The SOC’s visibility gap comes down to staffing 2026-06-17 at 09:00 By Mirko Zorz AI has settled into security operations centers faster than any earlier wave of technology. Around four in five practitioners report reaching for AI or machine learning tools in their daily work. The catch shows up one layer down. Roughly a third […]
The SOC’s visibility gap comes down to staffing Read More »
Planning a trip? Fake travel sites are multiplying this summer 2026-06-16 at 11:27 By Sinisa Markovic Cyberattacks against hospitality, travel, and recreation organizations rose 24% year over year, reaching an average of 2,291 incidents per organization each week in May 2026, according to Check Point. (Source: Check Point) “The sector has more than doubled its
Planning a trip? Fake travel sites are multiplying this summer Read More »
Cybercriminals are moving away from mass phishing campaigns 2026-06-12 at 13:47 By Sinisa Markovic Phishing activity declined by roughly 20% in both 2024 and 2025, according to research from Zscaler’s ThreatLabz team. The drop followed years of growth that pushed phishing activity above 2 billion hits in 2023. “Phishing volume measured by blocked emails is
Cybercriminals are moving away from mass phishing campaigns Read More »
9 out of 10 people can no longer distinguish real from AI-generated content 2026-06-11 at 17:12 By Sinisa Markovic Online fraud is becoming harder to distinguish from legitimate activity as AI-generated messages, voices, photos, reviews, and identities become more convincing. Nearly nine in ten adults say they can no longer tell what is real from
9 out of 10 people can no longer distinguish real from AI-generated content Read More »
Identity theft is turning into a chain reaction for victims 2026-06-10 at 18:17 By Sinisa Markovic For a growing number of victims, identity theft no longer ends with a fraudulent charge or a compromised account. More than one in four people who contacted the Identity Theft Resource Center during the reporting period were dealing with
Identity theft is turning into a chain reaction for victims Read More »
Cybercriminals create 19,000 FIFA-themed domains ahead of 2026 World Cup 2026-06-08 at 07:30 By Sinisa Markovic Fans looking for tickets, accommodation and match broadcasts are already encountering scams tied to the 2026 FIFA World Cup. The 2026 FIFA World Cup will bring millions of visitors and an estimated 6 billion spectators to a tournament spread
Cybercriminals create 19,000 FIFA-themed domains ahead of 2026 World Cup Read More »
Shadow AI risks deepen as 31% of users get no employer training 2026-05-01 at 11:49 By Anamarija Pogorelec Between one-fifth and one-third of workers use AI outside the influence and governance of the IT function, according to a global survey of 6,000 full-time employees at enterprise organizations. Researchers found a widening gap between employee AI
Shadow AI risks deepen as 31% of users get no employer training Read More »
Where AI in CI/CD is working for engineering teams 2026-04-24 at 08:22 By Anamarija Pogorelec Developers have folded AI into daily coding work. Still, the same tools remain largely absent from the systems that validate and ship software. New research from JetBrains points to a widening gap between how engineers write code on their own
Where AI in CI/CD is working for engineering teams Read More »
Network segmentation projects fail in predictable patterns 2026-04-15 at 07:25 By Mirko Zorz Most enterprise networks have segmentation on the roadmap. Many have had it there for years. A survey of 400 U.S.-based network security practitioners who lived through failed segmentation projects finds that failure clusters into four distinct patterns, and the type of failure
Network segmentation projects fail in predictable patterns Read More »
Prompt injection tags along as GenAI enters daily government use 2026-04-09 at 08:27 By Sinisa Markovic Routine use of GenAI has moved into daily operations in state and territorial government environments, placing new security risks within common workflows. A Center for Internet Security (CIS) report, Prompt Injections: The Inherent Threat to Generative AI, identifies prompt
Prompt injection tags along as GenAI enters daily government use Read More »
Cybercriminals move deeper into networks, hiding in edge infrastructure 2026-04-08 at 08:12 By Sinisa Markovic Attack activity is moving toward infrastructure outside endpoint visibility. Proxy networks support a wide range of operations, edge devices serve as initial access points, and GenAI speeds up how attackers assemble and rebuild their tooling. Lumen’s 2026 Threatscape Report describes
Cybercriminals move deeper into networks, hiding in edge infrastructure Read More »
Residential proxies make a mockery of IP-based defenses 2026-04-06 at 09:16 By Sinisa Markovic Attack traffic moved through ordinary home and mobile connections in ways that limited the usefulness of IP reputation on its own. GreyNoise observed 4 billion malicious sessions during a 90-day period and described activity that appeared indistinguishable from normal user traffic
Residential proxies make a mockery of IP-based defenses Read More »
IT talent looks the other way as wireless security incidents pile up 2026-04-06 at 09:16 By Sinisa Markovic Enterprise wireless networks are supporting a growing mix of devices and applications, increasing operational demand and security exposure. The 2026 Cisco State of Wireless report reflects these conditions through rising incident rates, higher costs, and ongoing staffing
IT talent looks the other way as wireless security incidents pile up Read More »
Vulnerabilities from years ago still opening doors for attackers 2026-03-24 at 14:02 By Sinisa Markovic Exploitation timelines continued to compress in enterprise environments, with newly disclosed flaws reaching active use almost immediately and older weaknesses remaining active years after disclosure. (Source: Cisco Talos) Findings from Cisco Talos’ 2025 Year in Review show how attackers combined
Vulnerabilities from years ago still opening doors for attackers Read More »
The devices winning the race to get hacked in 2026 2026-03-23 at 17:17 By Sinisa Markovic Enterprise networks keep adding connected devices, expanding the attack surface as threat actors target a wider range of systems, many of which are difficult to inventory, secure, and patch consistently. (Source: Forescout) Forescout’s 2026 Riskiest Devices research maps that
The devices winning the race to get hacked in 2026 Read More »
Cybercriminals scale up, government sector hit hardest 2026-03-18 at 09:27 By Sinisa Markovic Government agencies faced the highest volume of cyberattack campaigns in 2025, according to new findings from HPE Threat Labs, which tracked 1,186 active campaigns over the course of the year. The data covers activity observed between January 1 and December 31, 2025,
Cybercriminals scale up, government sector hit hardest Read More »
Agentic attack chains advance as infostealers flood criminal markets 2026-03-12 at 08:35 By Mirko Zorz Cybercriminals spent much of 2025 automating their operations, shifting from one-off attacks to systems that can run entire intrusion cycles with minimal human input. Data collected from criminal forums, illicit marketplaces, and underground chat services shows a threat environment where
Agentic attack chains advance as infostealers flood criminal markets Read More »
Software vulnerabilities push credential abuse aside in cloud intrusions 2026-03-11 at 07:17 By Sinisa Markovic Cloud intrusions are unfolding on shorter timelines, with attackers leaning more on unpatched software and compromised identities. H2 2025 distribution of initial access vectors exploited in Google Cloud (Source: Google) Google Cloud’s Cloud Threat Horizons Report H1 2026 reflects incident
Software vulnerabilities push credential abuse aside in cloud intrusions Read More »
Your dependencies are 278 days out of date and your pipelines aren’t protected 2026-03-02 at 09:00 By Mirko Zorz Applications continue to ship with known weaknesses even as development workflows speed up. A new Datadog State of DevSecOps 2026 report examines how dependency management and pipeline practices are influencing exposure across cloud native environments. Across
Your dependencies are 278 days out of date and your pipelines aren’t protected Read More »
The $19.5 million insider risk problem 2026-02-26 at 09:09 By Mirko Zorz Routine employee activity across corporate systems carries an average annual cost of $19.5 million per organization. That figure comes from the 2026 Cost of Insider Risks Global Report, conducted by the Ponemon Institute and based on data from 354 organizations that experienced one
The $19.5 million insider risk problem Read More »