Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

The Philippines, like many other nations, is witnessing a dramatic increase in cyber threats, fueled by the rapid adoption of digital technologies and the proliferation of sophisticated cybercriminals. This article examines the evolution of cyber threats in the Philippines, with a focus on phishing, email security and the risks posed by agentic AI.

The Asia-Pacific and Japan (APJ) region, with its dynamic economic growth and technological advancements, presents unique challenges and opportunities in the realm of human risk management and agentic risk management, particularly within the financial services sector. As financial institutions strive to protect themselves from increasing cyber threats, they must align their security practices with the regulations set forth by central banks across the countries.

BDRShield v9.1.0, released o May 6, 2026, brings practical improvements that speed backups, strengthen recover-ability, and give admins clearer visibility—especially for distributed sites, and MSP operations. This update focuses on...

An EU AI Act compliance checklist is a structured framework that helps organisations systematically identify, classify, and govern all AI systems within scope of Regulation (EU) 2024/1689. It covers AI system inventory, risk classification (unacceptable, high-risk, limited, and minimal), conformity assessment requirements, technical documentation (Annex IV), human oversight obligations, GPAI model obligations, and post-market monitoring.

No man is an island, entire of itself; Every man is a piece of the continent, a part of the main.– John Donne Let’s face it, we have a gap in our cyber posture. Thirty percent of breaches originate from third parties, yet as organizations become increasingly exposed to supply chain attacks, they often lack the visibility, context, and workflows to detect and respond to them. Why?

As DevOps environments become primary attack surfaces, protecting your intellectual property (IP) requires a data-driven understanding of the modern threat landscape. The 2026 “DevOps Threats Unwrapped Report” by GitProtect accelerates building your cyber awareness. It brings you the latest statistics, highlighting contemporary trends in DevSecOps. It also dives into dozens of real attacks and breaches affecting SaaS platforms in 2025 in 10 different areas.

CVE-2026-45185, nicknamed Dead.Letter, is a use-after-free vulnerability in the BDAT message body parsing path of Exim, the open-source Mail Transfer Agent that runs a large share of the internet's email servers. The flaw lives in the GnuTLS-backed TLS path, where Exim can free its internal transfer buffer during a TLS shutdown while the SMTP state machine still holds a reference to it.

Globally, schools and universities now face over 4,300 cyberattacks per week on average, marking a 40% year-over-year increase and making the education sector a prime target for disruptive DDoS attacks. Most educational institutions operate with lean IT teams responsible for infrastructure, user support, and security. This resource constraint makes it difficult to withstand prolonged or application-layer DDoS attacks that can quickly disrupt learning platforms and administrative systems.

SMBs absorbed approximately 894 million attacks in 2025, a 71% year-over-year increase — and DDoS drove 85% of that volume, nearly three times the enterprise rate. API DDoS on SMB platforms surged 1,122% in a single year, according to the Indusface State of Application Security 2026 report. With most SMB security operations run by teams of fewer than five people managing both infrastructure and security simultaneously, cybercriminals increasingly view smaller businesses as soft targets.