Americans are becoming more effective at avoiding spam calls and texts, but new research suggests that the strategy comes with an unexpected cost. A new survey of 1,000 Americans from privacy company Cloaked, revealed that two-thirds of respondents have missed…
Tag: Information Security Buzz
AI-assisted software engineering is creating a new delivery paradox
AI can generate code faster than most software organizations can absorb it. This should be a productivity breakthrough, but it also exposes a larger problem: many of the processes surrounding software delivery still happen at human speed. A new white…
Sysdig uncovers first documented agentic ransomware operation
Security researchers at Sysdig have documented what they believe is the first documented case of an AI agent running a ransomware operation from end to end. Dubbed JADEPUFFER, the operation used a large language model (LLM) to automate an attack…
Filigran report: Organisations can see their threats but can’t act fast enough
Fragmented tools and manual processes are widening the gap between threat awareness and effective CTEM. Only 41% of organisations have a fully consolidated view of cyber risk exposure, and security teams spend 42% of their time investigating risks that turn…
The next phase of endpoint security starts with simplicity
For years, enterprise endpoints were expected to handle everything locally, including productivity, collaboration, storage, and security, while supporting increasingly complex operating systems and applications. But as more workloads have moved into cloud-delivered environments, that model has started to break down.…
Klue supply chain breach exposes Salesforce data at several security firms
A supply chain attack targeting Klue, a competitive intelligence platform, has lead to the theft of Salesforce data from multiple entities, including several cybersecurity vendors. Klue disclosed that threat actors had gained unauthorized access to part of its integration infrastructure…
What Are AI SOC Agents? Use Cases, Architecture, and the Leading Vendors
The Alert Volume Problem That Created This Category The SANS 2025 Global SOC Survey found that 85% of SOCs trigger incident response primarily from endpoint alerts, while 42% admit to ingesting all data into their SIEM with no structured plan…
ShinyHunters targets Oracle PeopleSoft customers through critical zero-day
Oracle has issued a security alert to customers about a critical vulnerability affecting PeopleSoft environments after the notorious threat actor ShinyHunters claimed it used a previously unknown flaw to compromise over 100 entities. The vulnerability CVE-2026-35273 is in Oracle PeopleSoft…
AI-Powered Attacks Become Top Concern for Security Professionals, New Filigran Survey Reveals
AI-powered attacks are the biggest cybersecurity concern among security professionals. Forty-one percent identified AI-powered attacks at scale as their biggest security concern, nearly double the number citing supply chain risk (21%) or unknown threats (21%). AI-driven threats and what security…
SIG report: AI-generated code is linked to twice the security risk and rising technical debt
AI-supported coding has progressed from experimental to the norm in organizations, yet technical debt, security risks, and costs could be piling up much faster than anyone realizes. This is one of the key takeaways from the Software Improvement Group (SIG)…
Miasma worm spreads from Red Hat packages to Microsoft repositories
A rapidly developing software supply chain attack known as Miasma is one of the latest to move from targeting Red Hat npm packages to infecting numerous Microsoft GitHub repositories. Cloudsmith researchers described the Miasma attack, noting it began after the…
Zero Trust: Beyond the hype, toward reality
Security is approaching Zero Trust all wrong. Vendors are promising too much and delivering too little. Marketing hype has overtaken practical security, and organizations are chasing an idea of Zero Trust that doesn’t (and arguably shouldn’t) exist in reality. The…
From AI hype to operational reality: A practitioner’s framework for securing agentic systems
Most organizations already have AI governance discussions underway. They have policies, working groups, acceptable-use guidance, and long lists of principles around responsible AI adoption. But as enterprises move deeper into agentic AI, many security teams are discovering that governance alone…
Dutch police, NCSC take down major botnet
A collaboration between the Dutch National Police and the National Cyber Security Centre (NCSC), has seen a large botnet being shut down. In this operation, 200 servers were identified and addressed as well. These servers controlled millions of infected devices,…
The missing link in cyber resilience: Bridging the identity visibility gap
The enterprise security perimeter didn’t evolve; it dissolved, and what replaced it isn’t a newer, stronger boundary. It’s the absence of one. Today’s environment is dynamic and borderless, defined not by firewalls or network segments, but by identities: human users,…
Palo Alto warns of active exploitation of GlobalProtect authentication bypass flaw
Palo Alto Networks has alerted customers about the ongoing exploitation of the authentication bypass vulnerability in PAN-OS GlobalProtect. The vulnerability, tracked as CVE-2026-0257, lets unauthenticated actors bypass security measures and set up unsanctioned connections to vulnerable GlobalProtect portals and gateways.…
Artificial intelligence and elections: When an election is annulled because of TikTok
On 6 December 2024, the Constitutional Court of Romania took an unprecedented step: it annulled the first round of the country’s presidential election. Not over ballot-box fraud, nor over irregularities in the count, but because one candidate, the previously unknown…
CrowdStrike, Google, and Shadowserver Foundation disrupt Glassworm botnet
CrowdStrike has shared details of a coordinated operation used to disable the Glassworm botnet, which targets software developers and leverages open-source ecosystems to deploy malware. The CrowdStrike Counter Adversary Operations team, in partnership with Google and the Shadowserver Foundation, took…
Threat Actors Deploy Tiflux RMM for Persistent Remote Access
Threat actors are abusing legitimate RMM tools as a means of creating persistence inside victims’ systems, using the Tiflux RMM tool. Tiflux is a reputable Brazilian software platform used by IT departments and Managed Service Providers (MSPs) for managing IT…
Building cyber resilience for mission-critical operations in 2026
For a long time, cybersecurity has been viewed as a technology-based problem, with leaders focused on crafting intelligent protective systems designed to prevent major attacks. However, as the threats faced by modern organizations grow increasingly sophisticated, agile, and unpredictable, the…