Security vulnerabilities stories - Page 2

Organisations risk security breaches not just from hacks, but from poor third-party access management, causing trust and efficiency to erode over time.

Chinese AI coding tool DeepSeek-R1 produces up to 50% more insecure code on sensitive topics, revealing supply chain risks for enterprises using AI assistants.

Cloudhouse launches Foundry, a platform automating legacy app packaging to ease compatibility issues and speed up cloud adoption for enterprises.

Panaseer reveals 70% of major cyber breaches stem from toxic combinations of minor risks compounding, causing greater vulnerabilities and severe consequences.

Mphasis launches two quantum tech solutions to boost enterprise cybersecurity and optimise complex decision-making for improved operational efficiency.

Pentest People launches GuardNest, a redesigned cybersecurity platform enhancing usability, workflows, and accessibility for efficient vulnerability management.

Security experts warn new AI browsers like OpenAI's ChatGPT Atlas pose serious privacy, safety and data risks amid growing adoption and emerging vulnerabilities.

Microsoft will end Windows 10 support from 14 October, leaving millions at risk without security updates unless they upgrade or enrol in Extended Security Updates.

Research by SquareX reveals vulnerabilities in AI-powered browsers like Comet, exposing enterprises to severe cyber threats including data breaches and malware attacks.

Oracle has issued an urgent patch for a critical flaw in its E-Business Suite, exploited by the Cl0p ransomware group using advanced social engineering tactics.

AI vulnerability reports surged 210% as organisations boosted AI security by 270%, with prompt injection attacks rising 540%, HackerOne's report shows.

Security flaws in Google's Gemini AI exposed millions to unseen data breaches by enabling attackers to manipulate logs, search history and browsing tools.

AI platforms and software supply chains face rising cyber risks, urging firms to boost security and governance amid new vulnerabilities in generative AI systems.

Barracuda warns of a surge in advanced OAuth phishing attacks exploiting Microsoft 365 and other platforms to steal access tokens and bypass multifactor authentication.

FIRST launches new forums and special interest groups to boost global cybersecurity collaboration and host a 2025 Vulnerability Forecasting event in Cambridge.

Despite 93% confidence in defences, 62% of organisations faced mobile app breaches last year, prompting a shift towards proactive security in development.

Healthcare sector excels in preventing serious security flaws but takes nearly two months to fix them, risking sensitive data exposure amid rising cyber threats.

Cyberattacks on the financial sector have surged 25% in 2024, with phishing leading and nearly half of employees prone to clicking malicious links.

eZaango Group has secured ISO 27001:2022 certification, reinforcing its commitment to robust information security and leadership against cyber threats.

Quantum computing presents urgent security risks for organisations relying on Microsoft Active Directory, as legacy systems struggle to meet new cryptographic demands.