Researchers at Authomize have identified four security risks in the identity and access management (IAM) platform Okta, which could expose personal identifiable information (PII), allow for account takeovers, or destroy organizational data. The issues include password leakage, unencrypted data sharing, unsafe default configurations, and identity log spoofing. It was noted these findings didn’t classify as vulnerabilities, with Okta stating its features function as intended. However, the researchers insist that independent security measures ought to be proactively implemented in relation to IAM tools.
New GhostGPT AI Chatbot Facilitates Malware Creation and Phishing
Cybercriminals are using a malicious artificial intelligence (AI) chatbot called GhostGPT for activities such as creating malware and phishing emails. GhostGPT is a tool being
