Infosec stories - Page 3

Minor Hotels teams up with Google, Salesforce, OneTrust and Deloitte on an AI-led data platform to sharpen guest service across 640 properties.

UK SOC spots Monday-morning conditional access failure from Germany, helps reset compromised Microsoft 365 account before attackers can strike.

Trust Panda opens Auckland hub with local YubiKey stock for New Zealand buyers as phishing fears drive demand for stronger authentication.

Anthropic enlists Amazon, Apple and Microsoft in Project Glasswing to use Claude Mythos Preview for hunting vulnerabilities in critical software.

Secureframe adds user access reviews to Comply platform to help compliance teams replace spreadsheets and email with a single audit-ready workflow.

Orca Security warns that AI credentials, vulnerable dependencies and lax pipeline controls are leaving production environments exposed across US and Europe.

iProov warns iOS injection attacks surged 1,151% in late 2025 as generative AI fuels deepfake impersonation and identity fraud.

Arctic Wolf earns a strong 2026 Gartner Peer Insights showing for managed detection and response, backed by 241 reviews and a 99% recommendation rate.

Abacus secures CREST accreditation for penetration testing, bolstering its pitch to regulated sectors as demand rises for verified cyber security assurance.

Dynatrace agrees to buy Bindplane to expand telemetry pipelines, aiming to cut ingest costs and give customers greater control over observability data.

Microsoft warns that 10 to 15 EvilToken phishing runs are launched daily, compromising hundreds of organisations through OAuth token abuse.

Qualys says attackers are exploiting flaws before disclosure as remediation backlogs swell, with edge devices facing the highest risk.

TrendAI urges stronger AI governance as it shifts cybersecurity from fear-based selling to platformised risk reduction for Australian firms.

Anthropic expands a guarded AI pilot with Amazon, Apple, Microsoft and others, offering Claude Mythos Preview to hunt flaws in critical code and open source.

Data quality gives banks a scalable route to digital trust, cutting fraud and false positives while speeding onboarding, KYB and AI-driven checks.

China-linked TA416 returns to spying on European diplomats and later expands attacks to Middle Eastern government targets after Iran conflict.

Commvault adds structured database controls to Commvault Cloud after Satori deal, aiming to curb AI-era exposure across live and backup data.

Cloudflare and WatchGuard urge organisations to rethink cloud defences as rising identity attacks, AI risks and quantum threats expose weak spots.

GigaOm names Check Point a third-year application security leader as its WAF posts strong detection rates and low false positives.

Attackers abuse trusted tools, remote support software and stolen SSO sessions to breach systems, ReliaQuest says.