Infosec stories
Merchants face higher losses and uneven compliance burdens as a new report says fraud controls are failing to keep pace with social engineering.
Human review remains central as 77% of security professionals back AI tools in operations, with 88% already adding guardrails.
Senior staff are increasingly in the crosshairs as suspected former Black Basta affiliates use Teams impersonation to seize remote access.
Breach risk stays high for smaller firms because stolen credentials and weakly joined controls let attackers slip past existing tools.
The Tel Aviv startup says enterprises need runtime controls as AI agents take on more privileged tasks across core business systems.
Security teams will get Claude tools inside TrendAI Vision One as the firms target AI-driven attacks and faster incident response.
Malicious rules are helping hackers hide in Microsoft 365 inboxes, with Proofpoint saying it saw the tactic in 10% of taken-over accounts.
Security teams gain a single view of shadow AI as Cloudflare and Wiz connect traffic inspection with cloud asset mapping to spot exposed data.
Fraud teams can now tap verified mobile threat data in backend systems, as Appdome extends IDAnchor with server-to-server risk intelligence.
Small IT teams get a single console for patching, remote support and security alerts as endpoint management and response are merged globally.
The new tool lets providers turn real phishing emails into branded training videos, helping staff learn from attacks they have actually seen.
Thousands of vetted cybersecurity staff will gain broader access to OpenAI tools as the company loosens safeguards for defensive research.
The cloud-hosted backup tool aims to cut downtime for MSPs and IT teams hit by ransomware or outages, without their own DR kit.
Attackers hid malware in familiar package workflows, prompting Sonatype to log 21,764 malicious open-source packages in the quarter.
Many firms still lack a full encryption inventory, leaving them exposed as experts debate whether quantum is an urgent or distant cyber risk.
Most companies still lack confidence in their response as 73% of senior cyber security decision-makers say they are not ready for a major attack.
Researchers could face legal uncertainty unless ministers modernise a 1990 cyber law that campaigners say is hindering defence and investment.
Businesses with public-facing IP addresses are under constant threat as a new tracker shows 71,793 automated attack attempts in 24 hours.
SMEs are demanding clearer incident response as cyber attacks rise, boosting Talion’s case for a model built around decision-making over alerts.
Customer data and service security may be at risk, as nearly one in five UK telecom web servers leak configuration details, a study finds.
