Latest news with #Zenity
Hindustan Times
17-06-2025
- Hindustan Times
Emails with ‘Unsubscribe' link may steal your personal data
Your inbox often fills with unwanted emails, and many messages end with a familiar phrase: 'Click here to unsubscribe.' But cybersecurity experts now warn that hitting that unsubscribe button might not be as safe as you think. In some cases, clicking the link could expose you to new online threats. When you click an unsubscribe link, you leave the protected environment of your email client and enter the open web, said Keanini, a cybersecurity expert, to The Wall Street Journal. This transition can put you at risk, as some unsubscribe links lead to malicious websites. According to DNSFilter, about one in every 644 clicks on unsubscribe links directs users to harmful sites. Also read: How to quietly limit someone on Instagram without blocking, unfollowing, or causing drama One common danger is that attackers use unsubscribe clicks to confirm whether your email address is active. Michael Bargury, CTO of AI security firm Zenity, explains to The Wall Street Journal that clicking the link tells spammers you are a real person who engages with emails. While this might not cause immediate damage, it can make you a bigger target for future scams. Once attackers verify your email address, they may start gathering information on you to attempt scams or extortion through social engineering, warns Charles Henderson, executive VP of cybersecurity services at Coalfire, The Wall Street Journal reported. Another risk is that some unsubscribe links redirect users to fake websites designed to steal login details or install malware. Also read: How to easily compress data on your iPad to save storage space 'If the site asks for your password to unsubscribe, don't provide it,' Bargury advises. Instead, he recommends opening a new browser window and manually visiting the sender's official website to adjust email settings. Some legitimate companies send users to pages requiring email re-entry for unsubscribing. Henderson explains this happens because some unsubscribe systems use a single generic link for all recipients, not personalised links. Still, he advises against clicking unsubscribe links from unknown senders. 'If you don't trust the source, why trust their unsubscribe link?' he says. Also read: 5 easy ways to improve your internet connectivity while waiting for Starlink in India Though malware infection via unsubscribe links is possible, Henderson notes it's an unlikely method for attackers. To succeed, hackers must exploit specific browser vulnerabilities and target users who click those fake links. Experts agree that using 'list-unsubscribe headers', buttons in email headers provided by many email services, is a safer way to opt out. These links don't lead you to external websites, which reduces the risk. Apple's 'Hide My Email' feature and similar browser extensions offer another privacy layer by generating random forwarding addresses, which helps users keep their real inboxes private while signing up for online offers.
Yahoo
22-05-2025
- Business
- Yahoo
Zenity Enhances Security from Buildtime to Runtime for Enterprise AI Agents with Copilot Studio
Zenity and Microsoft Copilot Studio deliver end-to-end security to help enterprises scale AI Agent adoption with visibility, control, and real-time threat protection. TEL AVIV, Israel, May 22, 2025 /PRNewswire/ -- Zenity, a leading end-to-end security and governance platform for AI Agents, today announced an enhancement to integration with Microsoft Copilot Studio, to provide enterprises with continuous visibility, vulnerability assessment, and threat detection to safely adopt and scale AI Agents. Microsoft Copilot Studio enables organizations to rapidly design and deploy custom AI Agents using natural language prompts, logic flows, and pre-built connectors across the Microsoft 365 ecosystem. Microsoft offers a strong foundation of governance and controls at buildtime. Zenity adds a layer of runtime security, seamlessly ensuring enterprises securely adopt AI agents at scale—from development through deployment and ongoing usage. Zenity and Microsoft Copilot Studio empower enterprises to: Scale copilots confidently with embedded security guardrails - Ensure better compliance and security with agents built in Copilot Studio by enforcing best practices and reducing operational risk from day one. Apply policy enforcement from buildtime through runtime - Prevent vulnerabilities, overly broad access, and data exposure by embedding policy enforcement. Detect and respond to agent threats in near real time - Surface risks like prompt injection, data leakage, or behavioral anomalies - then respond with automated actions based on logs. Gain full continuous visibility into agent activity, usage, and access - Ensure visibility to understand not just what's happening but why, by who, and with what data. "Zenity enables enterprises to innovate with AI Agents safely and confidently by ensuring that every agent is governed, secured, and observable from buildtime to runtime," said Harrison Johnson, Vice President of Partners and Alliances, Zenity. "Through our work with Microsoft Copilot Studio, we are empowering organizations to scale AI Agent adoption without compromising security. Zenity empowers enterprises to safeguard critical data, govern AI Agent activity, and neutralize threats in near real time. The reality is that the more useful an AI Agent becomes, the more data it requires—making it inherently vulnerable. Zenity ensures enterprises can confidently leverage their AI's full potential, innovating securely from buildtime through runtime" Zenity's end-to-end platform unifies AI Observability, AI Security Posture Management (AISPM), and AI Detection & Response (AIDR), enabling a complete and proactive approach to AI Agent security across the enterprise. Whether agents are built by business users or professional developers, Zenity provides organizations with the tools they need to empower innovation without sacrificing visibility or control. "Zenity shares Microsoft's vision for empowering enterprises to innovate with AI responsibly and securely," said Shay Gurman, Vice President, Microsoft Copilot Studio, Microsoft. "Our collaboration combines trusted technology with deep security expertise, helping organizations confidently adopt, govern, and scale AI agents in an ever-evolving threat landscape." AvailabilityZenity for Microsoft Copilot Studio is available now and will be showcased at Microsoft Build - Zenity CEO and co-founder Ben Kliger is presenting on Thursday, May 22 at 8:30 a.m. PST in room 606. About Zenity Zenity is a leading end-to-end security and governance platform for AI Agents. Built for security teams to enable business innovation, Zenity delivers comprehensive protection across the entire AI Agent lifecycle – combining observability, posture management, and threat detection in one unified platform. Established in 2021, Zenity is trusted by many of the world's leading Fortune 500 enterprises to manage AI Agent risk at scale. Learn more at View original content to download multimedia: SOURCE Zenity Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
Techday NZ
24-04-2025
- Business
- Techday NZ
Zenity secures ChatGPT Enterprise use with expanded AI oversight
Zenity has announced the expansion of its AI agent security and governance platform with integration for ChatGPT Enterprise. The integration allows organisations using ChatGPT Enterprise to secure and govern the adoption, development, and usage of AI agents within the platform through the OpenAI ChatGPT Enterprise Compliance API. Zenity's platform now provides security teams with oversight not only for ChatGPT's existing collaborative features, such as knowledge file uploads and Canvas, but also for the custom AI agents created by employees. The growing use of ChatGPT Enterprise in enterprise workflows is prompting new security considerations as users build, host, and collaborate with bespoke GPTs that may access sensitive data. Over 80% of Fortune 500 companies have adopted ChatGPT Enterprise within the nine months since its launch, according to Zenity. As these organisations expand their use of agentic AI, security teams are increasingly tasked with maintaining visibility, control, and compliance across a wider range of activities. Zenity's approach centres on agent-level security, focusing on what each AI agent is designed and permitted to do, the data it accesses, the identities it adopts, and its communications with other agents in an organisation. The integration with the ChatGPT Enterprise Compliance API allows Zenity's platform to provide continuous observability of custom GPTs, Canvas documents, tools, knowledge files, and user interactions across the enterprise environment. Security measures are enforced from the initial stages of agent development. Zenity's policy enforcement, identity controls, and its AI Security Posture Management (AISPM) capability enable discovery of vulnerabilities, excessive permissions, and hardcoded secrets during GPT creation. Ongoing threat detection is supported by Zenity's behaviour-based engine. The platform can identify threats such as prompt injection, retrieval-augmented generation (RAG) poisoning, data exposure, and unauthorised actions using its AI Detection & Response (AIDR) system. Zenity also provides automated policy enforcement and allows security teams to remediate risks at scale using actions such as deleting risky agents, files, or conversations through its click-to-fix options. The entire AI agent lifecycle, from build time to runtime, falls under the platform's governance. Zenity's integration aims to balance robust security with business agility for organisations advancing their use of AI. Commenting on the announcement, Ben Kliger, Co-Founder and CEO of Zenity, said: "Adoption of ChatGPT Enterprise is accelerating, and with it comes a new responsibility for security teams to guide its safe, effective use across the organization. This integration with the ChatGPT Enterprise Compliance API is an important step forward in helping security leaders manage risk without slowing innovation. Securing AI Agents for some of the largest enterprises in the world, we are proud to expand our capabilities as the first and only end-to-end platform, spanning buildtime to runtime across environments, to help define AI Agent security and governance experiences for ChatGPT Enterprise users, and provide the foundation security teams need to lead innovation in their organizations with confidence." Zenity's extension of capabilities arrives as industry analysts highlight autonomous AI—agentic AI— as a significant trend affecting workplaces by 2025, with a predicted increase in routine decision-making handled by AI agents. Security firms such as Zenity are responding to this trend by offering solutions that allow companies to capitalise on the efficiency gains of AI while managing associated risks.
