Secure GenAI
Secure GenAI Podcast
Oracle cont, US bank regulator hack, 3rd party API compromised, Quantum course launch, Google Security Agents.
0:00
-5:10

Oracle cont, US bank regulator hack, 3rd party API compromised, Quantum course launch, Google Security Agents.

GenAI Safety & Security | April 7 - April 14, 2025

Highlights

🚨 Oracle confirms breach.
🏛️ US bank regulator hacked.
💥 4.4M WooCommerce records leaked.
💡 Quantum course launched.
🛡️ Google Unified Security.

Notice: Y2 GenAI Safety and Security is on GumRoad and Amazon with paperback.

Secure GenAI is a reader-supported publication. To receive new posts and support my work, consider becoming a free or paid subscriber.

🚨Oracle Official Confirmation: Dark Reading

  • Two servers compromised.

  • Usernames and passwords exposed.

  • Denied Oracle Cloud Breach.

  • Useless because of encryption.

  • Notification to impacted customers.

Mitigation: Always go to encryption.

Related: Secured by Demand.

🏛️ US Bank Regulator Email Hack: Cybersecurity Dive

  • 103 email accounts compromised.

  • 150,000+ emails per year.

  • Year-long unauthorized access.

  • Sensitive financial data exposed.

  • Internal & external reviews launched.

Mitigation: Implement zero-trust security, enhance email security measures.

Related: US Treasury vendor details, US Treasury Breach.

💥Massive 3rd-Party API Breaches: HackRead & HackRead

  • WooCommerce: 4.4M records stolen.

  • Magento: 700K user data leaked.

  • Data includes PII and business info.

  • Included Nvidia, Texas gov and NIST.

  • Third-party integrations exploited.

  • i.e, Stripe, Salesforce, Paypal, etc.

Mitigation: Audit third-party integrations, strengthen API security.

💡Quantum Computing for Policymakers: Google Blog

  • Apolitical launches new course.

  • Supported by Google Quantum AI.

  • Focus on tech and implications.

  • For government leaders and policy makers.

  • Urge for the future preparation ASAP.

Heads Up: Monitor quantum computing developments and policy discussions.

Related: Singtel Advances Quantum Safety,

Review: Quantum breaks encryption.

·
October 15, 2024
Review: Quantum breaks encryption.

Chinese researchers successfully used a quantum computer to crack an AES-256 encryption. (Publication is still under a peered review.)

🛡️ Google Unified Security Launch: Google Cloud Blog

  • Revealed at Google Cloud Next 2025.

  • Security agents & Gemini.

  • Integrates threat intelligence & operations.

  • Enhanced cloud & browser security.

  • Agents: Alert triage, Maleware analysis.

Heads Up: Our upcoming Security Agents review and more in our near future.

Discussion about this episode

User's avatar