Infosec stories

New UK cyber bill pushes critical sectors towards continuous offensive security testing as state-backed and criminal threats intensify.

Cyderes appoints Lana Knop as Chief Product Officer to steer post‑Lucidum product strategy and drive a new wave of AI‑powered security services.

Check Point launches AI-ready Exposure Management to plug remediation gaps, unifying threat intelligence, prioritisation and automated fixes.

SonicWall launches unified automation tools to cut alert fatigue, speed cyber threat remediation and streamline overstretched security teams.

Phishing campaign uses stolen logins and trusted RMM tools like GoTo Resolve and LogMeIn to quietly maintain access to corporate systems.

Cohesity has expanded its Identity Resilience tools to detect, block and rapidly undo attacks on hybrid Active Directory and Entra ID.

Brussels moves to tighten EU cyber rules, targeting high risk foreign vendors while streamlining certification and boosting sovereignty.

AppOmni study finds average SaaS breach costs USD $1.365m, as customers report big time savings, fewer audit issues and faster detection.

Data Privacy Day shifts focus from policy to proof, as firms embed control, resilience and design into complex hybrid data estates.

US cyber security firm WitFoo shifts its global base to New Zealand, making the country the launch pad for its “Cyber Grid” defence model.

New global survey warns a widening ‘complexity gap’ leaves AI-driven, multi-cloud environments outpacing organisations’ security defences.

Misconfigured cloud training labs on AWS, Google Cloud and Azure expose major firms to live attacks via overly permissive access roles.

Major firms are leaving known, actively exploited cyber flaws unpatched for six months or more, sharply heightening breach risks.

Politically themed LOTUSLITE phishing campaign hits US policy bodies, using DLL sideloading and espionage-focused backdoor tactics.

Bitdefender warns of a global surge in fake job emails posing as Amazon, Carrefour and the NHS, stealing data, money and account logins.

CrowdStrike cites a Forrester study claiming 273% ROI and USD $5m in three-year benefits from consolidating legacy endpoint security.

Rapid7 has launched a Microsoft-focused MDR service that fuses Defender telemetry with its SIEM and global SOC for unified threat response.

Check Point launches AI-ready Exposure Management suite to close remediation gaps as organisations leave half of known vulnerabilities unpatched.

Hybrid work fuels surge in device theft and visual hacking, as Kensington warns cheap physical locks could avert multimillion‑dollar breaches.

Gartner predicts half of organisations will adopt zero-trust data governance by 2028 as synthetic AI content undermines traditional data trust.