Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

There was little evidence of a summer wind-down in July’s global developments on digital assets. So much so, it is somehow mid-August already! Below are the digital asset policy developments that caught my attention most since the last roundup.

We're witnessing a paradigm shift from reactive security tools to proactive, intelligent defenders. AI agents represent the next evolution beyond traditional security systems, fundamentally changing how we approach cybersecurity.

Organizations face mounting pressure from cyber threats that exploit detection delays. Industry data shows breach costs averaging $4.45 million per incident, with late detection driving exponential damage. Attackers typically operate undetected for 197 days, establishing deep network presence before discovery. An indicator of compromise is digital evidence or a signal that a network or endpoint has been breached or that malicious activity has occurred.

Most organizations have invested in their cybersecurity programs, ensuring that targeted actions have been taken, such as the deployment of security tools or the formalization of cyber-relevant policies, to reduce their exposure.

DevOps has already become an integrated part of almost every industry and its development process. Whether it’s technology, automotive, healthcare, or any other industry, it’s hard to imagine an organization that doesn’t rely on DevOps. Numbers speak better: the majority of consumers are from the technology sector – 44%, yet there are a lot of organizations from other industries that depend on DevOps – financial, education, etc.

Discover how GitGuardian's "Bring Your Own Source" initiative enables security teams to extend secrets detection beyond code repositories, leveraging custom integrations to eliminate a significant hidden attack surface.

Australia’s updated Protective Security Policy Framework (PSPF) now mandates the adoption of Zero Trust principles. Australia’s Protective Security Policy Framework (PSPF) Annual Release 2025 now formally mandates the adoption of zero trust principles to improve cybersecurity posture. Government organisations must now align their cybersecurity strategies with the Information Security Manual and the Guiding Principles to Embed a Zero Trust Culture.

Once the frontier of innovation, the cloud has become the battleground of operational discipline. As cloud complexity rises, the most common and costly security threats aren't advanced nation-state attacks. They're internal errors. According to the CSA's Top Threats to Cloud Computing Deep Dive 2025, more than half of reported cloud breaches stemmed from preventable issues like misconfigurations, IAM failures, and operational oversights. These are self-inflicted and are happening with alarming frequency.