Tag: data breaches
283 articles

Enterprise Data Uploads to AI Models Surge 93% in a Year
In just one year, enterprise data uploads to AI models have skyrocketed 93%, with a staggering 18,033 terabytes of data - equivalent to 3.6 billion digital photos - being transferred to AI and machine learning applications. This massive surge raises serious concerns about data breaches and cyber espionage.

Credential Theft Spurs Demand for Secure Identity Verification
Credential theft skyrocketed 160% in 2025, fueling a critical need for secure identity verification solutions that can outsmart AI-driven attacks. To stay ahead, robust multi-factor authentication is a must-have, combining unique factors like something you know, have, and are to fortify defenses.

Banks' Annual Testing Model Leaves 345 Days of Unvalidated Exposure
Imagine having 345 days of potential vulnerability, with hackers free to exploit your defenses while you wait for your annual security test. That's the harsh reality of the traditional annual testing model, which leaves your business exposed for nearly 11 months of the year.

UK Firms Bolster Defenses Against AI-Powered Cyber Attacks
UK organizations are bracing themselves for a perfect storm of cyber threats, with AI-powered attacks topping the list of concerns as the most pressing risk over the next year. In fact, 43% of UK respondents rank AI-powered attacks as their biggest worry, surpassing traditional threats like ransomware and phishing.

Travel Sector Braces for Cyberattacks as Summer Looms
As summer approaches, the travel sector is bracing for a surge in cyberattacks, with a staggering 92% of travel agencies experiencing some form of cyber threat in the last year. Ransomware, data breaches, and cyberattacks top the list of concerns, cited by 68% of agencies as the greatest threat to their success.

Vulnerability Exploitation Surges in Data Breaches
Vulnerability exploitation is now the top attack vector, responsible for a staggering one-third of all data breaches. This alarming trend highlights the urgent need for robust patch management and cybersecurity measures to stay ahead of threats.

Active Directory Breaches Persist After Password Resets
Resetting passwords isn't enough to keep hackers at bay, especially in Active Directory environments where cached credentials and sync delays can leave gaping security holes. Even after a password reset, attackers can still find ways to exploit outdated credentials and gain unauthorized access.

Data Breaches Surge, Exposing Sensitive Info at AI Startups, Agencies
Data breaches are surging, with AI startups and agencies exposed, as seen in the alarming theft of 10 petabytes from a Chinese supercomputer and 4 terabytes from AI startup Mercor due to a supply-chain vulnerability. These incidents highlight the hidden risks of connecting data to AI models, creating sensitive blind spots that leave large data sets vulnerable to compromise.

Cybercrime Inflicts Record $21 Billion Loss on US Citizens
Last year, US citizens suffered a staggering $21 billion loss to cybercrime, a record that raises a crucial question: is the convenience of digital life worth the growing risk of fraud and theft? The alarming figure is largely driven by investment scams, business email compromise, tech support fraud, and data breaches.

Data Breaches Underscore Growing Pains in Secure Storage
In today's digital age, the thing that keeps your personal and professional life safe can suddenly become its biggest vulnerability - and that's a growing concern that's on everyone's mind. As data breaches continue to make headlines, it's clear that data security is no longer just an IT issue, but a pressing matter that affects us all.

Risk Management Takes Critical Turn with NIST SP 800-39 Insights
In today's high-risk digital landscape, effective risk management is no longer a choice - it's a necessity for protecting your organization's information systems and sensitive data. By adopting a comprehensive risk management approach, you can ensure the confidentiality, integrity, and availability of your data and stay ahead of evolving cyber threats.

data breaches: Stunning, Alarming Q3 — 23M Victims
Over 23 million people had personal data exposed in Q3, according to the ITRC — a wake-up call that privacy can’t be an afterthought as breaches across sectors put identities, finances and long-term security at risk.

board-level readiness: Must-Have Critical Wake-Up
The NCSC and ministers have warned FTSE 350 chiefs that many boards are leaving the digital front door wide open—it’s time for executives to treat cyber as a strategic priority, not an IT problem. Stronger board-level accountability, realistic testing and smarter supplier checks can stop breaches from becoming boardroom crises.

cyber incidents Surge: Must-Have Defenses for Risky Times
Britain’s cyber agencies warn that although overall attack numbers stayed flat, high-severity incidents jumped about 50% in a year—fewer breaches are now causing far bigger damage. It’s a wake-up call for government, businesses and IT teams to harden defenses, rehearse responses and invest in resilience before the next catastrophic hit.

artificial intelligence risk: Essential, Costly Warning
UK firms are feeling the sting of unmanaged AI — EY finds an average hit of £2.9m per organisation from faulty models, data breaches and regulatory slip-ups. It’s a wake-up call: invest in governance, oversight and clear accountability now or watch innovation turn into costly disruption.

nationally significant cyber incidents: Stunning Dire Wave
The UK’s NCSC recorded a record 204 nationally significant cyber incidents — a staggering 130% jump — forcing a wake-up call about who gets hurt, what counts as “nationally significant,” and whether our defenses can hold against the next wave.

serious cyber incidents: Crucial Risky One-Hour Rule
China’s new one-hour rule forces network operators to report “serious” cyber incidents almost instantly — a move that could speed containment and national coordination but also forces painful trade-offs between accuracy, privacy and operational reality.

data breaches in schools: Urgent Exclusive Warning
A new ICO warning shows student hacks are increasingly exposing sensitive school data and could be training tomorrow’s cybercriminals. Schools urgently need practical security upgrades, ethics lessons and better funding to protect pupils and restore parental trust.

insider breaches: Must-Have Best Protection Guide
Insider breaches are alarmingly common—61% of U.S. companies hit with average losses of $2.7M—so it’s time to stop treating them as fringe risks and adopt practical, people-centered defenses like least privilege, strong identity controls and behavioral monitoring.

DDoS attacks: Must-Have Defenses for Best Protection
When a small-town hospital’s patient portal or a county election website goes dark from a DDoS attack, the fallout can be disastrous — yet these digital sieges are often overlooked despite becoming cheaper, more frequent, and more damaging. It’s time to stop treating DDoS as a nuisance and start taking it seriously to protect healthcare, elections, and everyday businesses.

AI-generated code: Risky Threats & Must-Have Fixes
A new Checkmarx study reveals a surprising and worrying trend: AI-generated code now makes up over 60% of some codebases—and much of it contains known vulnerabilities—so the same tools that speed development can also widen your attack surface. Treat AI suggestions like draft work: add automated scans, clear guardrails, and reviewer sign-off to keep convenience from turning into a systemic security risk.

Microsoft Exchange servers: Must-Have Patch for Risky Flaws
Over 29,000 Microsoft Exchange servers are still unpatched, leaving hybrid Active Directory–Azure environments vulnerable to attackers who could seize domain control. If you manage Exchange, now’s the time to inventory, patch, and tighten configurations before adversaries walk through this wide-open door.

NIST Cyber AI Profile: Must-Have Guide to Best Defenses
NIST’s Cyber AI Profile brings technologists, policymakers, and everyday users together to build practical defenses against AI-enabled attacks—balancing strong security with the innovation that powers our digital lives.

Cybersecurity threats: Critical Stunning Wake-Up Call
This week’s cybersecurity roundup spotlights three urgent threats—BadCam camera exploits, a critical WinRAR vulnerability, and attackers targeting EDR systems—reminding businesses and users to patch, reassess defenses, and stay vigilant.