Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

AI adoption isn’t slowing down. It’s accelerating, quietly, unevenly, and often outside formal control. To separate assumption from reality, CultureAI commissioned an independent research study of 300 senior technology, security, and risk leaders across North America and Europe. Respondents included CISOs, CIOs, CTOs, Data Protection Officers, and senior IT and security leaders across finance, healthcare, technology, legal, and professional services.

Google Threat Intelligence Group recently released its latest report, “GTIG AI Threat Tracker: Distillation, Experimentation, and (Continued) Integration of AI for Adversarial Us,” on how malicious adversaries are using AI to commit cybercrimes.

During routine analysis, CYJAX identified a typosquatting phishing campaign which impersonated the Optical Character Recognition (OCR) tool Tesseract OCR. What originally appeared to be a ClickFix attack evolved into a sophisticated campaign delivering multi-stage malware deployments. The campaign, which CYJAX has titled OCRFix, made use of heavy obfuscation and defence evasion techniques, including EtherHiding.

Ransomware incidents are often perceived as sudden, destructive events triggered by malicious payloads. In reality, many modern ransomware attacks begin much earlier and in a far less visible way: with compromised credentials and pre-existing access sold in underground markets. Threat intelligence collected from access broker activity and credential exposure sources indicates that ransomware operators increasingly rely on purchased access rather than direct exploitation.

pCloud is a cloud storage service founded in 2013, providing users with cloud storage to upload, sync, access, and share files across devices, including computers and mobile phones. The company offers free and paid plans, including lifetime storage options, file sharing tools, automatic backup features, and optional zero-knowledge encryption through its paid pCloud Crypto service. Throughout this article, we will answer the question: Is PCloud safe, along with covering the following topics.

WORM (Write Once, Read Many) is a data storage model specifically designed to guarantee data integrity over time. In a WORM-compliant storage, data is written once and cannot be altered or erased for a defined retention period (can be read as often as needed though). Table of contents: hide What is WORM (Write Once Read Many) How WORM works in practice WORM vs immutable storage Why WORM is important against ransomware WORM-compliant storage in GitProtect Why WORM alone is not enough.

We’re excited to announce that GitProtect, an enterprise DevOps Backup & Disaster Recovery software, is now officially available on Microsoft Marketplace! This milestone represents more than a new distribution channel. It reinforces our commitment to delivering secure, enterprise-ready DevOps data protection, which is now also accessible through a trusted Microsoft ecosystem.

Microsoft Defender is widely deployed across small and midsize businesses. It is built into the Microsoft ecosystem, familiar to IT teams, and effective at detecting suspicious activity on endpoints. However, detection alone does not stop an attack. As cyber threats evolve, the biggest risk is not missing alerts. It’s failing to investigate and respond to them fast enough. The risk lies in what happens after an alert is generated.

Cato CTRL’s Vitaly Simonovich (senior security researcher) has identified a threat actor selling root shell access to a UK-based automation company through a compromised AI personal assistant based on OpenClaw.

AI agents aren’t applications. They’re employees. So why are we treating them like applications? AI agents don’t behave like classic applications. They access systems. They make decisions. They operate continuously. They interact with humans and other systems without being explicitly triggered each time. That’s not automation. That’s not scripts. That’s a digital worker.