Threat intelligence stories
Attackers can now probe Entra ID accounts and passwords at scale without a real app, leaving defenders with little sign-in telemetry.
AI-enabled attacks are forcing Asian firms to contain breaches faster, as Singapore urges micro-segmentation and tighter lateral movement controls.
Hackers are exploiting vulnerabilities in hours or minutes, leaving many organisations compromised before defenders spot the breach.
Users relying on SMS or voice for sign-ins will be nudged to passkeys as Microsoft phases out weaker multifactor methods in Entra ID.
Security teams are being pressed to prove their defences work in live attacks, as spending scrutiny shifts from tools to real-world response.
Poor governance is leaving many AI agents stuck out of production, while those that run can expose firms to legal and security risks.
Public agencies risk ransomware within seconds as attackers exploit identities, cloud tools and virtualisation layers, Google warns.
F-Secure's Laura Kankaala explains how the Yahoo Boys scam culture has evolved from advance-fee emails into sextortion and romance fraud.
Attackers are using agentic tools to compress breaches into days, exposing developers and cloud users to faster, harder-to-stop intrusions.
Business and public sector organisations faced 2,270 attacks a week in June, as ransomware rose 33% and GenAI use exposed sensitive data.
Businesses face a fresh wave of identity theft-driven extortion as Helix is linked to BlackFile and ShinyHunters through shared infrastructure.
Asia-Pacific security teams can now keep regulated data in Singapore as Conifers expands its CognitiveSOC platform across the region.
New tools for governing AI agents are moving to the fore as Google picks 33 cybersecurity startups for its first cybersecurity forum cohort.
Enterprises can now patch older open source software without disruptive upgrades, as IBM and Red Hat target stubborn vulnerability backlogs.
A live fraud campaign targeting Mexican banks, fintechs and crypto services exposed how criminals are using generative AI to draft malware.
UK consumers and businesses could benefit as Cifas adds nearly 500 scam signals to a global network aimed at faster takedowns.
Banks are seeing attackers favour stealthy access over ransomware, with a UK-specific exploit hitting nearly half of monitored sensors.
Security teams gain a way to prioritise compromised accounts, with Permiso's new engine scoring human, machine and AI identities on a 0-to-100 scale.
The recognition underscores rising demand for cyber-risk tools that show measurable returns, as buyers demand faster deployment and continuous monitoring.
The plan could speed defences across government and vital sectors, but experts warn weak basics and policy gaps may blunt its impact.