Latest Technology News

Security Operations Centers are inundated with thousands of alerts each day, most of which are false positives or low-severity issues. This flood of noise leads to alert fatigue, forcing SOC analysts to waste valuable time on false alarms instead of focusing on genuine threats.

A new study from Dropzone AI looking at SOC analyst performance across 148 security analysts shows that AI can improve effectiveness. AI assisted investigations were 22–29 percent more accurate than those in the unassisted control group. 

A report released today finds that approximately 60 percent of businesses are using three
or more secure sockets layer (SSL) providers and suggests a lack of centralized processes for SSL certificate management.

The study from domain security company CSC analyzed usage trends and patterns for more than 802,000 digital certificates linked to 2.4 million domains. It finds domain validated (DV) certificates account for three-quarters (73.4 percent) of certificates while organization validation (OV) certificates represent nearly a quarter (24.6 percent). Extended validation (EV) certificates account for less than two percent (1.9 percent).

Wave Browser, a web browser developed by Eightpoint, is introducing a new way for users to contribute to ocean conservation without changing their daily habits (beyond, you know, changing their browser).

Through a partnership with ocean cleanup company 4ocean, Eightpoint says it will fund the removal of 100,000 pounds of plastic and trash from oceans and coastlines over the next year.

According to a survey of over 1,000 US consumers conducted on behalf of brand visibility platform Yext, just 11 percent trust the first tool they use when searching online, meaning nearly nine out of 10 double-check or expand their results elsewhere.

The research suggests the age of one-stop search and shop is ending and Americans are increasingly blending traditional search engines with AI tools, social media, and review sites to make purchase decisions.

Ashampoo has launched Photo Commander 19, the newest version of its photo management and editing software. The update focuses on data protection, compatibility with a greater range of modern formats, and improved reliability.

Photo Commander 19 adds automatic encryption for databases, backups, and registry entries to help protect stored information. There’s also an optional screenshot protection feature to prevent unauthorized capture by external software.

Both Microsoft and Valve have issued warnings about flaws in the Unity engine that could expose gamers to attack. A new version of Steam has been released to plug the security hole as well.

Tracked as CVE-2025-59489, the Unity Gaming Engine Editor vulnerability has a severity rating of 8.4. The nature of Unity is such that the flaw affects multiple platforms – Windows, Linux, macOS and Android. There is good news for some, however; Xbox consoles, Xbox Cloud Gaming, iOS and HoloLens all remain unaffected.

A new global study of over 800 senior IT leaders reveals the concerns of IT leaders as they struggle with the rising complexity of recovery planning to cope with the aftermath of cyberattacks.

The survey from infrastructure specialist 11:11 Systems finds that 82 percent of respondents have experienced at least one significant cyberattack, while 57 percent endured two or more attacks within the past year.

Advertising is how Meta makes money, hence Facebook users being bombarded with ads and “recommended content”. Starting today you may receive a notification that things are about to change. Unsurprisingly, they are not changing for the better.

Meta says that it is going to “start personalizing content and ad recommendations on our platforms based on people’s interactions with our generative AI features”. What does this mean? Targeted ads, essentially.

The situation regarding Red Hat’s recent data breach is worsening – both for the company and for its customers. With GitLab instances belonging to the company having been breached by the Crimson Collective, hundreds of gigabytes of data were stolen.

Now the data breach has transformed into a demand for ransom – perhaps predictably. Interestingly, though, the extortion is not being perpetrated by the Crimson Collective, but by ShinyHunters.

With just a week to go until Windows 10 reaches the end of mainstream support, attention is increasingly turning to Windows 11. And with the release of the latest Dev build of the operating system, Microsoft is making changes to the OOBE.

The Out Of Box Experience is what Microsoft calls what most people refer to as the installation and setup process. With the latest changes, Microsoft is closing loopholes used to create local accounts, thereby forcing the use of a Microsoft Account.

A new report from The Conference Board and ESGAUGE finds that 72 percent of S&P 500 companies now flag AI as a material risk in their public disclosures. That’s up from just 12 percent in 2023, underscoring how rapidly AI has moved from experimental pilots to business-critical system.

Reputational risk tops the list, cited by 38 percent of companies. Firms warn that failed AI projects, missteps in consumer-facing tools, or breakdowns in service could quickly erode brand trust. Cybersecurity risks follow, disclosed by 20 percent of firms.

Google has released information on a new AI-powered agent that automatically improves code security by fixing critical software vulnerabilities.

CodeMender has been built over the past six months and the company has already upstreamed 72 security fixes to open source projects, including some as large as 4.5 million lines of code.

The Scattered Spider group seems to have switched from high-profile attacks on UK retailers to new campaigns targeting the insurance sector. The group has recently been linked to ransomware incidents affecting US-based Philadelphia Insurance and Erie Insurance, which operates in both the UK and the US.

We spoke to Danny Howett, technical director at global cybersecurity consultancy CyXcel, to discuss why insurance is such an attractive target and some practical steps insurers can take to shore up their defences against increasingly organised cybercriminals.

A ruling by a Dutch court could ultimately force Meta to make sweeping changes to timeline appearance in the likes of Facebook and Instagram. While it is possible to switch form an algorithm-controlled timeline to a chronological one, the court says that this should be made more accessible.

What could this mean? Right now, it is difficult to say for sure, but it could be the case that – in some jurisdictions, at least – Meta could be required to make a chronological timeline the default.

Oracle has released an emergency patch and an urgent security warning about a 0-day vulnerability in Oracle E-Business Suite.

Tracked as CVE-2025-61882, the security flaw has a severity rating of 9.8 and is described as an “easily exploitable vulnerability”. Oracle warns that the vulnerability is “remotely exploitable without authentication”, going some way to explaining why it is seen as being so serious an issue.