Infosec stories

Executive-level CISO roles now dominate security leadership, but a new report warns widening scope and legacy structures are driving strain.

The UK has appointed 13 Software Security Ambassadors, including Cisco and Lloyds, to drive adoption of its new secure code of practice.

London’s Cyb3r Operations raises $5.4m to expand real-time monitoring of third-party cyber risk as supply-chain threats intensify.

European privacy teams brace for 2026 budget cuts as understaffing grows, breach risks rise and boards treat privacy as mere compliance.

Tel Aviv start-up isVerified unveils AI platform to spot voice deepfakes in executive calls as vishing attacks surge on global firms.

Harmonic finds six genAI apps drive 92.6% of enterprise data exposure risk, with ChatGPT alone responsible for more than 70% of cases.

Cyber crime reports to Action Fraud have jumped 37% in five years, but analysts warn hidden enterprise losses run to hundreds of millions.

BioCatch warns AI shopping agents will turbocharge online fraud, urging banks and retailers to distinguish helpful bots from criminal misuse.

Data breaches at Victorian schools and Sydney University expose deep cyber flaws, leaving Australian students vulnerable to long-term threats.

Microsoft again tops global phishing brand list as attackers increasingly mimic big tech services to steal cloud and consumer credentials.

Portnox launches a global channel partner programme and names cybersecurity veteran Kristen Knight as VP of Channel Sales to drive growth.

Team Cymru and Filigran link Pure Signal and Scout with OpenCTI to enrich threat investigations, automate hunts and deepen global context.

AI-powered social engineering and Windows 11 upgrades are reshaping ATM crime, shifting attacks from skimming to manipulative fraud.

ReliaQuest warns BaoLoader and trust-based lures are surging, as attackers ditch zero-days for social engineering and valid certificates.

Shadow AI and shaky data foundations are undermining UK corporate AI rollouts, with leaders warning of weak controls and executive blind spots.

One Identity’s Manager 10.0 adds AI-driven threat response, risk-based governance and a new browser interface to tackle identity attacks.

A new Astaroth banking trojan variant hijacks WhatsApp Web to self-spread via chats while silently stealing Brazilian banking credentials.

Check Point adds AI Cloud Protect to Nvidia’s Enterprise AI Factory design to secure purpose-built AI data centres without GPU performance hit.

Phishing-as-a-service kits doubled in 2025, now powering 90% of attacks as cyber gangs race to outsmart multifactor checks and filters.

Atlassian Williams F1 adopts KeeperPAM to lock down privileged access and remote connections across its fast-moving global operations.