Infosec stories - Page 5

Boards lag on AI oversight as Diligent survey finds most directors use the tools, but few have embedded governance or risk controls.

Rapid7 says China-linked Red Menshen has planted dormant “sleeper cells” inside global telecoms networks to quietly maintain long-term access.

Radiant Logic adds Badge's zero-knowledge authentication to RadiantOne, aiming to simplify cross-domain access for enterprises, public sector and AI agents.

F5 and Forcepoint team up to give enterprises continuous AI security, linking data discovery with runtime controls to reduce risk in production systems.

DigiCert scales digital trust platform with Valimail deal as Q4 annual recurring revenue hits a company record and bookings top guidance.

Ledger rolls out on-premise HSM for banks, custodians and stablecoin issuers seeking tighter control of digital asset keys.

AppOmni upgrades Heisenberg to help teams trace GitHub Actions and spot tainted dependencies after the LiteLLM supply chain breach.

OpenAI opens public Safety Bug Bounty to find agentic prompt injection, data exfiltration and other AI misuse risks.

N-able rolls out AI-led SOC detections to flag PowerShell abuse, suspicious DNS traffic and unusual Windows processes across multiple layers.

Gcore warns DDoS attacks hit 1.3 million in late 2025 as brief, high-volume floods and longer app assaults expose more sectors to risk.

Adaptiva debuts Aida AI adviser to help IT and security teams query vast endpoint estates in plain English and speed up exposure management.

Qilin keeps top spot as ransomware incidents drop 8% in February, while CL0P and The Gentlemen post sharp gains and new AI risks emerge.

CrowdStrike unveils Charlotte AI AgentWorks ecosystem with Accenture, AWS and OpenAI to let security teams build custom agents without code.

Vorlon unveils AI Agent Flight Recorder and Action Centre to help security teams trace activity across SaaS apps and coordinate responses.

Rising browser-based attacks push 85% of organisations to boost security budgets, as firms treat the browser as a core enterprise attack surface.

Nudge Security has launched AI agent discovery to help firms spot risky employee-built agents, tighten access and curb shadow AI sprawl.

Novee unveils an autonomous AI red teaming tool to probe LLM apps for prompt injection, jailbreaks and other emerging security flaws.

Qualys debuts Agent Val to validate real exploit paths in live systems, promising sharply reduced noise and faster remediation for teams.

Rubrik links Microsoft Defender with its identity recovery tools to speed response to credential-based attacks and cut downtime after breaches.

NSS Labs warns many enterprise AI guardrails fail basic security tests, urging independent, real-world validation of protections.