report

Threat actors are recruiting the people who hold cloud logins

Threat actors are recruiting the people who hold cloud logins 2026-06-11 at 11:18 By Anamarija Pogorelec Companies keep most of their data and applications in cloud platforms that anyone can reach with the right login. That setup turns each employee holding those credentials into a security variable, and members of the cybercrime underground have built […]

Threat actors are recruiting the people who hold cloud logins Read More »

Prompt injection still drives most agentic AI security failures in production

Prompt injection still drives most agentic AI security failures in production 2026-06-11 at 08:43 By Anamarija Pogorelec A backdoor sat on PyPI for three hours in March 2026. Nearly 47,000 downloads occurred during the window. The compromised package, LiteLLM, serves as the language-model gateway for CrewAI, DSPy, Microsoft GraphRAG, and dozens of other AI agent

Prompt injection still drives most agentic AI security failures in production Read More »

Organizations can’t see much of their mobile AI activity

Organizations can’t see much of their mobile AI activity 2026-06-11 at 08:43 By Anamarija Pogorelec Organizations have limited visibility into AI activity on mobile devices despite security leaders expressing confidence in their AI governance, according to Lookout’s “Solving for the Mobile AI Blind Spot: Executive Confidence Meets Technical Reality” report. Mobile AI visibility gaps Enterprises

Organizations can’t see much of their mobile AI activity Read More »

Identity theft is turning into a chain reaction for victims

Identity theft is turning into a chain reaction for victims 2026-06-10 at 18:17 By Sinisa Markovic For a growing number of victims, identity theft no longer ends with a fraudulent charge or a compromised account. More than one in four people who contacted the Identity Theft Resource Center during the reporting period were dealing with

Identity theft is turning into a chain reaction for victims Read More »

Scams now operate like real businesses with budgets and targets

Scams now operate like real businesses with budgets and targets 2026-06-10 at 07:23 By Anamarija Pogorelec Social media has overtaken email as a primary attack vector, showing changes in how people consume information and interact online, according to Bitdefender’s Global Scam Intelligence Report 2026. Fraud campaigns use advertisements, sponsored content, impersonation pages, and direct messages

Scams now operate like real businesses with budgets and targets Read More »

The security questions around Chinese AI coding models in U.S. software

The security questions around Chinese AI coding models in U.S. software 2026-06-09 at 08:46 By Anamarija Pogorelec Software developers across the United States are using AI models built in China to write, debug, and review code, drawn by prices below those of American alternatives. These models carry risks for the security of American software, according

The security questions around Chinese AI coding models in U.S. software Read More »

Cybercriminals create 19,000 FIFA-themed domains ahead of 2026 World Cup

Cybercriminals create 19,000 FIFA-themed domains ahead of 2026 World Cup 2026-06-08 at 07:30 By Sinisa Markovic Fans looking for tickets, accommodation and match broadcasts are already encountering scams tied to the 2026 FIFA World Cup. The 2026 FIFA World Cup will bring millions of visitors and an estimated 6 billion spectators to a tournament spread

Cybercriminals create 19,000 FIFA-themed domains ahead of 2026 World Cup Read More »

52% of direct-to-IP threats are missing from intelligence feeds

52% of direct-to-IP threats are missing from intelligence feeds 2026-06-08 at 07:00 By Anamarija Pogorelec Security tools are good at inspecting websites, domains, URLs, and files, so attackers are moving lower in the stack and communicating directly with IP addresses, where visibility is limited. According to Palo Alto Networks’ report, this creates a visibility gap

52% of direct-to-IP threats are missing from intelligence feeds Read More »

Most pros have seen AI hallucinations in IT operations

Most pros have seen AI hallucinations in IT operations 2026-06-05 at 09:24 By Anamarija Pogorelec Autonomous AI is taking action inside enterprise IT environments. Software is restarting services, isolating risky devices, and applying patches without waiting for a human to approve the step. The capability is spreading at the same time IT professionals are reporting

Most pros have seen AI hallucinations in IT operations Read More »

OAuth marketplace apps keep access after publishers vanish

OAuth marketplace apps keep access after publishers vanish 2026-06-04 at 16:06 By Mirko Zorz Installing an app from the Google Workspace Marketplace or GitHub Marketplace can grant a third party access to company email, files, calendars, code repositories, CI workflows, organization settings, and secrets. Marketplace presence gives these apps the appearance of approval. The OAuth

OAuth marketplace apps keep access after publishers vanish Read More »

Known vulnerabilities behind most application security incidents

Known vulnerabilities behind most application security incidents 2026-06-03 at 07:40 By Anamarija Pogorelec Eight in ten organizations took an application security hit during the past year tied to a vulnerability their team had already cataloged, according to a survey of 902 IT and security professionals conducted by the Cloud Security Alliance. The pattern points to

Known vulnerabilities behind most application security incidents Read More »

Codex knowledge work expands into research, reports, and spreadsheets

Codex knowledge work expands into research, reports, and spreadsheets 2026-06-02 at 15:29 By Anamarija Pogorelec Office workers in the United States lose hours each week to email triage and to searching for files spread across disconnected systems. Roughly 40 percent of US labor, about 72 million people, works primarily with information such as analysis, documents,

Codex knowledge work expands into research, reports, and spreadsheets Read More »

145 AI laws passed in 2025 and privacy teams aren’t catching a break

145 AI laws passed in 2025 and privacy teams aren’t catching a break 2026-06-01 at 08:19 By Anamarija Pogorelec 145 AI-related laws were enacted by state legislatures in 2025, and more than 1,000 additional bills were introduced or revised, according to DataGrail’s Privacy and AI Trends Report 2026. Average cost of manual data subject request

145 AI laws passed in 2025 and privacy teams aren’t catching a break Read More »

Oil shipments, drone makers, and a poisoned code library targeted in recent APT campaigns

Oil shipments, drone makers, and a poisoned code library targeted in recent APT campaigns 2026-05-28 at 12:42 By Sinisa Markovic Geopolitical pressure drove much of the state-sponsored cyber activity recorded between October 2025 and March 2026, according to ESET’s latest APT Activity Report. Espionage groups aligned with China, North Korea, Russia, and Iran adjusted their

Oil shipments, drone makers, and a poisoned code library targeted in recent APT campaigns Read More »

Frontier AI models collapse under multi-turn AI attacks, Cisco finds

Frontier AI models collapse under multi-turn AI attacks, Cisco finds 2026-05-28 at 10:16 By Mirko Zorz Attackers who probe large language models rarely give up after one refusal. They reframe, build context across turns, adopt personas, and escalate gradually. New research from Cisco’s AI threat intelligence team finds that the safety benchmarks used across the

Frontier AI models collapse under multi-turn AI attacks, Cisco finds Read More »

European AI adoption hits 99% with regulated data driving most policy violations

European AI adoption hits 99% with regulated data driving most policy violations 2026-05-27 at 09:24 By Sinisa Markovic Generative AI tools operate inside nearly every European workplace, embedded in meeting transcription services, writing assistants, coding copilots, and search features. Workers in the region pull these tools into daily routines that involve customer records, financial information,

European AI adoption hits 99% with regulated data driving most policy violations Read More »

Downtime has become a $600 billion business problem

Downtime has become a $600 billion business problem 2026-05-22 at 11:53 By Anamarija Pogorelec The average cost of downtime has reached $600 billion for the Global 2000, a 50% increase in two years. According to Splunk’s The Hidden Costs of Downtime report, unplanned outages and service degradation cost each company an average of $300 million.

Downtime has become a $600 billion business problem Read More »

The new economics of fraud: Cheaper, faster, more convincing

The new economics of fraud: Cheaper, faster, more convincing 2026-05-22 at 08:29 By Anamarija Pogorelec Scams have become one of the fastest-growing consumer risks, driven by AI-enabled impersonation, social engineering, and sophisticated attack methods, according to Visa’s Spring 2026 Biannual Threats Report. Criminals redirect efforts toward trust and third parties Fraud involves behavioral manipulation, fragmented

The new economics of fraud: Cheaper, faster, more convincing Read More »

Supply Chain Security Crisis: Too Many Vulnerabilities, Too Little Visibility

Supply Chain Security Crisis: Too Many Vulnerabilities, Too Little Visibility 2026-05-21 at 11:40 By Kevin Townsend New vulnerabilities are being discovered too fast, the time-to-exploitation is too short, and our visibility into them is largely lacking. The post Supply Chain Security Crisis: Too Many Vulnerabilities, Too Little Visibility appeared first on SecurityWeek. This article is

Supply Chain Security Crisis: Too Many Vulnerabilities, Too Little Visibility Read More »

Scroll to Top