Infosec stories

Stolen logins can still trigger chaos, but modern access controls that verify device and context can stop attackers from turning them into a breach.

Claroty says two new vulnerabilities in EnOcean's SmartServer IoT platform could let attackers seize control of building systems and expose memory.

Experts warn organisations are still exposed as password reuse, phishing and weak access governance persist despite growing push for passkeys and MFA.

Healthcare providers adopt AI medical devices faster than security controls can keep up, leaving legacy systems, model trust and data integrity exposed.

Qualys report says cloud breaches are increasingly driven by identity design, delegated trust and slow remediation as AI widens exposure.

Industrial manufacturing heads Digitain's cyber risk index, with healthcare and information technology close behind as attacks, breaches and ransomware mount.

Fortinet report says cyber shortages are now a business risk as most firms grapple with breaches, AI pressures and rising hiring costs.

Leak-site posts surge 22% to 2,638 in Q1 2026 as ReliaQuest flags The Gentlemen's rise, fake claims and shifting extortion tactics.

Check Point and Flashpoint warn AI is speeding up exploit development, shrinking patch windows and forcing defenders to rethink first-line protections.

Ping Identity-backed research says enterprises need stronger runtime controls as autonomous AI agents expose gaps in authorisation and oversight.

EY names 1Kosmos Chief Executive Officer Hemen Vimadalal as a finalist for its 2026 Entrepreneur Of The Year New Jersey award.

Akamai survey finds APIs are now cybercriminals' main target, with AI-linked interfaces under attack and incidents costing organisations more than USD $700,000.

One click can trigger ransomware, but modern Zero Trust access and cloud-delivered controls can stop malicious links and files from causing a breach.

Google warns AI is turbocharging cyber attacks as Sandra Joyce says firms must patch fast, while Gemini boosts threat detection and analysis.

Norton warns travellers that scammers are using real hotel reservation data to send convincing payment demands through trusted apps and emails.

Bitdefender urges journalists to harden phones, accounts and source contacts against phishing, spyware, impersonation and AI-linked leaks.

Anthropic's Claude Mythos cyber security model and Project Glasswing are fuelling fears that AI-driven vulnerability hunting is becoming a boardroom issue.

TCS deepens Google Cloud partnership with four new AI products aimed at speeding enterprise automation, factory efficiency and cyber defence.

AI tools are speeding up vulnerability hunting and could help lower-skilled hackers exploit flaws far sooner, Flashpoint has warned.

Infosecurity Europe to host new GenAI Security Summit after survey finds UK cyber leaders see agentic AI as biggest defence shift.