Vendors' News

Vendor announcements

Microsoft at Black Hat USA 2026: Defending trust in the age of AI and supply chain attacks 
  

Microsoft at Black Hat USA 2026: Defending trust in the age of AI and supply chain attacks 

Join Microsoft Security at Black Hat USA 2026 for supply chain research, hands-on security experiences, expert conversations, and our reception.

Prompt attacks on the Gemini AI-assistant and Google Workspace with Gemini | Kaspersky official blog 
  

Prompt attacks on the Gemini AI-assistant and Google Workspace with Gemini | Kaspersky official blog 

We break down attacks on Google’s AI assistants, and how to protect your devices.Kaspersky official blogRead More

The Good, the Bad and the Ugly in Cybersecurity – Week 29 
  

The Good, the Bad and the Ugly in Cybersecurity – Week 29 

Authorities sanction Russian-based cybercriminals, attackers deploy Starland malware, and 300 imposter GitHub repos push BoryptGrab infostealer.SentinelOneRead More

Email hijacking via OAuth | Kaspersky official blog 
  

Email hijacking via OAuth | Kaspersky official blog 

How cybercriminals bypass two-factor authentication and hijack accounts using adversary-in-the-middle attacksKaspersky official blogRead More

Three Steps to the Terminal: A Siemens ROX II Zero-Day Trilogy 
  

Three Steps to the Terminal: A Siemens ROX II Zero-Day Trilogy 

A technical analysis of three chained zero-day vulnerabilities in Siemens ROX II OT switches that allow privilege escalation and persistent

ACR Stealer: Two observed intrusion chains amid increased threat activity 
  

ACR Stealer: Two observed intrusion chains amid increased threat activity 

From late April 2026 to mid-June 2026, Microsoft Defender Experts observed increased ACR Stealer activity across customer environments. These campaigns

AI, Automation and Attacks: Unpacking the Unit 42 2026 Global Incident Response Report 
  

AI, Automation and Attacks: Unpacking the Unit 42 2026 Global Incident Response Report 

Explore Unit 42’s perspectives on AI’s impact on cybersecurity, including key updates since the 2026 Incident Response Report. The post

Wordfence Intelligence Weekly WordPress Vulnerability Report (July 6, 2026 to July 12, 2026) 
  

Wordfence Intelligence Weekly WordPress Vulnerability Report (July 6, 2026 to July 12, 2026) 

Last week, there were disclosed in and that have been added to the Wordfence Intelligence Vulnerability Database, and there were

  

Using Microsegmentation to Contain Autonomous AI Agents 

Discover why traditional security fails against autonomous AI agents and how machine-speed microsegmentation helps stop tool chaining and lateral movement.BlogRead

Least privilege for AI agents: Identity, access, and tool binding 
  

Least privilege for AI agents: Identity, access, and tool binding 

As AI agents become more autonomous, strong identity, access, and auditing controls are critical to keeping them secure. The post

HelloNet campaign — new malicious modules launched through the ViPNet update system 
  

HelloNet campaign — new malicious modules launched through the ViPNet update system 

We identified targeted infection attempts against large Russian organizations using the ViPNet update system (a software suite for creating secure

Announcing the General Availability of Prisma AIRS AI Gateway 
  

Announcing the General Availability of Prisma AIRS AI Gateway 

Every modern enterprise is moving from an organization run by software to one orchestrated by AI, creating a tension between

Palo Alto Networks and AT&T – Delivering Quantum-Resilient SASE Fabric 
  

Palo Alto Networks and AT&T – Delivering Quantum-Resilient SASE Fabric 

By Yogesh Ranade from Palo Alto Networks, and Senthil Ramakrishnan from AT&T The digital world is currently navigating a dual-speed

GoSerpent: a persistent threat evolves with sophisticated data collection and exfiltration 
  

GoSerpent: a persistent threat evolves with sophisticated data collection and exfiltration 

Two-phase attacks with the GoSerpent backdoor, Stowaway RAT, ThumbcacheService and other tools aim to steal data from government entities in

Hidden Infrastructure Exposed: ANY.RUN Reveals Hijacked Gov Websites Delivering Malware  
  

Hidden Infrastructure Exposed: ANY.RUN Reveals Hijacked Gov Websites Delivering Malware  

An original threat intelligence investigation uncovering how trusted government infrastructure became an attack channel, placing banking organizations and public-sector systems at risk while revealing previously undocumented infrastructure

Unpacking the AsyncAPI npm supply chain compromise and import-time payload delivery 
  

Unpacking the AsyncAPI npm supply chain compromise and import-time payload delivery 

Threat actors compromised AsyncAPI packages and weaponized trusted CI/CD workflows to distribute malware through npm. This analysis breaks down the

Latest

Apple and DOJ Hold Early Settlement Talks in iPhone Antitrust Case
 

Apple and DOJ Hold Early Settlement Talks in iPhone Antitrust Case

Apple is working to settle an antitrust lawsuit with the U.S. Department of Justice, reports Bloomberg. Apple has proposed several

Apple and DOJ Hold Early Settlement Talks in iPhone Antitrust Case

Apple and DOJ Hold Early Settlement Talks in iPhone Antitrust Case

Apple is working to settle an antitrust lawsuit with the U.S. Department of Justice, reports Bloomberg. Apple has proposed several

Apple Music Now Costs $11.99 as Apple Increases Subscription Prices

Apple Music Now Costs $11.99 as Apple Increases Subscription Prices

Apple today increased the price of Apple Music and some Apple One subscription bundles. An individual ‌Apple Music‌ subscription is

iPhone 18 Pro Launching in Two Months With These 12 New Features

iPhone 18 Pro Launching in Two Months With These 12 New Features

It is now mid-July, and that means the iPhone 18 Pro and iPhone 18 Pro Max are now just two

Apple’s plot to crush OpenAI

Apple’s plot to crush OpenAI

Apple is suing OpenAI. The complaint is readable and intense, as these things often are, though many experts seem to

Apple Music is getting a price hike

Apple Music is getting a price hike

Apple Music is more expensive now. In the US, an individual plan now costs $11.99 per month, a $1 bump

Key vulnerabilities of Microsoft’s July 2026 Patch Tuesday 
  

Key vulnerabilities of Microsoft’s July 2026 Patch Tuesday 

Which Windows, SharePoint, and AD vulnerabilities are being exploited in July 2026, and how can organizations adapt to updates containing

Turning threat intelligence into decisive action with Defender Experts 
  

Turning threat intelligence into decisive action with Defender Experts 

Security teams have never had more visibility, yet rarely have they felt more uncertain. Signal pours in from endpoints, identities,

  

Smash and Grab at Scale: Agentic AI Is Reshaping the Threat to Commerce 

The SOTI Security report examines how agentic AI is disrupting commerce security, scaling API abuse, and driving up infrastructure costs.BlogRead

For seamless, secure stadium experiences, Wi-Fi wins 
  

For seamless, secure stadium experiences, Wi-Fi wins 

In iconic venues around the world, Cisco Wi-Fi, AI, and security support the most bandwidth-hungry, future-facing fan interactions.More RSS Feeds:

TuxBot v3: Inside an IoT Botnet Framework With LLM-Assisted Development 
  

TuxBot v3: Inside an IoT Botnet Framework With LLM-Assisted Development 

TuxBot v3 Evolution, an IoT botnet framework built with LLMs. Read our analysis of its cross-compiled binaries, C2 architecture and

OkoBot: new sophisticated malware framework targets cryptocurrency users 
  

OkoBot: new sophisticated malware framework targets cryptocurrency users 

Kaspersky GReAT experts dissect the new OkoBot campaign targeting cryptocurrency users. This complex framework employs TookPS, exfiltrates seed phrases, monitors

Many Sovereignties, One Internet 
  

Many Sovereignties, One Internet 

Digital sovereignty is not simply good or bad. The commons test offers a practical framework for assessing whether different strategies

Six Minutes to Compromise: How ‘Patriot Bait’ Actor Used AI to Build and Deploy a C&C Botnet 
  

Six Minutes to Compromise: How ‘Patriot Bait’ Actor Used AI to Build and Deploy a C&C Botnet 

TrendAI™ Research analyzed over 200 Gemini CLI session logs showing how a Russian-speaking threat actor used AI to run a

A broken DNSSEC rollover took down .AL. Now 1.1.1.1 tells you when validation is bypassed 
  

A broken DNSSEC rollover took down .AL. Now 1.1.1.1 tells you when validation is bypassed 

When a failed DNSSEC key rollover took down the .AL TLD, we deployed a Negative Trust Anchor to restore resolution.

Meta launched and almost instantly rolled back a feature that trained its AI image generator on Instagram user content. | Kaspersky official blog 
  

Meta launched and almost instantly rolled back a feature that trained its AI image generator on Instagram user content. | Kaspersky official blog 

Meta turned on — then immediately killed — an AI feature that used public Instagram content to generate images. Here’s

Should cyber insurance be part of your business backup plan? 
  

Should cyber insurance be part of your business backup plan? 

Insurance is all about managing risk. Unlike policies that are legally required for driving a car or taking out a

​​Kratos PhaaS Targets US and EU Companies: How to Reduce Microsoft 365 Account Takeover Risk​ 
  

​​Kratos PhaaS Targets US and EU Companies: How to Reduce Microsoft 365 Account Takeover Risk​ 

Kratos is a mature Phishing-as-a-Service operation targeting Microsoft 365 users across the US, Europe, and other regions. By combining trusted

AI Security Report 2026 
  

AI Security Report 2026 

For years, the cyber security industry tracked AI as a force multiplier: something that made existing attack techniques faster, cheaper, and

Threat Level – GUARDED 
  

Threat Level – GUARDED 

This threat level is based on analysis by the Center for Internet Security® (CIS®) Operations, Intelligence, and Services (OIS) department

Defending SaaS-based applications against ShinyHunters OAuth abuse 
  

Defending SaaS-based applications against ShinyHunters OAuth abuse 

Microsoft Threat Intelligence identified threat actor activity with overlapping tradecraft commonly associated with ShinyHunters, including voice phishing (vishing), supply-chain compromise,

Microsoft Entra ID security updates: Passkeys are the default authentication method in Entra ID 
  

Microsoft Entra ID security updates: Passkeys are the default authentication method in Entra ID 

Microsoft Entra ID makes passkeys the default sign-in experience and introduces a new model for SMS and voice authentication. Read

Introducing Precursor: detecting agentic behavior with continuous client-side signals 
  

Introducing Precursor: detecting agentic behavior with continuous client-side signals 

Precursor, our new continuous behavioral validation engine for bot management, offers visibility into how humans and bots actually interact across

13th July – Threat Intelligence Report 
  

13th July – Threat Intelligence Report 

For the latest discoveries in cyber research for the week of 13th July, please download our Threat Intelligence Bulletin. TOP

OAuth Client ID Spoofing: Why Fake Client IDs Are Gaining Traction for Stealthy Enumeration 
  

OAuth Client ID Spoofing: Why Fake Client IDs Are Gaining Traction for Stealthy Enumeration 

Key Takeaways Proofpoint has observed OAuth client ID spoofing emerging as a novel technique, increasingly leveraged in cloud campaigns. Microsoft

A Farewell to ARPs: IPv4 Service on IPv6-Only Networks 
  

A Farewell to ARPs: IPv4 Service on IPv6-Only Networks 

IPv6-only networks often still depend on IPv4 subnets and ARP. This article introduces an IETF proposal to eliminate both, allowing

No Manners Here: The Ruthless Rise of The Gentlemen Ransomware 
  

No Manners Here: The Ruthless Rise of The Gentlemen Ransomware 

Unit 42 explores The Gentlemen ransomware operations, revealing the affiliate model driving its rapid growth. Learn more here. The post

Securing our future: July 2026 progress report on Microsoft’s Secure Future Initiative 
  

Securing our future: July 2026 progress report on Microsoft’s Secure Future Initiative 

Microsoft’s latest Secure Future Initiative report outlines progress on secure foundations, AI-powered defense, and future-ready cybersecurity. The post Securing our

The Good, the Bad and the Ugly in Cybersecurity – Week 28 
  

The Good, the Bad and the Ugly in Cybersecurity – Week 28 

Authorities launch Operation First Light 2026, attackers deploy Forg365 to hijack Microsoft accounts, and rival cyberspies breach Pakistani police networks.SentinelOneRead

Improving Smart Tiered Cache for Public Cloud Regions 
  

Improving Smart Tiered Cache for Public Cloud Regions 

Smart Tiered Cache allows for precise upper tier selection for origins hosted on AWS, GCP, Azure, and Oracle Cloud with

GigaWiper: Anatomy of a destructive backdoor assembled from multiple malware 
  

GigaWiper: Anatomy of a destructive backdoor assembled from multiple malware 

GigaWiper is a destructive backdoor that combines multiple wiping and ransomware-like capabilities into a single operational platform. This blog analyzes

Wordfence Intelligence Weekly WordPress Vulnerability Report (June 29, 2026 to July 5, 2026) 
  

Wordfence Intelligence Weekly WordPress Vulnerability Report (June 29, 2026 to July 5, 2026) 

Last week, there were disclosed in and that have been added to the Wordfence Intelligence Vulnerability Database, and there were

What’s wrong with Meta’s NameTag feature and why you should be wary of it | Kaspersky official blog 
  

What’s wrong with Meta’s NameTag feature and why you should be wary of it | Kaspersky official blog 

A deep dive into NameTag, a facial recognition feature for Meta smart glasses. Learn how it works, why it’s causing

June 2026 Detection Highlights: AdaptixC2 Config Extractor, 5 new VTIs, and 30+ New YARA Rules 
  

June 2026 Detection Highlights: AdaptixC2 Config Extractor, 5 new VTIs, and 30+ New YARA Rules 

The Labs team at VMRay actively gathers publicly available data to identify any noteworthy malware developments that demand immediate attention.

Why we cannot wait for better post-quantum signature algorithms 
  

Why we cannot wait for better post-quantum signature algorithms 

NIST is advancing nine new post-quantum signature algorithms as potential candidates for future standardization. We take a closer look at

US Threat Landscape Alert: 30 Active Malware Families Ranked by Real Sandbox Data 
  

US Threat Landscape Alert: 30 Active Malware Families Ranked by Real Sandbox Data 

State of Cybersecurity in the US  American organizations are processing more malware submissions than ever, and the mix keeps shifting

  

When AI Models Outgrow Storage 

Discover how Akamai Object Storage absorbs high-frequency machine data, mitigates egress costs, and scales production AI model outputs.BlogRead More

Protecting Microsoft at AI speed: How SFI proactively hardens our cloud   
  

Protecting Microsoft at AI speed: How SFI proactively hardens our cloud   

At Microsoft we encompass these security requirements, along with threat knowledge, and operational frameworks in our Secure Future Initiative (SFI), to guide what

HPC AI Workloads Need Runtime Security. The Architecture Already Exists. 
  

HPC AI Workloads Need Runtime Security. The Architecture Already Exists. 

Learn how to secure HPC AI infrastructure against runtime and supply chain threats via continuous behavioral monitoring.SentinelOneRead More

Targeted phishing attacks on manufacturing companies | Kaspersky official blog 
  

Targeted phishing attacks on manufacturing companies | Kaspersky official blog 

Attackers attempt to steal credentials using multi-stage targeted phishing attacks against manufacturing companies.Kaspersky official blogRead More

Introducing Meerkat: an experiment in global consensus 
  

Introducing Meerkat: an experiment in global consensus 

Cloudflare Research is building a global consensus service called Meerkat that uses a new consensus algorithm called QuePaxa. We plan

The RIPE Chair Team Reports – July 2026 
  

The RIPE Chair Team Reports – July 2026 

The RIPE Chair Team rounds up the latest developments across the community, from RIPE 93 preparations and policy work to

NIST CSF 2.0 Practical Guide to the Six Core Functions: Building a Modern Security Program for Risk Management 
  

NIST CSF 2.0 Practical Guide to the Six Core Functions: Building a Modern Security Program for Risk Management 

Cybersecurity programs often grow over time through new policies, controls, and technologies. The challenge for CISOs is making sure these pieces

Birds of a Feather at IETF 126 Vienna 
  

Birds of a Feather at IETF 126 Vienna 

The IETF 126 Vienna meeting takes place 18–24 July 2026. As at every IETF meeting, alongside the established Working Groups

What It Takes to Secure Claude Cowork Across the AI Enterprise 
  

What It Takes to Secure Claude Cowork Across the AI Enterprise 

You’ve watched the demos. Whether it’s Claude Cowork, ChatGPT Enterprise, GitHub Copilot, Cursor, or internally developed agents, AI systems are

Vidar Stealer Unmasked: Code Signing Abuse, Go Loaders and File Inflation 
  

Vidar Stealer Unmasked: Code Signing Abuse, Go Loaders and File Inflation 

A cybercrime campaign combined a loader-as-a-service framework and DLL sideloading via a Go-compiled fake MpClient.dll, a novel evasion layer combination.

Cloudflare proudly joins the UK government’s Cyber Resilience Pledge 
  

Cloudflare proudly joins the UK government’s Cyber Resilience Pledge 

The pledge is a voluntary framework inviting organizations to commit to foundational cyber security governance, board-level accountability, and supply chain

Banana RAT Evolves: Comparing Two Recent Branches Through ANY.RUN  
  

Banana RAT Evolves: Comparing Two Recent Branches Through ANY.RUN  

Editor’s note: The analysis is authored by Moises Cerqueira, malware researcher & threat hunter. You can find Moises on LinkedIn and X. This analysis started with

Threat landscape for industrial automation systems. Q1 2026 
  

Threat landscape for industrial automation systems. Q1 2026 

This report contains industrial threat statistics for Q1 2026, including industrial threat distribution by type, source, region and industry.SecurelistRead More

Reducing Microsoft Sentinel Costs Without Compromising Detection – Part 2: The Firewall Quest 
  

Reducing Microsoft Sentinel Costs Without Compromising Detection – Part 2: The Firewall Quest 

Firewall network traffic logs are the largest driver of Microsoft Sentinel ingestion costs. Yet they remain a critical source of

One Email Closer to the Edge: UNK_MassTraction & the Physics of Exploitation 
  

One Email Closer to the Edge: UNK_MassTraction & the Physics of Exploitation 

Analyst note: Proofpoint uses the UNK_ designator to define clusters of activity that are still developing and have not been

Defense-in-Depth: Why Multi-Layered Security is Non-Negotiable 
  

Defense-in-Depth: Why Multi-Layered Security is Non-Negotiable 

TL;DR / Fast Answer Reliance on a single security control is a guaranteed failure point. A robust cybersecurity strategy demands

Unifying Forces: Converging Incident Response and Detection Engineering for Proactive Defense 
  

Unifying Forces: Converging Incident Response and Detection Engineering for Proactive Defense 

TL;DR / Fast Answer Incident Response (IR) and Detection Engineering (DE) are often treated as separate silos, but their convergence

IoCs vs Artifacts: How to filter out the noise 
  

IoCs vs Artifacts: How to filter out the noise 

TL;DR / Fast Answer Not all data found during malware analysis is a threat. While artifacts are neutral traces of

Understanding Cyber Threat Intelligence (CTI) 
  

Understanding Cyber Threat Intelligence (CTI) 

TL;DR / Fast Answer Effective Cyber Threat Intelligence (CTI) is more than just data feeds; it is the transformation of

Generating Precise Intelligence from Your & Phishing Malware Alerts 
  

Generating Precise Intelligence from Your & Phishing Malware Alerts 

TL;DR / Fast Answer Generic threat intelligence feeds often lack the specific context needed to defend your organization effectively. To

  

The Hidden Latency Tax in Retail Personalization 

Every personalization decision adds latency that has a measurable cost in conversions and order value. Learn where that cost comes

Why CAPTCHAs are about to vanish: how AI rewrote the “prove you’re human” test | Kaspersky official blog 
  

Why CAPTCHAs are about to vanish: how AI rewrote the “prove you’re human” test | Kaspersky official blog 

Modern LLMs can now crack CAPTCHAs faster than humans. Here is why traditional CAPTCHAs are soon to become history, what’s

5 insights from Frost & Sullivan’s 2025 Frost Radar™ for Cloud Security Posture Management 
  

5 insights from Frost & Sullivan’s 2025 Frost Radar™ for Cloud Security Posture Management 

Read five key learnings from the Frost & Sullivan 2025 Frost Radar™ for CSPM to learn how CSPM is evolving

The unpatchable backdoor in Yarbo robot mowers | Kaspersky official blog 
  

The unpatchable backdoor in Yarbo robot mowers | Kaspersky official blog 

A security researcher discovered a remote access exploit in Yarbo robot mowers, granting full control over the machines and user

Cavern Manticore: Exposing Iran-Linked Modular C2 Framework 
  

Cavern Manticore: Exposing Iran-Linked Modular C2 Framework 

Key Points Introduction Since early 2026, Check Point Research (CPR) has tracked a new modular command-and-control framework used by Cavern

Your Worker can now have its own cache in front of it 
  

Your Worker can now have its own cache in front of it 

We are launching Workers Cache, a regionally tiered cache that sits directly in front of your Worker entrypoints. Infinitely composable,

When Internet Traffic Becomes a Physical Event 
  

When Internet Traffic Becomes a Physical Event 

Why do live sports, ticket sales, and public service launches sometimes resemble DDoS attacks? This article explores how synchronised user

Accelerating the future: A new era of AI-powered performance 
  

Accelerating the future: A new era of AI-powered performance 

Cisco and McLaren Mastercard F1 extend partnership to accelerate innovation in the age of AI.More RSS Feeds: https://newsroom.cisco.com/c/r/newsroom/en/us/rss-feeds.htmlCisco Newsroom: SecurityRead

6th July – Threat Intelligence Report 
  

6th July – Threat Intelligence Report 

For the latest discoveries in cyber research for the week of 6th July, please download our Threat Intelligence Bulletin. TOP

It Might Feel Like We’ve Been Here Before, But We Haven’t 
  

It Might Feel Like We’ve Been Here Before, But We Haven’t 

As artificial intelligence (AI) adoption surges and organisations move from the ‘should we?’ phase to the ‘how do we?’ phase,

When checking the URL isn’t enough: a Device Code Phishing attack via a Microsoft website 
  

When checking the URL isn’t enough: a Device Code Phishing attack via a Microsoft website 

The OAuth 2.0 Device Authorization Grant specification was designed to streamline authentication for Smart TVs, IoT devices, and printers. Today,

Release Highlights: VMRay Platform 2026.3.0 
  

Release Highlights: VMRay Platform 2026.3.0 

Introduction Since the release of VMRay Platform 2026.2, we’ve had a busy start to the summer. In 2026.2, we introduced:

  

GRU: military unit 67606 

The GRU has developed a complex PSYOP structure in the Russian Military Districts. Military units 03126 (Leningrad Military District), 03138

The Good, the Bad and the Ugly in Cybersecurity – Week 27 
  

The Good, the Bad and the Ugly in Cybersecurity – Week 27 

FBI apprehends IRGC-linked cybercriminal, Russian hackers steal Signal backup keys, and unknown hackers breach the DHS information network.SentinelOneRead More

Armored Likho digging a snake pit: inside the covert BusySnake Stealer campaign 
  

Armored Likho digging a snake pit: inside the covert BusySnake Stealer campaign 

An inside look at the active Armored Likho APT campaign. The attackers are using spear-phishing, AI-generated loaders, and a new

How We Added WebAuthn to a Browser-Based RDP Client 
  

How We Added WebAuthn to a Browser-Based RDP Client 

A look inside the reverse-engineering journey of building the first RDP client outside of Windows to support WebAuthn redirection. The

Wordfence Intelligence Weekly WordPress Vulnerability Report (June 22, 2026 to June 28, 2026) 
  

Wordfence Intelligence Weekly WordPress Vulnerability Report (June 22, 2026 to June 28, 2026) 

Last week, there were disclosed in and that have been added to the Wordfence Intelligence Vulnerability Database, and there were

Improving security posture across the Microsoft partner ecosystem 
  

Improving security posture across the Microsoft partner ecosystem 

Read how Microsoft strengthens partner ecosystem security with CSP vetting, least privilege access, monitoring, and risk management best practices. The

The Critical Role of STIX/TAXII in Threat Intelligence Sharing 
  

The Critical Role of STIX/TAXII in Threat Intelligence Sharing 

2standards working together: STIX and TAXII 4core building blocks that make up a STIX object 6enterprise workflows STIX/TAXII directly supports

Indicators of Compromise (IoCs): What They Are and How to Use Them 
  

Indicators of Compromise (IoCs): What They Are and How to Use Them 

5 major IoC categories security teams track 3 layers of signal: IoCs, IOAs & TTPs 8 behavior-backed artifact types VMRay

Our analysis of the DPC Annual Report: AI’s growing influence 
  

Our analysis of the DPC Annual Report: AI’s growing influence 

Privacy professionals and a human-led privacy framework are more necessary than ever at a time when AI tools make it

Navigating NIS2 as Ireland’s Cyber Security Bill comes into view 
  

Navigating NIS2 as Ireland’s Cyber Security Bill comes into view 

Cybersecurity regulatory expectations have shifted significantly: what used to be primarily an IT concern has evolved into a board-level governance

Missed incidents, persistent threats, and response gaps: Insights from compromise assessment projects 
  

Missed incidents, persistent threats, and response gaps: Insights from compromise assessment projects 

Kaspersky Compromise Assessment specialists analyze trends from the service’s 2025 projects and provide tips on how to enhance your organization’s

Microsoft named a leader in the Frost Radar for cloud and application runtime security 
  

Microsoft named a leader in the Frost Radar for cloud and application runtime security 

Frost & Sullivan names Microsoft a leader as cloud and application security converge into unified, runtime risk reduction. The post

At the U.S. Open, Cisco drives peak performance 
  

At the U.S. Open, Cisco drives peak performance 

The USGA’s premier event demands excellence on the green and off — Cisco’s AI-powered full-stack advantage wins for players and

Managing the risks of LLM aggregators and AI API proxies 
  

Managing the risks of LLM aggregators and AI API proxies 

The enterprise threats posed by API proxies, and how to maximize AI efficiency without compromising business cyber-resilience.Kaspersky official blogRead More

The Road to Post-Quantum Readiness Part 2 of 2: The Migration Playbook 
  

The Road to Post-Quantum Readiness Part 2 of 2: The Migration Playbook 

Post-Quantum Cryptography is no longer just about understanding the threat. The real challenge now is migration: deciding where to start,

Unmasking the crawls with Attribution Business Insights 
  

Unmasking the crawls with Attribution Business Insights 

Cloudflare’s new Attribution Business Insights dashboard helps website owners understand crawler behavior, appetite, and potential value, fueling business-level conversations around

Content Independence Day, one year on: building the business model for the agentic Internet 
  

Content Independence Day, one year on: building the business model for the agentic Internet 

One year after declaring Content Independence Day, a dynamic market for monetized content has officially emerged. In this report, we

Announcing the Monetization Gateway: charge for any resource behind Cloudflare via x402 
  

Announcing the Monetization Gateway: charge for any resource behind Cloudflare via x402 

We’re opening the waitlist for our Monetization Gateway, which will allow you to charge for any web page, dataset, API,

Making AI search smarter 
  

Making AI search smarter 

Search is how we find nearly everything on the web — creators, merchants, answers. AI is rewriting the rules, leaving

Your site, your rules: new AI traffic options for all customers 
  

Your site, your rules: new AI traffic options for all customers 

For our second Content Independence Day, we’re giving website owners finer options to manage AI traffic. Instead of a one-size-fits-all

Beware of the license manager: how a Schneider Electric software vulnerability puts industrial facilities at risk 
  

Beware of the license manager: how a Schneider Electric software vulnerability puts industrial facilities at risk 

Analysis of CVE-2024-2658 as found in Schneider Electric’s Floating License Manager. Discover how this FlexNet Publisher vulnerability potentially allows attackers

OpenClaw: risks for agent users and how to mitigate them 
  

OpenClaw: risks for agent users and how to mitigate them 

Researching OpenClaw vulnerabilities, malicious skills and other security issues with the popular agent, and providing tips on how to mitigate

The SOC Files: ScreenConnect masked as freeware. An inside look at a large-scale campaign 
  

The SOC Files: ScreenConnect masked as freeware. An inside look at a large-scale campaign 

Kaspersky experts have uncovered a malicious network infrastructure for delivering AsyncRAT. The Trojan is dropped via compromised ScreenConnect software. In

The Autonomous SOC, Revisited: What 18 Months on the Road Has Taught Us 
  

The Autonomous SOC, Revisited: What 18 Months on the Road Has Taught Us 

Explore SentinelOne’s Autonomous SOC maturity model to map your journey toward AI autonomy through strict governance.SentinelOneRead More

Building a people-first AI strategy 
  

Building a people-first AI strategy 

Cisco leaders share best practices for shifting workforce culture to meet the challenges — and vast promise — of the