Infosec stories - Page 29

AI-native malware, deepfake fraud and attacks on connected devices will dominate enterprise cyber risk in 2026, VIPRE has warned.

OWASP has launched its first Top 10 list for agentic AI, warning autonomous systems act as a powerful but risky new digital workforce.

Australia's Cybersecurity Act drives a surge in breach reporting as attacks soar, exposing rising business losses and tougher penalties.

iProov and HYPR integrate liveness checks with passwordless login to stop deepfake workers infiltrating enterprises at onboarding.

Just 1% of organisations fully use Just-in-Time privileged access, leaving AI agents and cloud systems exposed to “always-on” credentials.

Global cyber defence group FIRST reports record 2025 growth, topping 820 member teams and expanding technical, training and capacity work.

Barcelona cyber start-up Zynap raises EUR €6 million seed extension to scale its AI-driven preventive defence platform globally.

AI is set to transform procurement by 2026, making data governance, security and human-machine collaboration central to buying decisions.

Yubico experts say 2026 will redefine authentication, with post-quantum security, digital ID wallets and AI-driven threats converging.

Keeper launches a zero-knowledge secrets manager extension for JetBrains IDEs, aiming to eliminate hardcoded credentials in codebases.

Proofpoint flags a sharp rise in Microsoft 365 account takeovers via device code phishing, hitting firms from finance to government.

Black Kite launches Product Analysis tool to expose hidden risks in third-party software, from SaaS subdomains to SBOM dependencies.

Nudge Security unveils expanded AI-in-SaaS controls to monitor chatbot use, browser activity and risky integrations across cloud apps.

AI-powered cyber attacks are outpacing thinly staffed security teams, as firms prioritise defence but starve programmes of people and budget.

Checkmarx snaps up AI start-up Tromzo to fold reasoning-based agents into its AppSec platform and speed autonomous code security.

Storm-0249 hijacks trusted security and Windows tools to stealthily broker high-value network access for ransomware operators.

Generative AI tools drive a surge in workplace data breaches, with monthly policy violations more than doubling as shadow AI use persists.

VIPRE warns AI-native malware, deepfake fraud and IoT attacks will surge in 2026, outpacing defences as regulators tighten AI rules.

CommScope launches PRiSM-based secure boot signing for TI AM6x chips, aiming to simplify compliance with tightening industrial cyber rules.

SafePay ransomware is quietly crippling small firms, with leaked data showing over 90% of victims are SMBs and many attacks never disclosed.