Infosec stories - Page 22

AI-driven cloud adoption is forcing firms to swap static privacy checklists for continuous, real-time defence of sensitive data flows.

Rapid7 appoints veteran cyber leader Simon Ractliffe as APJ general manager to drive regional growth and deepen Microsoft-focused security.

A critical flaw in Apache bRPC's /pprof/heap endpoint allows unauthenticated remote code execution on exposed services, researchers warn.

AI's rapid spread, weak data governance and rising scepticism are reshaping digital trust and sharply escalating privacy risks.

Security and governance fears keep half of agentic AI stuck in pilots, even as leaders raise budgets and pursue tightly supervised use cases.

WhatsApp launches Strict Account Settings, a lockdown mode offering tighter privacy and security for journalists and other high‑risk users.

SonicWall rolls out NSM 3.5 SaaS, baking credential, data and analytics security into everyday firewall management by default.

QR codes in HTML, bogus Teams callbacks and fake Facebook windows are among new email scams sidestepping traditional security tools.

VaynerX is deploying Keeper's enterprise password manager to centralise credentials and curb risks from password reuse and phishing.

Cloudbrink adds Safe AI controls to its zero trust platform, securing hybrid enterprise use of AI agents and browser-based AI services.

Kingston wins FIPS 140-3 Level 3 for its IronKey Keypad 200 USBs, making it the first supplier with three drives at this stringent standard.

DigiCert has been named a Leader in IDC MarketScape's first global report on certificate lifecycle management, citing automation and scale.

Data Privacy Week warns overlapping security apps and hidden web trackers are eroding consumer safety and exposing firms to fresh risks.

Nike is probing a suspected cyberattack after a hacker group claimed to leak 1.4TB of internal data, raising supply chain security fears.

Fortinet has upgraded FortiCNAPP with network, data and runtime signals to sharpen cloud risk scoring and cut alert overload for security teams.

As hybrid IT sprawl fuels blind spots and AI-driven attacks, experts say only a zero trust, hybrid mesh rethink can secure modern networks.

Genetec issues privacy rules for physical security data, urging clear limits, encryption and ongoing cyber defence for surveillance systems.

Keeper rolls out a zero-trust Slack integration, turning chat-based approvals into governed workflows while keeping enforcement in Keeper Vault.

Okta warns new real-time vishing kits can hijack browser sessions during calls, tricking users into defeating non‑phishing‑resistant MFA.

New UK cyber bill pushes critical sectors towards continuous offensive security testing as state-backed and criminal threats intensify.