Security vulnerabilities stories - Page 4

Nearly 70% of organisations see AI, especially generative AI, as their top security risk, says Thales' 2025 Data Threat Report based on over 3,100 experts.

Tenable launches connectors and customisable dashboards in Tenable One, unifying security data from multiple tools to enhance risk visibility and management.

Kaspersky reveals Lazarus Group's 'Operation SyncHole,' targeting South Korean supply chains via software vulnerabilities and watering hole attacks.

Kaspersky warns AI-generated passwords from ChatGPT, Llama, and DeepSeek often show predictable patterns, leaving users vulnerable to cyberattacks.

Businesses are boosting cloud security efforts as rising cloud adoption brings complex risks, requiring new strategies to protect sensitive data and maintain compliance.

The Cloud Security Alliance's 2025 report reveals repeated cloud security failures, urging firms to bolster identity controls and shared defence measures.

Google's GTIG reports 75 zero-day exploits in 2024, highlighting a rising threat to enterprise tech despite a slight overall decrease from 2023.

GitHub Copilot has exceeded 15 million users, growing rapidly as Microsoft advances its AI tools in software development and cloud services.

Diligent teams up with Cloudflare and Qualys to launch Cyber Risk Report, offering real-time threat insights for boards and executives on one platform.

Anetac launches Human Link Pro, unifying human and non-human identity management with AI to combat rising security risks amid workforce shifts globally.

BeyondTrust launches free Identity Security Risk Assessment, helping organisations identify and address vulnerabilities across cloud, hybrid, and on-premise environments.

Checkmarx integrates its Application Security Posture Management into IDEs, enhancing developer experience by streamlining vulnerability management and boosting AppSec efficiency.

Skyfire and Cequence Security partner to enable secure, compliant access and transactions for AI agents across digital services globally.

Qualys unveils Policy Audit to boost compliance efficiency, cut costs, and reduce risks amid rising regulatory demands and system complexities.

Datadog reveals updated DevSecOps report showing Java's vulnerabilities and announces Metaplane acquisition to boost data observability and AI monitoring.

Armis launches free Vulnerability Intelligence Database to help security teams anticipate and tackle cyber threats with real-time, AI-driven insights.

Perforce Software updates Puppet Enterprise Advanced to accelerate vulnerability fixes and boost collaboration amid rising cyber threats and AI-driven attacks.

Cycode launches AI Teammates and CI/MON runtime protection to enhance software supply chain security and threat detection in application security.

Tenable Research revealed a privilege escalation flaw in Google Cloud Composer, risking unauthorised access to key cloud resources before Google's fix.

Socket has acquired cybersecurity startup Coana to enhance its supply chain security platform, cutting false positives by up to 80% for faster threat remediation.