Attack Surface Management stories
Security teams are still struggling to turn vulnerability alerts into fixes, leaving companies exposed for months when IT and operations must act separately.
Security teams can now query Silent Push data through Claude and ChatGPT after the platform added AI access, bulk enrichment and reorganised modules.
Organisations risk missed exposures as cloud, APIs and AI systems change far faster than annual security checks can keep up.
Security teams want daily scanning and clearer risk rankings as cloud sprawl and third-party reliance widen attack surfaces, a survey found.
The acquisitions deepen Accenture's push into industrial cyber defence as it targets power grids, pipelines and data centres.
Demand for AI security controls is rising as embedded tools in SaaS platforms expand the attack surface and strain security teams.
Security teams could cut wasted remediation work as the update helps separate blocked exposures from those attackers can still exploit.
The free check could help security teams uncover overlooked Java runtimes before AI-driven attackers exploit known flaws and outdated versions.
Tenable's move with Anthropic could help security teams cut vulnerability backlogs, speeding remediation before attackers exploit exposed systems.
The integrations aim to close security gaps as more firms run AI in production across gateways, APIs and models.
With AI speeding up attacks, 53% of security leaders say point-in-time tests are already outdated by the time reports land.
The move would deepen SailPoint's reach into fast-growing machine identity risks as firms race to control AI agents and cloud credentials.
Customers will be able to buy software supply chain security with advisory and managed services as NetRise widens its route to market through partners.
Older, internet-facing IIS servers are being singled out by China-linked hackers, with one new cluster able to persist despite partial containment.
Continuous attack testing aims to help customers spot exploitable gaps before criminals do, including misconfigurations hiding outside core systems.
The hire comes as the cyber risk company expands into third-party and supply chain defence, with attacks on connected networks growing more persistent.
Security teams can now spot unmanaged devices and services on live traffic as Corelight extends Open NDR with passive asset classification.
Exploited software flaws are now overtaking stolen passwords as the main breach route, sharpening pressure on security teams to patch faster.
Security teams face a heavier patching burden next year, with disclosure volumes now tracking far above FIRST's earlier estimate.
Phishing is becoming harder to spot as attackers use encryption and AI-generated sites to target organisations more effectively.