Mar 01, 2025Ravie LakshmananPrivacy / Data Protection Firefox browser maker Mozilla on Friday updated its Terms of Use a second time within a week following criticism overbroad language that appeared to give the company the rights to all information uploaded by users. The revised Terms of Use now states – You give Mozilla the rights … Read more
Roughly 12,000 hardcoded live API keys and passwords were found on Common Crawl, a large dataset used to train LLMs such as DeepSeek.Security pros say hardcoded credentials are dangerous because hackers can more easily exploit them to gain access to sensitive data, systems, and networks. The threat actor in this case practiced LLMJacking, in which cybercriminals … Read more
Arkansas Attorney General Tim Griffin sued General Motors and its subsidiary OnStar this week, alleging the car manufacturer deceived Arkansans by collecting and selling driver information to third parties, who then sold the data to insurance companies. The lawsuit alleges GM collected location data on all drivers who activated the internet connection for their GM … Read more
Hackers claim to have published a trove of sensitive data belonging to IVF patients after a cyberattack on Genea, one of Australia’s largest fertility providers. Genea said last week that it had experienced a cybersecurity incident that led to sensitive patient information potentially being compromised. In a statement given to TechCrunch on Wednesday, Genea CEO … Read more
By Jim Alcove The rise of AI co-pilots is exposing a critical security gap: sensitive data sprawl and excessive access permissions. Related: Weaponizing Microsoft’s co-pilot Until now, lackluster enterprise search capabilities kept many security risks in check—employees simply couldn’t find much of the data they were authorized to access. But Microsoft Copilot changes the game, … Read more
