Infosec stories - Page 2

Sonatype flags 21,764 malicious open-source packages in Q1 2026, with npm hit hardest as attackers used trusted workflows to steal secrets.

Cyber security leaders are split over whether firms should rush into post-quantum cryptography now or keep attention on AI-driven malware.

Most companies lack confidence in cyber defences as a Sygnia survey finds major gaps in visibility, coordination and board-level readiness.

Wireless Broadband Alliance issues new rules for public and enterprise Wi‑Fi, pushing stronger authentication, privacy and roaming protections.

KnowBe4 unveils Agent Risk Manager to monitor autonomous AI agents in real time, flag prompt injections and curb rogue data access.

Finance chiefs warned over shadow AI as staff paste ERP data into consumer tools, risking model training and bypassing governance.

Portnox hires Jonathan Skinner as Chief Marketing Officer to drive global growth, with the cybersecurity veteran tasked with sharpening go-to-market strategy.

Experts warns that AI agents and other non-human identities are exposing dangerous enterprise blind spots as firms race to scale automation.

Synack launches AI-driven assessment to expose overlooked attack surface gaps as offensive tools speed up vulnerability discovery.

Splashtop unveils AI-assisted endpoint platform for IT teams, blending patching, remote support and security alerts in one console.

Logicalis survey finds 77% of firms hit by cyber incidents as CIOs warn AI is adding fresh risk, with weak governance and skills shortages deepening exposure.

Gigamon and Thales caution that attackers are stockpiling encrypted data now, warning quantum advances could expose it years later.

Forrester warns Anthropic's Project Glasswing could overwhelm vulnerability management, as AI uncovers flaws faster than patching teams can respond.

Security chiefs warn organisations that AI agents, machine accounts and stolen credentials are shifting cyber risk from the perimeter to identity.

Booking.com tells some customers to watch for phishing after suspicious activity exposed reservation details, contact data and messages linked to bookings.

AI-driven bots and machine accounts are exposing long-running identity security gaps across Australian and New Zealand organisations, experts warn.

Doppel secures three ISO certifications for AI governance, security and privacy, as enterprise buyers demand stronger assurance against AI-driven cyber threats.

Salt warns AI agents are widening the API security gap, with 92% of organisations still short of advanced defences and 47% delaying releases.

Certes says v7 extends quantum-safe data protection to edge systems, letting organisations secure hybrid workloads without application rewrites.

AI-era data security needs more than DSPM visibility, as firms must track how sensitive information moves and enforce controls in real time.