Ian Barker

New research from Menlo Security, based on analysis of more than 750,000 browser-based phishing attacks, shows a startling 140 percent increase compared to 2023, and a 130 percent increase specifically in zero-hour phishing attacks.

Microsoft, Facebook, and Netflix are the brands most commonly impersonated in browser-based phishing attempts. However, generative AI services are also increasingly impersonated with nearly 600 incidents of GenAI fraud identified, in which imposter sites used GenAI platform names to manipulate and exploit unsuspecting victims.

Continue reading →

With cloud spending expected to increase by 28 percent in the coming year, a new poll of over 750 technical professionals and executive leaders worldwide finds that 84 percent see managing cloud spend as their top challenge.

The study from Flexera shows 33 percent of organizations are spending more than $12 million annually on the public cloud alone partly driven by AI adoption. With cloud budgets already exceeding limits by 17 percent, organizations are increasingly turning to managed service providers (60 percent) and expanding use of their FinOps teams to regain control over spending (59 percent).

Continue reading →

The overall threat landscape facing organizations is expanding, yet many of the threats such as phishing remain the old favorites. What's more, AI is making them more effective by eliminating many of the old tell-tale signs.

With the evolving challenges and risks facing them, how can CISOs effectively network internally and externally to gather support of the broader team and build an appropriate security posture? We spoke to Robin Bell, CISO at Egress, to find out.

Continue reading →

We've all become used to completing tests to prove we're not robots, but a new report from HP Wolf Security highlights the rising use of fake CAPTCHA verification tests which allow threat actors to trick users into infecting themselves.

The technique shows attackers are capitalizing on people's increasing familiarity with completing multiple authentication steps online -- a trend HP describes as 'click tolerance'.

Continue reading →

Analysis of almost 93,000 threats detected within more than 308 petabytes of security telemetry by Red Canary shows infostealer malware infections on the rise across both Windows and macOS platforms.

Used to gather identity information and other data at scale, in 2024 LummaC2 was the most prevalent stealer detected in 2024, operating under a malware-as-a-service model, and selling for anywhere from $250 per month to a one-time payment of $20,000.

Continue reading →

The latest Global Threat Intelligence Report (GTIR) from Flashpoint finds that threat actors compromised over 3.2 billion credentials in 2024, a 33 percent increase from the year before.

Of these 75 percent or 2.1 billion, were sourced from information stealing malware, a dangerous new twist on an older threat that has infected over 23 million devices worldwide.

Continue reading →

A new report finds 78 percent of organizations report being challenged by administering and maintaining existing data loss prevention technology solutions and policies, and 94 percent report using at least two tools and, on average, more than three tools with DLP capabilities, resulting in significant man-hours to administer and maintain multiple solutions.

The study from DLP specialist MIND and Enterprise Strategy Group also shows 91 percent of organizations say it's important to reduce alert noise produced by their current DLP controls due to simple, poor and outdated classification schemes.

Continue reading →

A new survey of over 14,000 consumers across 14 countries finds that most industries experienced a decline in consumer trust compared to last year.

The latest Digital Trust Index from Thales shows banking tops the index for the second year in a row, but levels of trust have fallen among Gen Z customers.

Continue reading →

The rapid growth of AI workloads is driving a major transformation in data center network infrastructure according to a new study from Ciena.

The research, conducted by Censuswide, surveyed more than 1,300 data center decision makers across 13 countries. 53 percent of respondents believe AI workloads will place the biggest demand on data center interconnect (DCI) infrastructure over the next two to three years, more than cloud computing (51 percent) and big data analytics (44 percent).

Continue reading →

In recent years generative AI has made its way into many areas of business, helping to transform and streamline processes. However, its potential in the procurement space remains relatively unexplored.

We talked to Kevin Frechette, CEO of Fairmarkit, to find out how enterprises can exploit GenAI to gain agility, efficiency, and smarter decision-making in their sourcing decisions.

Continue reading →

Research by IDC for chip maker AMD looks at how enterprise IT decision makers are adapting their strategy as high-performance AI PCs begin shipping.

AI PCs feature specialized neural processing units designed to enable AI at the edge. They combine with powerful CPUs and GPUs and are typically built as a single system on a chip, enabling local AI models.

Continue reading →

Passwords are an essential part of our digital lives, yet many people still use weak or simple combinations of letters and numbers that can be cracked in just a few seconds.

A new report from Safety Detectives, based on analysis of a 2.5TB database containing passwords compromised through data breaches and malware attacks across 44 countries, looks at the current state of password habits, to highlight how these practices have evolved over time.

Continue reading →

Increasing amounts of regulation are creating an issue for businesses as they seek to ensure compliance whilst still delivering on their core activities. This is leading many to boost the size of their security teams.

We spoke to Jay Trinckes, CISO of Thoropass, who believes that using AI, with its ability to analyze vast amounts of data quickly and accurately, will be key to bridging this gap without the need for massively expanded staffing.

Continue reading →

A new survey of over 900 security decision makers across the US, Europe and Australia, finds 60 percent of security teams are small, with fewer than 10 members. But despite their size, 72 percent report taking on more work over the past year, and an impressive 88 percent are meeting or exceeding their goals.

The study, carried out by IDC for AI-powered workflow company Tines, also finds security leaders are bullish about AI with 98 percent embracing it and a mere five percent believing AI will replace their job outright.

Continue reading →

Chinese AI models (like DeepSeek) are outperforming US models like Meta Llama in specific categories such as sensitive information disclosure according to a new AI Trust Score introduced by Tumeryk.

It evaluates AI models across nine key factors, including data leakages, toxic content, truthfulness, and bias. This enables CISO’s to ensure their AI deployments are secure, compliant, and trustworthy, and offers developers solutions for addressing any issues in their AI applications.

Continue reading →