Infosec stories - Page 2

Lineaje survey flags a widening governance gap as most firms use AI-generated code, yet few can fully see or track it.

Proofpoint warns that 36% of FIFA World Cup 2026 commercial partners still lack the strongest DMARC settings, leaving fans exposed to spoofed emails.

Check Point says Anthropic's Claude Code can quietly stash credentials in .claude/settings.local.json, which may be published in public npm packages.

Check Point and Google Cloud add governance and live monitoring to enterprise AI agents as firms race to secure autonomous workflows.

LevelBlue says unsanctioned AI agents are slipping into enterprise systems, creating a hidden governance and security blind spot for businesses.

Rubrik adds Google Cloud controls for AI agents and Cloud SQL backups as enterprises race to govern autonomous systems and protect data.

Check Point claims fourth straight win in Miercom hybrid mesh security test, scoring 99.8% and beating rivals on phishing and malware blocking.

Zscaler joins Anthropic's Project Glasswing to test Claude Mythos Preview in software scans, as the firm pushes zero trust against AI-driven attacks.

ServiceNow bolsters cyber security push with Armis buyout, adding real-time asset visibility and deepening its platform after Veza.

HackerOne unveils h1 Validation as vulnerability reports surge 76% and AI tools speed up discovery, leaving firms struggling to triage real threats.

CIS, Astrix and Cequence publish AI security guides for large language models, autonomous agents and MCP environments.

Zero Networks adds AI segmentation and compliance controls to help firms block shadow AI, limit agent spread and tighten network access.

Tenable warns a GitHub Actions bug in Microsoft's Windows-driver-samples repo could let attackers run code and steal secrets via public issues.

The Gentlemen ransomware group has surged to second place in 2026 by victim count, with Check Point saying it may be far larger than its public tally.

CrowdStrike honours JAPAC channel partners in Vietnam, with Sekuro, The Missing Link, AWS Japan and others recognised across services-led security roles.

Critical Microsoft flaws double as Azure and Dynamics 365 risks surge, BeyondTrust warns organisations to prioritise identity and privilege controls.

Fortinet wins Google Cloud 2026 Partner award for workload security as FortiCNAPP strengthens its cloud workload protection pitch.

KnowBe4 and Synthesia launch AI avatar videos for security training, letting firms create, revise and localise content faster across 130 languages.

Vercel says an attack on a third-party AI tool let hackers hijack a staff Google Workspace account and reach internal systems.

AI models that can hunt and chain software flaws are forcing boards to rethink cyber defences, while scrutiny grows over Anthropic's MCP design risks.