of Pinterest's Q2 Earnings Heading into Q2 results, Guggenheim analyst Michael Morris increased the price target for Pinterest stock to $44 from $39 and maintained a Buy rating. The 5-star analyst remains confident about PINS stock, noting that the company is in the early stages of its monetization opportunity. He highlighted that the two primary near-term growth drivers are the progress on Performance+ (particularly AI-related investments) and expanding strategic partnerships (Magnite (MGNI), Instacart (CART), LTK Influencer Content, Amazon (AMZN) /Google (GOOGL) integrations). Morris expects Q2 revenue growth of 14.4%, which is towards the higher end of management's guidance range of 12% to 15%. The analyst noted that Alphabet's Q2 results and outlook suggest strength in demand for direct response advertising since the first-quarter earnings. Morris expects Pinterest's profitability to continue to increase throughout the year, though at a slowing rate of margin expansion due to rising AI-related investments. Likewise, Benchmark analyst Mark Zgutowicz increased the price target for Pinterest stock to $48 from $45, while maintaining a Buy rating. The 5-star analyst contends that the expectation that Q2 and 2025 revenue and EBITDA will be relatively in line with consensus estimates seems conservative. Zgutowicz likes the setup heading into the Q2 print for multiple reasons, including multi-quarter investments in GPU-enabled innovations. The analyst also noted performance-driven market share gains within the Enterprise business, as new products broaden advertiser prospects to $1 billion-$30 billion of annualized gross merchandise value (GMV). AI Analyst Is Bullish on Pinterest Stock Ahead of Q2 Print Interestingly, TipRanks' AI stock analyst has assigned an Outperform rating to Pinterest stock with a price target of $41, indicating 4.9% upside potential. TipRanks' AI analysis indicated that solid financial performance and favorable earnings call sentiment are the primary drivers of the bullish stance on PINS stock. The AI analysis also noted strong revenue growth, high gross margins, as well as strategic focus on AI advancements and international expansion. Here's What Options Traders Anticipate Ahead of PINS' Q2 Earnings Using TipRanks' Options tool, we can see what options traders are expecting from the stock immediately after its earnings report. The expected earnings move is determined by calculating the at-the-money straddle of the options closest to expiration after the earnings announcement. If this sounds complicated, don't worry, the Options tool does this for you. Indeed, it currently says that move in either direction in PINS stock in reaction to Q2 results. Is PINS a Good Stock to Buy? Overall, Wall Street has a Strong Buy consensus rating on Pinterest stock based on 24 Buys and four Hold recommendations. The average PINS stock price target of $42.68 indicates 9.2% upside potential from current levels.
Business Wire
22 minutes ago
- Business Wire
New Cyware MCP Server Expands AI Ecosystem to Bolster Threat Intelligence Management
NEW YORK--(BUSINESS WIRE)--Cyware, the leader in AI-powered threat intelligence management, secure threat sharing and collaboration, as well as hyper-orchestration and response, today announced the release of Cyware MCP Server (Model Context Protocol Server) to advance the future of AI-powered cyber defense. The new open-source capability is purpose-built to enable generative AI-native workflows, allowing seamless integration between Cyware's threat intelligence; security automation platforms and large language models (LLMs). 'Cyware MCP Server exposes our Agentic AI components to AI Assistants, enabling access to key tools and actions." Share 'Cyware MCP Server exposes our Agentic AI components to AI Assistants enabling access to key tools and actions which then empowers security teams to retrieve insights, take action, and orchestrate complex workflows in a secure, fully contextual environment,' said Akshat Jain, CTO and Co-Founder of Cyware. 'This foundational capability enhances the speed, precision, and scalability of threat detection, investigation, and response.' The release builds on Cyware's vision to create efficient solutions that help organizations with smarter AI-enabled threat intelligence operationalization and is a key part of Cyware Quarterback AI, our AI layer powering intelligent workflows across the threat lifecycle. That starts with automation at the start of threat data processing where Cyware automatically ingests, deduplicates, normalizes, enriches, and scores threat data to empower automated threat investigations and subsequent actioning. Beyond this deep level of automation, Cyware's platform utilizes practical AI across its entire portfolio to transform how threat data is analyzed, contextualized, and actioned with the goal to automate complex processes and augment human decision-making. The company's long-term AI-powered Threat Management and SOC vision centers on a Multi-Agent Fabric (MAF) approach, where purpose-built, contextual and dynamic AI agents, coupled with its Unified Threat Management product portfolio integrate & operate seamlessly to help security teams outpace adversaries, reduce response times, and operationalize threat intelligence at scale. Cyware's Application of AI in Threat Intelligence Management Cyware's platform focuses on applied AI across the entire threat intelligence lifecycle, from ingestion to action, helping analysts move faster and security teams scale more effectively. Key Cyware Quarterback AI capabilities include: Smart Parsing and Enrichment : AI-powered extraction of IOCs, TTPs, threat actors, malware, vulnerabilities, and recommended actions from reports, browser-based threat intel, and alerts — reducing manual input and accelerating investigations. : AI-powered extraction of IOCs, TTPs, threat actors, malware, vulnerabilities, and recommended actions from reports, browser-based threat intel, and alerts — reducing manual input and accelerating investigations. Summarization and Contextualization : Automated executive summaries of threat reports, alerts, and RSS feeds highlight critical TTPs, CVEs, and mitigation steps to support faster triage and decision-making. : Automated executive summaries of threat reports, alerts, and RSS feeds highlight critical TTPs, CVEs, and mitigation steps to support faster triage and decision-making. AI-Powered Orchestration : LLM-based playbook components enable intelligent alert analysis, data normalization, and custom code generation, reducing the need for coding expertise while enhancing response workflows. : LLM-based playbook components enable intelligent alert analysis, data normalization, and custom code generation, reducing the need for coding expertise while enhancing response workflows. Embedded AI Assistants: A real-time, contextual AI chat experience provides in-product guidance, integrates with technical documentation, and allows users to trigger actions and retrieve citations on-demand. These capabilities lay the groundwork for Cyware's broader AI-native future, where automation and intelligence work hand-in-hand to support security teams at every stage. To learn more about the Cyware MCP Server, visit or explore the open-source repository on GitHub. About Cyware Cyware is leading the industry in operationalized threat Intelligence and collective defense, helping security teams transform threat intelligence from fragmented data points to actionable, real-time decisions. We unify threat intelligence management, intel sharing and collaboration, as well as hyper-orchestration and automation — eliminating silos and enabling organizations to outmaneuver adversaries faster and more effectively. From enterprises to government agencies and ISACs, Cyware empowers defenders to turn intelligence into impact.
Business Wire
22 minutes ago
- Business Wire
The Hackett Group® and Celonis Partner to Accelerate ROI With Unmatched AI + Process Intelligence Solutions
MIAMI--(BUSINESS WIRE)--The Hackett Group, Inc. (NASDAQ: HCKT), a leading generative artificial intelligence (Gen AI) consultancy and executive advisory firm, today announced a collaboration with Celonis, a global leader in process mining, to deliver intelligent enterprise automation that drives measurable business results at unprecedented speed. Using Celonis process intelligence and The Hackett Group's AI XPLR™ and ZBrain™ platforms, companies can compare their performance against Digital World Class® standards. Share Using Celonis process intelligence and The Hackett Group's AI XPLR™ and ZBrain™ platforms – that leverage The Hackett Group's globally recognized enterprise benchmarking and business transformation IP – companies can compare their performance against Digital World Class® performance standards. This will allow clients to quickly identify the greatest ROI opportunities and harness unmatched process intelligence and agentic workflow solutions to achieve their value realization objectives. The partnership delivers: Clarity on the right tech investments : Combining The Hackett Group's industry benchmarks with Celonis process intelligence and its own benchmarks on leading metrics, such as cycle time, automation rate, and rework rate, organizations can now see which technologies, including AI, will drive best-in-class performance. As part of the partnership, The Hackett Group ® has certified the Celonis process intelligence operating benchmark framework. : Combining The Hackett Group's industry benchmarks with Celonis process intelligence and its own benchmarks on leading metrics, such as cycle time, automation rate, and rework rate, organizations can now see which technologies, including AI, will drive best-in-class performance. As part of the partnership, The Hackett Group has certified the Celonis process intelligence operating benchmark framework. Precision in their AI deployments : The Hackett Group's AI XPLR™ will be able to use process intelligence from the Celonis Process Intelligence Graph, to generate tailored, highly-impactful AI use cases and digital transformation recommendations. : The Hackett Group's AI XPLR™ will be able to use process intelligence from the Celonis Process Intelligence Graph, to generate tailored, highly-impactful AI use cases and digital transformation recommendations. AI that delivers measurable business outcomes at scale: Companies can turn the AI use case recommendations into executable agentic workflows using The Hackett Group's ZBrain™ Gen AI development platform, and orchestrate those agents with the Celonis Orchestration Engine. 'Together, we are redefining the way companies operate. By combining Celonis' unique process intelligence, benchmarking insights, and AI orchestration, we are enabling the operations of the future: AI-driven and continuously learning and improving,' said Carsten Thoma, President and Board Director at Celonis. 'We're helping companies move from intention to action and impact,' said Ted Fernandez, Chairman and CEO of The Hackett Group®. 'Celonis process intelligence lets companies understand how their business runs and how to make it run better. On that basis, AI XPLR™ identifies, designs and evaluates potential solutions, and ZBrain™ delivers the agentic workflows to drive the change.' About The Hackett Group® The Hackett Group, Inc. (NASDAQ: HCKT) is an IP and platform-based, Gen AI strategic consulting and executive advisory firm that enables Digital World Class® performance. Using AI XPLR™ and ZBrain™ – our ideation through implementation platforms – our experienced professionals help organizations realize the power of Gen AI and achieve quantifiable, breakthrough results, allowing us to be key architects of their Gen AI journey. Our expertise is grounded in unparalleled best practices insights from benchmarking the world's leading businesses – including 97% of the Dow Jones Industrials, 90% of the Fortune 100, 70% of the DAX 40 and 51% of the FTSE 100. Visit us at About Celonis Celonis makes processes work for people, companies and the planet. The Celonis Process Intelligence Platform uses industry-leading process mining and AI technology and augments it with business context to give customers a living digital twin of their business operation. It's system-agnostic and without bias, and provides everyone with a common language for understanding and improving businesses. Celonis enables its customers to continuously realize significant value across the top, bottom, and green line. Celonis is headquartered in Munich, Germany, and New York City, USA, with more than 20 offices worldwide. Trademarks The Hackett Group®, quadrant logo, and Digital World Class® are the registered marks of The Hackett Group®. Celonis and the Celonis 'droplet' logo are trademarks or registered trademarks of Celonis SE in Germany and other jurisdictions. All other product and company names are trademarks or registered trademarks of their respective owners. Cautionary Statement Regarding 'Forward-Looking' Statements This release contains 'forward-looking' statements within the meaning of Section 27A of the Securities Act of 1933 as amended and Section 21E of the Securities Exchange Act of 1934, as amended including statements regarding The Hackett Group, Inc.'s joint efforts with Celonis including expected benefits and anticipated outcomes. Statements including, without limitation, words such as 'expects,' 'anticipates,' 'intends,' 'plans,' 'believes,' 'seeks,' 'estimates,' or other similar phrases or variations of such words or similar expressions indicating present or future anticipated or expected occurrences or outcomes are intended to identify such forward-looking statements. These forward-looking statements are not statements of historical fact, are based on current expectations and assumptions and are subject to known and unknown risks and uncertainties. Risks and uncertainties include, but are not limited to, those related to the ability of the parties to perform their respective obligations contained in agreements between the parties, the effectiveness of the parties' products, services, or technologies, factors beyond The Hackett Group's control that could affect the outcome of the joint efforts as well as other factors that may cause The Hackett Group's actual results, performance or achievements to be materially different from the results, performance or achievements expressed or implied by the forward-looking statements contained in this press release as detailed in The Hackett Group's reports filed with the United States Securities and Exchange Commission. The Hackett Group, Inc. undertakes no obligation to update any forward-looking statement contained herein.
