Failed security controls cost businesses billions


A new report finds 61 percent of organizations have suffered a security breach in the past year because their policies, governance, and controls failed or were not working effectively. This is costing US businesses $30bn and UK businesses £10bn per year.
The study from security posture management firm Panaseer surveyed 400 security decision makers across the US and UK and found 72 percent have taken out indemnity insurance in response to growing personal liability, whilst 15 percent have considered leaving the industry.
New defense suite is designed to secure AI workloads


As organizations increasingly adopt AI capabilities, the most common and dangerous attacks often go undetected by static code scanning or traditional security methods.
The only effective way to stop common AI attacks, such as prompt injection and zero-day vulnerabilities, is through active runtime detection and defense. Operant AI is launching a new 3D Runtime Defense Suite aimed at protecting live cloud applications, including AI models and APIs in their native environments.
New tool helps prepare workforces for cyber threats


Humans are generally the weakest link in the cybersecurity chain, so training and awareness are essential alongside technology to keep organizations safe.
With the launch of its AI Scenario Generator, Immersive Labs enables organizations to seamlessly generate threat scenarios for crisis simulations to ensure their workforces are ready for the latest threats.
NordVPN launches ID theft protection tool


Although it may not make the headlines as often as other forms of cybercrime, identity theft remains an issue.
Now NordVPN has launched an identity theft protection service called NordProtect. Currently available to NordVPN Prime plan users in the US, it merges years of cybersecurity expertise with cutting-edge technology to offer a solution users can trust.
Navigating the world of disinformation, deepfakes and AI-generated deception [Book Review]


Online scams aren't anything new, but thanks to artificial intelligence they're becoming more sophisticated and harder to detect. We've also seen a rise in disinformation and deepfakes many of them made possible, or at least more plausible, by AI.
This means that venturing onto the internet is increasingly like negotiating a digital minefield. With FAIK, risk management specialist at KnowBe4 Perry Carpenter sets out to dissect what makes these threats work and the motivations behind them as well as offering some strategies to protect yourself.
Mitigating third-party risk in today's cyber ecosystem [Q&A]


As third-party risk continues to be a critical concern for enterprises, the need for effective risk management strategies has never been more pressing.
We spoke with Bob Maley, CISO of third-party risk management specialist Black Kite, to get his insights into effective strategies for managing this challenge along with the nuanced risks and necessary tactics to secure enterprise environments against sophisticated threats.
AI degradation -- what is it and how do we address it? [Q&A]


Many in the industry believe that AI is degrading because it's being starved of human-generated data. This leads to models being trained on the output of older models which increases the risk of hallucinations and errors.
But how big an issue is this and what can we do to fix it? We spoke to Persona CEO and co-founder, Rick Song to find out.
Businesses turn to humans to combat AI threats


A new survey from HackerOne shows 67 percent of respondents believe an external, unbiased review of GenAI is the most effective way to uncover AI safety and security issues as AI red teaming gathers momentum.
Nearly 10 percent of security researchers now specialize in AI technology as 48 percent of security leaders consider AI to be one of the greatest risks to their organizations, according to the report -- based on data from 500 global security leaders, and more than 2,000 hackers on the HackerOne platform.
Cybersecurity professionals pessimistic about AI


A new report reveals that 54 percent of cybersecurity professionals believe cybercriminals will benefit more from AI than the security industry.
The report by The Chartered Institute of Information Security (CIISec), based on a survey of over 300 cybersecurity professionals, finds 51 percent) of those surveyed believe that AI and machine learning will be the most influential technology in the cybersecurity industry over the coming year.
New platform offers improved observability for enterprises


As the IT landscape becomes more complex it can be difficult for businesses to fully understand their risk profile and to ensure that they're getting the most from their investments.
With the launch of a new AI-powered unified observability platform, Kloudfuse aims to deliver improved anomaly detection and consolidated metrics, logs, traces, real user monitoring, continuous profiling, and more in a unified observability data lake.
Why businesses need to start transitioning to post-quantum cryptography now [Q&A]


The arrival of quantum computing, like nuclear fusion, is one of those things that always seems predicted to be a decade or more away, but the issue of quantum cryptography is on the doorstep now.
While quantum computers have the ability to break current encryption methods at alarming speeds, The National Institute of Standards and Technology's (NIST) release of Post-Quantum Cryptography (PQC) standards throws down the gauntlet on quantum cybersecurity.
38 percent think personal data theft is unavoidable


As we carry out more and more of our everyday transactions online, so the risk of falling victim to cybercrime increases too.
New research from CybSafe and the National Cybersecurity Alliance shows that 61 percent of respondents worry about becoming cybercrime victims and 38 percent believe personal data theft is unavoidable.
Over 80 percent of organizations affected by supply chain cyber breaches


A new report from cyber defense company BlueVoyant finds that 81 percent of organizations report they were negatively impacted by a cybersecurity breach within their supply chain over the past twelve months.
Although there has been a promising 17 percentage point year-on year increase (from 19 percent to 36 percent) in respondents reporting they working with third parties at every step to resolve issues, the process remains challenging.
Why DevOps teams are shifting to platform engineering [Q&A]


Software development has become increasingly demanding in recent years often driven by underlying infrastructure complexities.
This is leading some organizations to shift towards dedicated platform engineering teams. These can help by automating repetitive tasks, enhancing security protocols, and providing seamless integration across diverse systems. This in turn enables developers to focus on their core role of building applications.
Ransomware still the #1 cyber threat


A new report from Check Point Research shows that ransomware remains the top cyber threat, with RansomHub emerging as the fastest-growing group, operating through Ransomware-as-a-Service (RaaS).
As of September 2024, RansomHub accounted for 19 percent of all ransomware victims published in shame sites, marking a shift in the cybercriminal landscape. Meanwhile, Lockbit, once dominant, has seen a significant decline, responsible for only five percent of new victims, many of which are recycled from previous attacks.
Ian's Bio
Ian spent almost 20 years working with computers before he discovered that writing about them was easier than fixing them. Since then he's written for a number of computer magazines and is a former editor of PC Utilities. Follow him on Mastodon
© 1998-2025 BetaNews, Inc. All Rights Reserved. Privacy Policy - Cookie Policy.