Infosec stories - Page 6

Abacus secures CREST accreditation for penetration testing, bolstering its pitch to regulated sectors as demand rises for verified cyber security assurance.

Arctic Wolf earns a strong 2026 Gartner Peer Insights showing for managed detection and response, backed by 241 reviews and a 99% recommendation rate.

2N calls for tougher cyber rules on access control, urging stronger vulnerability reporting, tighter component sourcing and longer support lifecycles.

Dynatrace agrees to buy Bindplane to expand telemetry pipelines, aiming to cut ingest costs and give customers greater control over observability data.

Microsoft warns that 10 to 15 EvilToken phishing runs are launched daily, compromising hundreds of organisations through OAuth token abuse.

Qualys says attackers are exploiting flaws before disclosure as remediation backlogs swell, with edge devices facing the highest risk.

TrendAI urges stronger AI governance as it shifts cybersecurity from fear-based selling to platformised risk reduction for Australian firms.

Anthropic expands a guarded AI pilot with Amazon, Apple, Microsoft and others, offering Claude Mythos Preview to hunt flaws in critical code and open source.

Data quality gives banks a scalable route to digital trust, cutting fraud and false positives while speeding onboarding, KYB and AI-driven checks.

China-linked TA416 returns to spying on European diplomats and later expands attacks to Middle Eastern government targets after Iran conflict.

Commvault adds structured database controls to Commvault Cloud after Satori deal, aiming to curb AI-era exposure across live and backup data.

GigaOm names Check Point a third-year application security leader as its WAF posts strong detection rates and low false positives.

Attackers abuse trusted tools, remote support software and stolen SSO sessions to breach systems, ReliaQuest says.

ChatGPT flaw may have let attackers siphon sensitive user data via DNS queries, prompting OpenAI to issue a fix after researchers exposed the bug.

Upwind taps former Facebook security chief Joe Sullivan to bolster cloud and AI strategy as it eyes enterprise buyers and rapid growth.

Zscaler says Xloader malware has added layered encryption, decoy servers and new obfuscation tricks to hinder analysts.

Secure.com urges Chief Information Security Officers to use AI for alert triage and threat detection, but keep human judgement in the loop.

QuSecure has joined a NIST-backed consortium to test tools and methods that help organisations find and replace quantum-vulnerable public-key systems.

ReliaQuest flags DeepLoad malware stealing live credentials in enterprise networks, with AI-style obfuscation, USB spread and hidden WMI persistence.

Experts warn firms must improve visibility and backup resilience as automated ransomware campaigns and hidden SaaS and AI assets widen exposure.