Infosec stories - Page 4

Zscaler says Xloader malware has added layered encryption, decoy servers and new obfuscation tricks to hinder analysts.

Secure.com urges Chief Information Security Officers to use AI for alert triage and threat detection, but keep human judgement in the loop.

QuSecure has joined a NIST-backed consortium to test tools and methods that help organisations find and replace quantum-vulnerable public-key systems.

ReliaQuest flags DeepLoad malware stealing live credentials in enterprise networks, with AI-style obfuscation, USB spread and hidden WMI persistence.

Thales report finds weak login and sign-up flows are pushing users away, as trust in AI, data handling and digital services remains low.

Experts warn firms must improve visibility and backup resilience as automated ransomware campaigns and hidden SaaS and AI assets widen exposure.

Bitdefender offers free 45-day internal security check to spot over-entitled staff access as attackers increasingly abuse trusted tools.

ExpressVPN expands beyond VPNs with encrypted AI chats, launching ExpressAI on confidential computing enclaves after an audit by cybersecurity firm Cure53.

SonicWall says small firms are being hit hardest by basic security lapses as ransomware, bot traffic and identity theft keep climbing.

CrowdStrike and HCLTech deepen cybersecurity tie-up with a service to spot, prioritise and fix threats across cloud, identity and endpoints.

Zapier adds AI Guardrails to its automation platform, giving teams inline checks to block risky content before it reaches business systems.

Akamai says attack volumes in Europe, the Middle East and Africa climbed 36% year on year as APIs and automated DDoS campaigns fuel a sharp surge.

Cybersecurity experts say many firms are still relying on fragmented backup tools and untested recovery plans as ransomware attacks and cloud complexity surge.

Resemble AI unveils free Chrome extension and X bot as chief executive officer Zohaib Ahmed warns synthetic media risks are widening across businesses.

Jazz has won a CrowdStrike and AWS-led cybersecurity accelerator, beating five other finalists with its AI-native data loss prevention platform.

Small US defence manufacturers face CMMC readiness shortfalls as cybersecurity checks tighten, with many underestimating the work needed to win contracts.

Boards lag on AI oversight as Diligent survey finds most directors use the tools, but few have embedded governance or risk controls.

Rapid7 says China-linked Red Menshen has planted dormant “sleeper cells” inside global telecoms networks to quietly maintain long-term access.

Radiant Logic adds Badge's zero-knowledge authentication to RadiantOne, aiming to simplify cross-domain access for enterprises, public sector and AI agents.

F5 and Forcepoint team up to give enterprises continuous AI security, linking data discovery with runtime controls to reduce risk in production systems.