Security vulnerabilities stories - Page 3

BeyondTrust launches Phantom Labs, a specialised team to research identity security threats and enhance protection against identity exploitation in hybrid and cloud environments.

Amsterdam-based cybersecurity startup Dawnguard secures USD $3 million to embed security into system design, aiming to prevent risks from the development phase onwards.

Panaseer has launched Key Drivers, an AI tool delivering real-time cybersecurity risk analysis to help organisations swiftly spot and address vulnerabilities.

Azul has launched a Managed Services Provider Programme to help partners offer Java asset management, security and code insights via its Intelligence Cloud platform.

Nearly 8% of UK and US employees use Chinese generative AI tools at work, raising concerns over frequent exposure of sensitive corporate data, a study finds.

Identities have become the prime target in cybersecurity, with businesses urged to secure digital access through ownership, least privilege, MFA, and secret management.

Cycode and HackerOne partner to integrate bug bounty findings into Cycode's platform, speeding up vulnerability fixes and improving software security workflows.

A design flaw in Windows Server 2025 allows attackers to persist undetected in Active Directory by exploiting managed service account vulnerabilities.

A race condition vulnerability in nopCommerce gift cards lets attackers redeem the same card repeatedly, exploiting a flaw in the checkout process.

A new report reveals a widening gap between AI innovation and enterprise security, with 36% of firms struggling to keep up with generative AI risks.

Outpost24 reveals seven common OAuth risks and offers best practices to help organisations prevent unauthorised access and data breaches through better token security.

A report finds poor cloud security and misconfigurations put sensitive data and secrets at risk across major public cloud providers worldwide.

Jamf's Security 360 Report reveals a sharp rise in phishing and infostealers targeting Apple devices, urging organisations to strengthen cybersecurity measures.

Aiden Technologies is now available in the Microsoft Azure Marketplace via MACC, enabling organisations to acquire its endpoint management platform using existing Azure funds.

Adidas has suffered a data breach via a third-party provider, exposing customer information and highlighting rising cyber risks in retail supply chains.

Picus Security launches Exposure Validation, a tool using real-time attack simulations to identify which vulnerabilities are truly exploitable in organisations.

Google DeepMind has unveiled a new strategy to bolster Gemini 2.5 AI against indirect prompt injection attacks, enhancing its security and resilience.

Nearly 42% of data breaches in top fintech firms stem from third-party vendors, highlighting critical supply chain vulnerabilities despite strong internal security.

Nearly 70% of organisations see AI, especially generative AI, as their top security risk, says Thales' 2025 Data Threat Report based on over 3,100 experts.

Tenable launches connectors and customisable dashboards in Tenable One, unifying security data from multiple tools to enhance risk visibility and management.