Risk Management

Legacy Python Packages Expose Risk of PyPI Supply Chain Attacks

Details: Parent Category: News:; Category: Risk Management

Cybersecurity researchers have uncovered vulnerable code embedded in several legacy Python packages, raising concerns about potential supply chain attacks against the Python Package Index (PyPI). The issue stems from a domain takeover risk linked to outdated bootstrap scripts used by the build automation tool zc.buildout. According to ReversingLabs, these scripts still reference a long-abandoned domain, python-distribute[.]org, which is now available for purchase.

Singapore’s MAS Holds Bank Leaders Accountable for AI Risk Management

Details: Parent Category: News:; Category: Risk Management

The Monetary Authority of Singapore (MAS) has released new AI Risk Management Guidelines, placing responsibility on bank board members and senior management to oversee risks arising from AI deployment.

NY Regulator Issues New Guidance on Third-Party Cybersecurity Risks

Details: Parent Category: News:; Category: Risk Management

The New York State Department of Financial Services (NYDFS) has released updated cybersecurity guidance outlining how financial services firms should manage risks associated with third-party service providers (TPSPs).

69% of CEOs to allocate over 10% of budgets to AI over the next 12 months

Details: Parent Category: News:; Category: Risk Management

CEO confidence in the global economy has hit a five-year low, according to the KPMG 2025 Global CEO Outlook, as corporate leaders focus strategic investments in AI, talent and risk resilience to sustain and fuel future growth.The annual survey of more than 1,300 global leaders reveals a cautious outlook among CEOs, driven by persistent geopolitical tensions and economic uncertainty.

Critical Vulnerabilities in Wondershare RepairIt Expose User Data and AI Models

Details: Parent Category: News:; Category: Risk Management

Cybersecurity researchers have discovered two severe authentication bypass vulnerabilities in Wondershare RepairIt, an AI-powered data repair and photo editing application.

Bank of England Fines Vocalink £11.9M Over Risk Management Failures

Details: Parent Category: News:; Category: Risk Management

The Bank of England has fined UK payments operator Vocalink £11.9 million for failing to meet a February 2022 deadline to address weaknesses in its risk management and governance framework.

FSB Chair Warns Crypto May Soon Pose Systemic Financial Risk

Details: Parent Category: News:; Category: Risk Management

Cryptocurrency may be nearing the point where it poses a systemic risk to the global financial system, according to Klaas Knot, outgoing chair of the Financial Stability Board (FSB). Speaking in Spain, Knot acknowledged that despite previous disruptions in the crypto space—including bankruptcies, liquidity issues, and fraud—the FSB had not considered the sector a systemic threat until now.

Critical SAP NetWeaver Vulnerability Exploited in Zero-Day Attacks

Details: Parent Category: News:; Category: Risk Management

A critical vulnerability, CVE-2025-31324, in SAP’s NetWeaver platform, specifically within the Visual Composer’s Metadata Uploader component, is under active exploitation.

Open Source Content Management

Nav view search

Navigation

Search

Legacy Python Packages Expose Risk of PyPI Supply Chain Attacks

Singapore’s MAS Holds Bank Leaders Accountable for AI Risk Management

NY Regulator Issues New Guidance on Third-Party Cybersecurity Risks

69% of CEOs to allocate over 10% of budgets to AI over the next 12 months

Critical Vulnerabilities in Wondershare RepairIt Expose User Data and AI Models

Bank of England Fines Vocalink £11.9M Over Risk Management Failures

FSB Chair Warns Crypto May Soon Pose Systemic Financial Risk

Critical SAP NetWeaver Vulnerability Exploited in Zero-Day Attacks

More Articles ...