Ian Barker

New research from NowSecure tested 50,000 mobile apps in August and finds over 77 percent contain common forms of PII.

It’s well known that the vast majority of mobile apps are built using third-party components like SDKs. The study finds that 98 percent of iOS apps have incomplete privacy manifests due to omissions relating to third-party components, violating Apple transparency requirements and creating major blind spots.

Continue reading →

It’s inevitable that different parts of the enterprise will pull in different directions. This is particularly true when it comes to the IT world where operational teams like the SOC tend to focus on operational resilience while management and the boardroom worry about compliance.

We talked to Kyle Wickert, field chief technology officer of AlgoSec, about how IT pros can balance the compliance demands of the C-suite while maintaining security across sprawling hybrid environments.

Continue reading →

A new survey from OpenText Cybersecurity reveals that MSPs find AI as both a driver of growth and source of new challenges as as demand for scalable, integrated tools continues to rise.

In 2024, 93 percent of MSPs and managed security service providers (MSSPs) said AI interest would drive growth in their business that year. That trend has carried forward to this year, with 92 percent of MSPs now reporting business growth driven by interest in AI, and 96 percent expecting AI to drive business growth this year.

Continue reading →

As organizations continue to navigate complex system integrations, one critical decision that arises is whether to embrace strategic phasing or waterfall implementation. The choice of approach can shape the success or failure of projects, particularly when dealing with large-scale ERP consolidations and replacements.

We spoke with Scott Maggiolo, SVP of information technology at Ribbon Communications to understand the pros and cons of each and how the decision is not one-size-fits-all.

Continue reading →

The latest Radar report from Gcore finds DDoS attacks have reached unprecedented scale and disruption in 2025, and businesses need to act fast to protect themselves from this evolving threat.

Attack volumes increased by 41 percent compared to Q1-Q2 of 2024, evidencing dangerous long term growth trends predicted in prior Radar reports.  The largest attack peaked at 2.2 Tbps in Q1-Q2, surpassing the 2 Tbps peak recorded in late 2024.

Continue reading →

A new report finds that nearly three quarters (73 percent) of UK businesses expect geopolitical risk to intensify over the next 12 months, with 62 percent saying their supply chains can’t deal with the shifting geopolitical sands.

The study from Ivalua, based on a survey of 300 supply chain and procurement decision-makers in the UK, shows the war in Ukraine has negatively impacted confidence in their organization’s supply chain the most (77 percent). This is followed by US tariffs (75 percent), military exercises and testing disrupting major shipping straits (73 percent), tensions between China and Taiwan (62 percent), and the war in Gaza (58 percent).

Continue reading →

We all know that data is a valuable commodity, whether it’s to build marketing profiles or target advertising. Increasingly it’s also being used to train AI models, but do you know what the sites you use are doing with your information?

Data privacy and removal company Incogni has released its Social Media Privacy Ranking 2025 report, which ranks major social media platforms on user privacy, compliance, and overall data protection practices.

Continue reading →

Popular encrypted email service Proton Mail is rolling out brand new iOS and Android apps, offering users a faster, more modern and smoother experience.

Email started on desktop computers and was designed accordingly. As a result early mail apps could feel awkward with slow speeds, clumsy tabs unintuitive layouts. But today, phones are users' primary access to the internet. With this in mind, over the past year, Proton has embarked on an ambitious project to rebuild Proton Mail's iOS and Android apps from the ground up.

Continue reading →

Research released today by The Adaptavist Group reveals deep-rooted contradictions in how companies are approaching and implementing AI technology.

The survey of 900 professionals responsible for introducing and onboarding AI across the UK, US, Canada, and Germany uncovers a major fault line between the 42 percent who believe their company’s AI claims are over-inflated -- the AI ‘skeptics’ -- and the 36 percent of AI ‘realists’ who do not.

Continue reading →

We tend to think of artificial intelligence as being at the cutting edge of technical development, but new analysis from Multiverse shows that over two-thirds of people using AI at work in the UK are in roles not traditionally associated with tech.

The analysis of over 2,500 people on Multiverse’s AI apprenticeship programs reveals that over two-thirds (67 percent) are in non-tech roles -- that is, roles whose job titles don’t include keywords related to tech, data and AI. Instead, among the 50 most common ‘invisible’ roles are frontline public service, education, healthcare and construction roles, including nurses, doctors, librarians, pharmacists, therapists, lecturers and surveyors.

Continue reading →

Vibe coding is currently all the rage, with more than 97 percent of respondents to a survey earlier this year reporting having used AI coding tools at work.

The adoption of these tools only continues to grow but it comes with a catch, attackers are also employing the same techniques. We spoke to Pieter Danhieux, co-founder and CEO of Secure Code Warrior, to discuss how vibe coding is redefining the software development landscape, how malicious actors are also leveraging this technology and the need for organizations to implement secure by design strategies from the outset.

Continue reading →

A new report from Fortinet reveals that despite organizations increasing their data security budgets by 72 percent last year, insider-driven data incidents continue to surge, with 77 percent of companies experiencing at least one breach in the past 18 months.

The study, conducted with Cybersecurity Insiders, exposes a critical disconnect, while security leaders are adopting smarter strategies and securing stronger funding, traditional data loss prevention (DLP) tools are failing to protect against today's sophisticated threats in cloud-heavy, distributed work environments.

Continue reading →

New research reveals that while organizations have nearly doubled their overall AI investment to $27 million (up from $14.7 million in 2024) and 87 percent report that the ROI on their AIOps initiatives has met or exceeded expectations, however, only 12 percent of AI projects have reached full enterprise-wide deployment.

The survey, of 1,200 business decision-makers, IT leaders, and technical specialists, from Riverbed shows organizations report facing several significant barriers to AI implementation. The majority are not fully prepared to roll out AI projects, with challenges including persistent issues with data quality and a gap between leadership optimism and the technical realities of implementation.

Continue reading →

A new report from AI-powered managed extended detection and response company Ontinue shows a sharp rise in MFA-bypassing identity attacks in the first half of the year.

These attacks are using token replay abuse with roughly 20 percent of live incidents involving adversaries reusing stolen refresh tokens to bypass MFA, even after password resets.

Continue reading →

There’s been an 88 percent increase in hardware vulnerabilities amid a proliferation of IoT devices, and 81 percent of security researchers have encountered new hardware vulnerabilities in the past 12 months.

New attack vectors and often forgotten targets like APIs and hardware are vulnerable and should be a key focus for CISOs today according to a new report from crowdsourced security company Bugcrowd, which shows organizations face growing challenges as applications go through multiple development cycles under pressure to release features quickly, often aided by AI-assisted coding.

Continue reading →