Patching stories
Ransomware hit manufacturers hardest in 2025 as incidents climbed 56 per cent, with ageing factory systems and suppliers widening exposure.
Small IT teams get a single console for patching, remote support and security alerts as endpoint management and response are merged globally.
An exploited SharePoint spoofing bug is among 167 fixes, as Microsoft also patches a critical unauthenticated Windows RCE and a Defender flaw.
It aims to cut the need for multiple IT tools by combining patching, security alerts and remote support in one dashboard for distributed fleets.
Faster AI-led flaw discovery could overwhelm patching and disclosure processes, leaving companies with bigger backlogs and less time to respond.
Leaked AI credentials and unpatched dependencies are leaving production systems exposed across US and European organisations, Orca Security said.
Security teams are falling behind as attackers now exploit some flaws before disclosure, leaving critical systems exposed for longer.
Victims in healthcare, education and finance have faced Medusa ransomware within 24 hours of flaws emerging, Microsoft says.
Attackers are now exploiting flaws before patches exist, leaving 85% of vulnerable assets unpatched at disclosure across 10,000 organisations.
MSPs can now add 24/7 threat monitoring and incident response without building their own security operations centre, as Acronis goes global.
Trusted software and identity sessions are now prime attack paths, with ClickFix linked to more than 44% of defence evasion incidents.
Growing demand for downtime protection is driving SIOS to showcase resilience tools for SQL Server and Linux teams across cloud and hybrid estates.
Hidden software and poorly protected backups are leaving businesses more exposed to automated ransomware attacks, security experts warned.
Small firms are still being hit by basic security failures, with SonicWall saying attacks on them rose 20.8% to more than 13 billion hits.
Ransomware is exposing backup gaps that can leave firms unable to restore critical services quickly enough to meet regulators’ deadlines.
Identity teams could face slower patching and costlier upgrades when “SaaS” turns out to be hosted software, experts warn.
Enterprises could cut in-house patching as the deal brings supported, security-focused database container images to production environments.
Large organisations can now query endpoint risk in plain English, as the adviser aims to speed patching and exposure checks across huge fleets.
Customer data and service security may be at risk, as nearly one in five UK telecom web servers leak configuration details, a study finds.
Enterprises face faster phishing, deepfakes and automated exploits as security leaders say existing controls lag behind frontier AI models.
