Security vulnerabilities stories

Singapore’s Government Bug Bounty Programmemes, partnered with YesWeHack, rewarded cybersecurity researchers over USD $250,000 for uncovering system vulnerabilities.

Panaseer reveals 70% of major cyber breaches stem from toxic combinations of minor risks compounding, causing greater vulnerabilities and severe consequences.

Mphasis launches two quantum tech solutions to boost enterprise cybersecurity and optimise complex decision-making for improved operational efficiency.

Pentest People launches GuardNest, a redesigned cybersecurity platform enhancing usability, workflows, and accessibility for efficient vulnerability management.

Security experts warn new AI browsers like OpenAI's ChatGPT Atlas pose serious privacy, safety and data risks amid growing adoption and emerging vulnerabilities.

AI-powered observability boosts UK business productivity and ROI, with 75% citing improved efficiency and 125% annual return on investments reported by leaders.

Microsoft will end Windows 10 support from 14 October, leaving millions at risk without security updates unless they upgrade or enrol in Extended Security Updates.

Research by SquareX reveals vulnerabilities in AI-powered browsers like Comet, exposing enterprises to severe cyber threats including data breaches and malware attacks.

Oracle has issued an urgent patch for a critical flaw in its E-Business Suite, exploited by the Cl0p ransomware group using advanced social engineering tactics.

AI speeds up coding by 63%, but bottlenecks in testing and deployment cause delays, risks, and higher costs, says Harness’s study of 900 developers.

AI vulnerability reports surged 210% as organisations boosted AI security by 270%, with prompt injection attacks rising 540%, HackerOne's report shows.

Security flaws in Google’s Gemini AI exposed millions to unseen data breaches by enabling attackers to manipulate logs, search history and browsing tools.

AI platforms and software supply chains face rising cyber risks, urging firms to boost security and governance amid new vulnerabilities in generative AI systems.

Barracuda warns of a surge in advanced OAuth phishing attacks exploiting Microsoft 365 and other platforms to steal access tokens and bypass multifactor authentication.

FIRST launches new forums and special interest groups to boost global cybersecurity collaboration and host a 2025 Vulnerability Forecasting event in Cambridge.

Despite 93% confidence in defences, 62% of organisations faced mobile app breaches last year, prompting a shift towards proactive security in development.

Healthcare sector excels in preventing serious security flaws but takes nearly two months to fix them, risking sensitive data exposure amid rising cyber threats.

Cyberattacks on the financial sector have surged 25% in 2024, with phishing leading and nearly half of employees prone to clicking malicious links.

eZaango Group has secured ISO 27001:2022 certification, reinforcing its commitment to robust information security and leadership against cyber threats.

Quantum computing presents urgent security risks for organisations relying on Microsoft Active Directory, as legacy systems struggle to meet new cryptographic demands.