Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Ransomware attacks target your backups before anything else. Recent data shows that two-thirds of organizations faced ransomware in the past two years, with attackers specifically hunting backup infrastructure to eliminate recovery options. Once your backups are gone, you’re left with two choices: Pay up or lose your data permanently.

From secure service mesh rollouts to AI cluster hardening, see how KubeCon + CloudNativeCon NA 2025 redefined identity, trust, and governance in Kubernetes environments.

Let’s catch up on the more interesting vulnerability disclosures and cyber security news gathered from articles across the web this week. This is what we have been reading about on our coffee break! Heard of this thing called rate limiting on API? Perhaps not.

We are reducing the number of supported major versions of Teleport from three to two. We are extending the support for each major version to 24 months. New major versions will come out once per year in August. The most recent major version of Teleport, referred to as the Current Version, is the only major version of Teleport that will receive new features. The previous major version, referred to as the Stable Version, will only receive bug fixes and security patches.

Continuous Threat Exposure Management (CTEM) is a proactive cybersecurity framework that continuously reduces your attack surface in response to emerging threats.

The UK government has introduced its Cyber Security and Resilience Bill to parliament, signaling a significant update to the nation’s cybersecurity framework. The legislation aims to modernize and strengthen the existing Network and Information Systems (NIS) Regulations 2018, preparing the UK to defend against a new generation of digital threats. This bill is more than a regulatory update; it is a clear call for businesses to embed proactive security and resilience into their core operations.

The Monthly Intelligence Insights report provides a summary of top threats curated, monitored, and analyzed by Securonix Threat Labs in October 2025. The report also includes a synopsis of the threats, indicators of compromise (IoCs), tactics, techniques, and procedures (TTPs), and related tags. Each threat has a comprehensive summary from Threat Labs and search queries from the Threat Research team.

Automation has become the foundation of modern cybersecurity operations. What was once a tool for efficiency is now critical. In parallel, artificial intelligence is no longer just a buzzword; it is reshaping how organizations detect, analyze, and respond to threats. The new Cybersecurity Automation and AI Adoption Report explores how global security leaders are approaching these technologies, what’s driving adoption, and where organizations still face challenges.

In January 2025, China-based AI startup DeepSeek (深度求索) released DeepSeek-R1, a high-quality large language model (LLM) that allegedly cost much less to develop and operate than Western competitors’ alternatives. CrowdStrike Counter Adversary Operations conducted independent tests on DeepSeek-R1 and confirmed that in many cases, it could provide coding output of quality comparable to other market-leading LLMs of the time.

In a cloud-first world, sensitive data moves quickly between microservices, APIs, SaaS applications, and storage services. CrowdStrike Falcon Data Protection for Cloud, now generally available, delivers runtime visibility and protection for sensitive data in motion so organizations have continuous insight into how data moves, when it’s accessed, and where it’s at risk.