Marco Casassa Mont

EU designates 19 tech providers as critical infrastructure Security pros say more regulation is inevitable in the wake of Cloudflare, AWS outages.

FYI - 'The EU’s recent naming of 19 third-party companies as “critical” tech providers was viewed by industry experts in the U.S. in a different light following the disruption caused by Cloudflare outage'
www.scworld.com/news/eu-desi... #cybersecurity #CriticalInfrastructure #NIS2 #DORA

Google boss says trillion-dollar AI investment boom has 'elements of irrationality' In an exclusive BBC interview, Sundar Pichai hailed artificial intelligence as an

On the potential coming AI bubble burst and its impact ... 'Every company would be affected if the AI bubble were to burst, the head of Google's parent firm Alphabet has told the BBC'
www.bbc.co.uk/news/article... #AI #bubble #BBC #Google

Full day at BMT Office, today. It was great to meet with so many cyber security team colleagues, make major progress in various Customers' activities and discuss strategic initiatives! #BMT #cybersecurity

Launching the AI Model Arena The Defence AI Centre has worked with industry to develop a new tool that will help redefine how Defence evaluates and procures AI technologies.

FYI - the Defence AI Centre is launching the AI Model Arena to help redefine how Defence evaluates and procures artificial intelligence technologies ... www.gov.uk/government/n...
#DAIC #Defence #MOD #AI #AIModelArena #JSP936 #performance #reliability #robustness #security

OWASP Global AppSec conference: How to make AI work for you instead of taking your job AI agents can now do most of what any white-collar worker does for a living, keynote speaker Daniel Miessler said, but you can harness that power to make yourself much more productive.

Insightful keynote speaker's talk at OWASP 2025 Global AppSec Conference ...
-
www.scworld.com/resource/owa... #OWASP #cybersecurity #AI #jobs

UK invests £14m in new quantum projects to boost health, defence and transport innovation The UK Government has announced more than £14 million in new funding to accelerate the commercial use of quantum technology across healthcare, defence, transport and energy, in a move it says will hel...

FYI - 'The UK Government has announced more than £14 million in new funding to accelerate the commercial use of quantum technology'
-
bmmagazine.co.uk/news/uk-quan... #QuantumTechnology #UK #investments #NQTP

Ref paper:
www.google.com/url?sa=t&sou...

Experts uncover flaws in hundreds of AI safety and performance tests A new study by leading computer scientists has found that hundreds of the most widely used tests to assess AI models are deeply flawed.

A key area to further investigate and understand. If these benchmark weaknesses are confirmed, then AI evaluation scores might indeed be irrelevant or misleading ... '
www.computing.co.uk/news/2025/ai... #AI #Safety #AIModelAssessment #Benchmarks #Weakness

Building the next generation of cyber leaders: Inside the new InfraGard National Members Alliance–CyberRisk Collaborative partnership INMA will provide information on the CRC Accelerator Program (CRC+), along with access to special pricing, to the 40,000+ members of InfraGard®.

FYI - 'A new alliance between the InfraGard National Members Alliance and CyberRisk Collaborative aims to strengthen the nation’s collective defense ...'
-
www.scworld.com/resource/bui... #CriticalInfrastructure #CISO #InfraGard #CyberLeaders #cybersecurity

ISC2 Security Congress: The shaky state of AI security today AI development is progressing by leaps and bounds. Too bad AI security isn't keeping up, said several speakers at the ISC2 2025 Security Congress.

Insightful and compelling article summarising top presentations and talks about AI and cyber security at @ISC2 Security Congress 2025. The outcomes are worrying ...
-
www.scworld.com/news/isc2-se... #ISC2 #cybersecurity #AI #StateOfAISecurity

How neighbors could spy on smart homes - Help Net Security A study reveals how neighbors can spy on smart homes by tracking encrypted WiFi signals to uncover daily habits, device use, and layouts.

When your nosy neighbour gets some help from technology and becomes a cyber spy ...
www.helpnetsecurity.com/2025/10/30/s... #cybersecurity #CyberSpy #Neighbour

70% of CISOs say internal conflicts more damaging than cyberattacks CISO-CEO tension and unclear authority under duress are imperiling incident response. CISOs must establish not only clear response plans but also leadership alliances centered on business value, advis...

Interesting investigation and common-sense conclusions about the consequences of having unclear authority under duress ... www.csoonline.com/article/4079...
#cybersecurity #CISO #Roles #conflicts #cyberattacks #Response

Meta and TikTok in breach of EU law, preliminary findings suggest The European Commission (EC) has said that Meta and TikTok are in breach of transparency obligations under the EU Digital Services Act (DSA).

FYI - additional developments involving Meta and TikTok and their potential breach of EU Law ...
www.computing.co.uk/news/2025/le...

#EU #DSA #TeasparencyBreach #SocialMedia #Meta #TikTok

National Cyber Director Outlines Vision for New Cybersecurity Strategy - HSToday National Cyber Director Sean Cairncross provided homeland security stakeholders with a preview of the Trump administration's forthcoming national cybersecurity strategy on Friday, October 24, describi...

FYI - 'National Cyber Director Sean Cairncross provided homeland security stakeholders with a preview of forthcoming national cybersecurity strategy' #cybersecurity #strategy #US #ONCD www.hstoday.us/subject-matt...

Apple loses £1.5bn UK class action over 'excessive' App Store fees Apple has suffered a major legal defeat in the UK after the Competition Appeal Tribunal (CAT) ruled that the company abused its dominant position in ...

FYI - yet another important legal case that might set a new trend ... 'Apple has suffered a major legal defeat in the UK ...' www.computing.co.uk/news/2025/le...
#LegalDefeat #Apple #UK #DominantPosition

Amazon looking to cut 600,000 roles through automation, report Amazon aims to automate 75% of its operations by 2033, potentially avoiding the hiring of over 600,000 US workers by that time, with 160,000 roles ...

If confirmed, this will set a new trend. Lots of thinking and planning are required for this level of extreme automation. See impact of recent AWS Services disruption ... -
www.computing.co.uk/news/2025/am... #AWS #automation #JobCuts #Robotics #Resilience #cybersecurity

Google introduces agentic threat intelligence for faster, conversational threat analysis - Help Net Security Google launches agentic threat intelligence to help security teams analyze threats faster through conversational, AI-driven research tools.

Interesting developments in the area of Conversational Threat Intelligence by Google ...
www.helpnetsecurity.com/2025/10/21/g... #cybersecurity #CTI #ConversationalThreatAnalysis #AgenticPlatform #Google

CISOs face quantum leap in prioritizing quantum resilience Industry progress toward post-quantum cryptography (PQC) remains slow due to uneven prioritization and budget constraints in spite of acknowledged urgency and looming deadline.

Start exploring and acting on PQC now ... 'Industry progress toward post-quantum cryptography (PQC) remains slow due to uneven prioritization and budget constraints in spite of acknowledged urgency and looming deadline'
www.csoonline.com/article/4074... #cybersecurity #QuantumComputing #PQC

Cisco: Most companies don't know what they're doing with AI : Only 13% are AI-ready; the rest are bolting it on and hoping for ROI

It sounds about right ... 'Contrary to popular belief, you can't succeed in business (or AI) without really trying. Many orgs are jumping on the AI bandwagon without the infrastructure they need to make it work or track results'
www.theregister.com/2025/10/15/c... #AI #Readiness #outcomes

Satellites found exposing unencrypted data, including phone calls and some military comms | TechCrunch Researchers spent the past year alerting affected organizations, including T-Mobile and AT&T, but warn that large amounts of satellite data will remain unencrypted and exposed for some years to come.

Worrying findings - 'As many as half of all geostationary satellites in Earth’s orbit are carrying unencrypted sensitive consumer, corporate, military information, making this data wide open to eavesdropping'
-
techcrunch.com/2025/10/14/s... #cybersecurity #Satellites #Data #Encryption

The Cybersecurity Skills Gap and the Role of Diversity

FYI - 'Half of businesses have a basic technical cybersecurity skills gap, according to the government’s cybersecurity skills in the UK labour market 2025 survey. Why are the numbers so low?'
-
insight.scmagazineuk.com/the-cybersec... #cybersecurity #SkillGap #RoleOfDiversity

Government develops Cyber Resilience Index for core UK infrastructure System is being established by various government departments working with the National Cyber Security Centre and other stakeholders, with aim of providing a ‘holistic’ view of security and major thre...

FYI - 'The government is developing a new methodology for measuring the cyber resilience of key UK infrastructure across all critical sectors'
-
www.publictechnology.net/2025/10/09/n... #cybersecurity #CyberResiluence #CoreInfrastructure #UK #CRI #NCSC #CNI #CabinetOffice

Deloitte refunds Australian government over AI in report : Big Four consultancy billed Canberra top dollar, only for investigators to find bits written by a chatbot

A wake-up call for orgs not only to enforce robust AI Governance policies, processes and procedures (for anything generated by GenAI/LLM, from text to code) but also to persist with traditional QA checks ...
-
www.theregister.com/2025/10/06/d... #Deloitte #GenAI #LLM #hallucinations #QA

The true cost of cyber hacking on businesses Are this year's major attacks the

Insightful and compelling BBC article on the true extent of cyber attacks on UK business and the weak spots that allow them to happen ...
www.bbc.co.uk/news/article... #BBC #cybersecurity #cyberhacking #cyberattacks #costs #supplychain #vulnerabilities

Yet again another great, free, very informative ISC2 webinar by Steve Piper, this time focusing on the dual role of AI for Cyber Defence and Cyber Offence and tips on how to prepare for AI Threats ...
www.brighttalk.com/webcast/260/... #ISC2 #cybersecurity #AI #CyberDefence #CyberOffence

AI Bubble Watch: Is it a Floater or a Popper? Analysis: Exploding valuations and mountains of debt co-exist with a US government shutdown. How long can we stay on the hype-cycle rollercoaster?

Ongoing debates on the coming AI Bubble Burst ... Or is it a Floater 😀?
-
www.theregister.com/2025/10/03/a... #AI #AIBubble #Floater #Buster

When loading a model means loading an attacker - Help Net Security Attackers can hide malicious code in shared machine learning models. Learn how to manage machine learning model security and protect systems.

Very timely study providing additional evidence about the cyber risks of downloading and using third parties' AI models. On the importance of investing in AI Security Governance
www.helpnetsecurity.com/2025/10/03/r... #AI #AIModels #Risks #cybersecurity #SupplyChainAttacks #AISecurityGovernance

The energy sector is ground zero for global cyber activity - Help Net Security The energy sector has become a prime target for cyberattacks. Power grids and fuel networks attract both criminals and state-backed groups.

Very relevant and compelling study on patterns in cyber threat activities for the energy sector. Clever use of AI, as an enabler of this study ...
-
www.helpnetsecurity.com/2025/10/02/g... #EnergySector #CyberAttacks #RandD #GeoPolitics #AI

CISOs advised to rethink vulnerability management as exploits sharply rise Surge in vulnerabilities and exploits leaving overloaded security teams with little recourse but to embrace risk-based approaches to patching what they can.

On the importance of rethinking vulnerability and patch management. Moving towards a risk-driven approach ...
-
www.csoonline.com/article/4065... #cybersecurity #VulnerabilityManagement #RiskBasedVM

If you can't use AI then it's bye bye, Accenture tells staff ai-pocalypse: Consultancy says machine learning advice is making bank

If confirmed, this is likely to be a good incentive at Accenture to become AI-proficient or learn new skills ...
-
www.theregister.com/2025/09/26/a... #AI #Accenture #AIproficiency #NewSkills