As generative AI tools have become more powerful, affordable and accessible, cybercriminals are increasingly adopting them to support attacks, these range from business fraud to extortion and identity theft.

A new report from Trend Micro shows that deepfakes are no longer just hype but are being used in real-world exploitation, undermining digital trust, exposing companies to new risks, and boosting the business models of cybercriminals.

Although enterprise AI investment continues to accelerate, executive confidence in the strategies guiding this transformation is falling according to a new report.

The research from Akkodis, looking at the views of 500 global Chief Technology Officers (CTOs) among a wider group of 2,000 executives, finds that overall C-suite confidence in AI strategy dropped from 69 percent in 2024 to just 58 percent in 2025. The sharpest declines are reported by CTOs and CEOs, down 20 and 33 percentage points respectively.

Mainstream developers and users are increasingly seeking alternatives to big tech’s centralized servers and cloud-based systems.

Issues like data breaches, censorship, and monopolization are driving this trend. We spoke to Mathias Buus Madsen, CEO of Holepunch, about why decentralization matters and how we can expect the trend to develop.

According to the Office for National Statistics, in late May 2025, 77 percent of UK businesses with 10 or more employees reported that their staffing costs, covering wages, bonuses, national insurance (NI) and pension contributions, had increased over the preceding three months; a rise of 41 percent since late February 2025, and a 17 percent rise from the year before.

In the light of this Brian Sibley, Virtual CTO at Espria, says clear and concise billing models for the cloud are needed for a wholly comprehensive understanding and urges businesses to urgently assess their MS Azure subscriptions to reduce costs and improve services.

Supply chain security company Sonatype has released the Q2 2025 edition of its Open Source Malware Index, uncovering 16,279 malicious open source packages across major ecosystem.

This brings the total number of open-source malware packages Sonatype has discovered to 845,204. Compared to the end of the same quarter last year, the total volume of malware logged by Sonatype has surged 188 percent, underscoring the growing sophistication and scale of attacks aimed at developers, software teams, and CI/CD pipelines.

Advanced phishing kits and info-stealing malware have accounted for a 156 percent jump in cyberattacks targeting user logins.

A new report from cybersecurity company eSentire shows attackers are increasingly opting for obtaining login credentials and session cookies via phishing or malware. This then allows them to carry out Business Email Compromise (BEC) attacks, gain access to bank accounts, or steal cryptocurrency.

Microsoft Active Directory (AD) turned 25 earlier this year -- remarkable longevity in the technology world. It’s the identity backbone for more than 80 percent of enterprises, meaning a breach could be catastrophic.

We spoke to Sean Deuby, principal technologist at Semperis, to look at the top considerations for protecting AD for the future, as most organizations he talks to have no plans to move on from the aging technology.

Earlier this week we looked at the use of AI in recruiting and retaining staff. But that was from the business point of view. What about the other side of the coin, can you -- should you -- use AI when applying for a job?

The UK government clearly thinks so. New guidelines on the Civil Service Careers website say that tools like ChatGPT, Copilot and Gemini can be used to, “enhance your application and prepare for the process”. However it goes on to caution that AI shouldn’t be used to, “provide misleading or false information at any stage of the application journey.”

As summer travel plans ramp up, so do concerns around identity theft, fraud, and safety – especially as travelers engage with everything from airlines to Airbnbs, ride shares to public Wi-Fi.

We spoke to Bala Kumar, chief technology and product officer at Jumio, to discuss the AI-powered scams threatening enterprises' customers this summer, and how businesses can ensure safe, secure, and efficient identity verification.

We’re all familiar with the idea of TLS/SSL security certificates that verify the identity of a website and ensure trust and security on the web by confirming that the site you’re visiting is what it says it is.

Usually these relate to the domain name of the site, since that’s how most people gain access, indeed if you type in the underlying IP address instead you’ll often get an error because of the lack of a certificate.

AI is revolutionizing how software gets built, making the process faster, smarter, and more autonomous. But it also introduces more risk than we’ve ever seen and challenges application security, which wasn’t designed for AI-driven development processes.

In response to this Legit Security is launching Legit MCP (Model Context Protocol) Server. This new offering brings application security posture management (ASPM) to AI-led development, making vulnerability management simpler.

Businesses and politicians are calling on the EU to pause the rollout of its wide-ranging new AI Act which became law last year. The act relies on technical standards which have been slow to emerge. Provisions of the act such as new rules for General-Purpose AI (GPAI) models, due to apply on August 2nd, still lack essential guidance.

Swedish prime minister Ulf Kristersson has called the new rules ‘confusing’ and said that he worried the continued rollout could lead to Europe falling behind technologically or specific applications not being available on the European market.

A new ‘innovator passport’ -- set to be introduced over next two years -- will allow new technology that has been robustly assessed by one part of the UK’s National Health Service (NHS) to be more easily rolled out to others.

Healthcare innovations need to be thoroughly tested before being widely adopted, but of course this can slow down potentially life saving innovations from reaching the people who would benefit from them.

Recruiting, training and retaining staff is very much a human issue rather than a technology one, right? Not necessarily, using data and insights from AI organizations can measure and improve employee performance as well as creating a more welcoming and inclusive work environment.

We spoke with Dr. Serena Huang, founder of Data with Serena and author of The Inclusion Equation: Leveraging Data & AI for Organizational Diversity and Well-Being, to learn more about how data can be used to drive meaningful progress in DEI and employee well being.

We reported a few weeks ago on the challenges businesses face in getting workers to adapt to new generative AI technology.

The latest report from digital experience specialist Nexthink, based on a survey of 220 public sector IT decision makers, shows that this is a particular problem in the public sector, with 96 percent of IT leaders believing this new era of digital transformation will increase digital friction.