Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

New SpyCloud research highlights the expansion of phishing attacks as AI and phishing-as-a-service fuel enterprise targeting.

New research from cybersecurity company Heimdal finds 29% of US executives say AI risk is under control, against 7% of the practitioners running it day-to-day. Across 1,000 IT professionals in the UK and US, AI adoption has outpaced security controls by roughly two to one.

Every major business deal carries a hidden variable: the people on the other side of the table. Financial statements can be polished. References can be coached. Registrations can be clean while ownership structures hide something far less clean. That is the gap a private intelligence company is built to close - before a bad decision becomes an expensive lesson.

The rapid migration of wealth management to cloud platforms introduces significant convenience for private investors. Managing a diverse set of assets now requires constant interaction with web applications. Digital dependency exposes capital to aggressive groups operating malicious software. Hackers regularly build malicious tools targeting financial balances and personal identification records. Standard defenses frequently fail against targeted threats. Protecting private capital requires a shift toward active defense measures.

A civil premises liability lawsuit begins ticking the exact moment an attack occurs on a poorly managed property. Most injured parties assume a standard two-year clock dictates their entire window for financial recovery. That rigid assumption ignores how the civil justice system handles third-party violence.

Digital payments have changed how businesses and customers interact, making transactions fast and efficient, whether online or with a tap. This convenience, however, means businesses need to be extra careful about security. For any organisation handling payments, a strong risk management plan isn't just a good idea; it's essential for protecting your business, your customers, and your reputation.

Modern software rarely gets built from scratch. Instead, it's put together using a complex mix of proprietary code, open-source libraries, third-party APIs, and various development tools. This network of dependencies and components makes up the software supply chain. While this approach speeds up development, it also brings significant security risks that attackers can exploit, making it more crucial than ever to protect this chain.

Two foundational identity concepts - controlling the scope of agent roles and constraining what they can access - now have a production implementation in Beams, Teleport's trusted, ephemeral agent runtime.

Aembit on Tuesday announced support for Copilot Studio, extending its identity and access management capabilities to Microsoft's enterprise AI agent platform. The integration, unveiled at Identiverse 2026, gives security teams the tools to manage what Copilot Studio agents can access, under what conditions, and with a complete record of every decision. The company also released an interactive enterprise AI readiness checklist to help organizations assess their agent deployments before they go into production.

GitGuardian is introducing Developer Endpoint Protection, extending its secrets and non-human identity (NHI) security platform coverage to developer workstations.