Infosec stories - Page 28

CrowdStrike moves deeper into browser security with Seraphic buy, tying in SGNL identity tech to protect in-session activity and AI use.

Microsoft's first 2026 Patch Tuesday fixes an exploited DWM zero-day, strips decades-old modem drivers and tackles Secure Boot risks.

AI in 2026 will be less about dazzling breakthroughs and more about fragile data, hybrid clouds and investor pressure for real profits.

AI will reshape risk, trust and compliance in 2026 as firms swap hype for embedded tools, tighter controls and higher regulatory scrutiny.

Codific urges boards to prioritise preemptive cyber defence, identity and supply-chain control as 2026 scrutiny and rules tighten.

CSPM tools will vanish as a separate market by 2026, Tenable says, as CISOs pivot spend to machine identity risk and permissions sprawl.

NCC Group links Silver Fox's false-flag malware campaigns to ValleyRAT and uncovers critical PowerG flaws that can fully compromise alarms.

CrowdStrike teams with Nord Security to bundle Falcon tools with secure access for SMBs via NordLayer and MSP marketplace Pax8.

Rapid AI rollout, geopolitical rifts and fragile supply chains are upending cyber risk, straining outdated security and compliance regimes.

Zama predicts privacy-first compliance tools and quantum-safe cryptography will become standard for regulated onchain finance by 2026.

Astra launches a continuous cloud scanner for AWS, Azure and GCP, promising fewer false alerts by validating which risks are truly exploitable.

AI-powered 'Truman Show' scam uses OPCOPRO app and fake trading rooms in official stores to steal cash and victims' digital identities.

Concentric AI launches Private Scan Manager on Azure, letting regulated sectors keep sensitive data in private cloud while using SaaS tools.

Intruder finds over 42,000 sensitive tokens hidden in JavaScript bundles, exposing a major blind spot in modern web app security tools.

Kiteworks and Concentric AI join forces to tie AI-driven data discovery to automated controls on sensitive information shared externally.

HP reports a surge in convincing fake software updates and staged prompts that trick users into installing stealthy, rapidly evolving malware.

Thales launches AI Security Fabric to shield enterprise LLM and agentic AI apps from runtime threats like prompt injection and data leakage.

OWASP has launched its first Top 10 list for agentic AI, warning autonomous systems act as a powerful but risky new digital workforce.

AI-native malware, deepfake fraud and attacks on connected devices will dominate enterprise cyber risk in 2026, VIPRE has warned.

Australia's Cybersecurity Act drives a surge in breach reporting as attacks soar, exposing rising business losses and tougher penalties.