Ian Barker

A new report from Orca Security highlights that, as organizations invest in AI innovation, most of them are doing so without regard for security.

The report uncovers a wide range of AI risks, including exposed API keys, overly permissive identities, misconfigurations, and more.

Continue reading →

According to Gartner, 60 percent of organizations work with over 1,000 third parties, and a new report shows many of these supply misconfigured or vulnerable hardware and software, putting customers at risk.

The study from CyCognito finds web server environments, including platforms like Apache, NGINX, Microsoft IIS, and Google Web Server, were the host of 34 percent of all severe issues across surveyed assets. They accounted for more severe issues than 54 other environments combined (out of 60 environments surveyed),

Continue reading →

A new report from SpyCloud finds that Ransomware is seen as the biggest cybersecurity threat across every industry, with 75 percent of organizations affected by ransomware more than once in the past 12 months -- a jump from 61 percent in 2023.

Based on a survey of 510 individuals in active cybersecurity roles within organizations in the US and the UK with at least 500 employees, the report shows some industries are more at risk than others, with insurance firms 6.3x more likely to experience a ransomware attack and healthcare 2.1x more likely.

Continue reading →

A new report from data integrity company Precisely finds that despite 60 percent of organizations saying AI is a key influence on data programs, only 12 percent report that their data is of sufficient quality and accessible for effective AI implementation.

While 76 percent of enterprises say data-driven decision-making is a top goal for their data programs, 67 percent still don't completely trust the data they rely on for these decisions, up from 55 percent in 2023.

Continue reading →

The use of generative AI isn't just confined to the tech sector, it's appearing in lots of other industries too in order to streamline operations and boost digital transformation efforts.

We spoke to Jay Madheswaran, CEO of Eve, to learn more about how GenAI is being used by legal firms and the challenges that adopting it can present.

Continue reading →

More than 65 percent of websites are unprotected against simple bot attacks and 95 percent of advanced bot attacks go undetected on websites.

A new report from DataDome reveals that eCommerce and luxury goods sites are at greatest risk. Just five percent of luxury brand websites and 10 percent of eCommerce websites are fully protected against bad bots.

Continue reading →

A new survey of IT and security leaders working within critical infrastructure industries reveals that 80 percent of organizations experienced an email-related security breach over the past year, and 63.3 percent of respondents say their email security approach needs to be improved.

The report from infrastructure protection company OPSWAT based on a study by Osterman Research finds that despite advancements in cybersecurity, 48 percent of organizations lack confidence in their existing email security defenses, leaving them vulnerable to potentially devastating cyberattacks.

Continue reading →

A new survey of 401 tech professionals from Leapwork shows that only 16 percent of businesses think their current testing practices are efficient.

Interestingly, AI could be making this worse, although 85 percent of total respondents have integrated AI apps into tech stacks in the past year, most (68 percent) have experienced issues with their performance, accuracy, and reliability.

Continue reading →

While AI is often touted as being the solution for all kinds of tasks, when it comes to developing software it seems that it may not always be improving things.

A new study from Uplevel suggests that today's GenAI-based developer tools don't tend to increase coding efficiency and can actually increase bug rates.

Continue reading →

Representatives from leading nations including the US and UK are meeting for three days of talks to focus on tackling global cyber threats and boosting cyber skills.

Over the next three days, countries including the EU member states, Canada, Japan and international organizations such as the World Economic Forum and the OECD will discuss how global cyber security workforces can be strengthened, from agreeing ways to boost cyber skills to developing new professional standards.

Continue reading →

Large language models (LLMs) in a business setting can create problems since there are many ways to go about fooling them or being fooled by them.

Simbian has developed a TrustedLLM model that uses multiple layers of security controls between the user and the GenAI models in order to create a safer solution.

Continue reading →

New research from ISC2 shows that growth of the global cyber workforce has stalled at 5.5 million, but an estimated 10.2 million professionals are needed to effectively secure organizations.

This 4.8 million gap represents a 19 percent year-on-year increase. The survey of almost 16,000 cybersecurity practitioners and decision-makers globally shows that for the first time, participants cite 'lack of budget' as the top cause of their staffing shortages.

Continue reading →

New research released from Endor Labs finds that security patches have a 75 percent chance of breaking an application.

It also shows that 69 percent of vulnerability advisories are published after a patch has been released, with a median delay of 25 days between public patch availability and advisory publication, increasing the window of opportunity for attackers to exploit vulnerable systems.

Continue reading →

As more businesses turn to AI, they face a number of challenges around integrating it effectively and obtaining the best value while still ensuring that their data remains secure. It's also important that they select the right AI provider for their needs.

We spoke to Naren Narendran, chief scientist at database specialist Aerospike, to discuss the strategic considerations and concerns enterprises face as they incorporate AI into their operations.

Continue reading →

When investigating an incident to contain and remediate a threat, security teams need to understand complex attack patterns, such as malware gestation, score, and sprawl -- the answers to which all lie in the data and systems.

To help with this process Druva is releasing Dru Investigate, a GenAI-powered tool that guides data security investigations using a natural language interface.

Continue reading →