Enterprise Security Tech

In what security researchers are describing as a watershed moment for developer supply-chain attacks, a new malware campaign dubbed GlassWorm  has begun spreading through extensions for Visual Studio Code (VS Code) and its open-source alternative, OpenVSX. The worm-like code has been installed on an estimated 35,800 developer machines so far. What happened: A stealthy worm enters the IDE According to analysts at Koi Security, the campaign first surfaced on October 17, 2025 wh

In an era when geopolitics, regulation and innovation are colliding at high velocity, enterprises are sounding the alarm on a new breed of risk—one in which trade policy, state-sponsored cyber threats and under-governed artificial intelligence are converging to create a complex danger zone. According to the Riskonnect 2025 New Generation of Risk Report , a global survey of over 200 risk, compliance and resilience professionals reveals that traditional risk playbooks may be f

Microsoft’s support for Windows 10 officially ended last week on October 14 , but for millions of systems worldwide, that deadline has come and gone with business still as usual — and that’s the problem. Nearly a decade after its 2015 debut, Windows 10 has finally entered the post-support void. Microsoft is no longer issuing free updates, security patches, or bug fixes, and that has left an estimated 5.25 percent of all workloads  still running the operating system exposed, a

A cyber-extortion campaign exploiting zero-day vulnerabilities in Oracle’s E-Business Suite (EBS) has now ensnared Envoy Air , the Texas-based regional carrier owned by American Airlines . The airline’s name appeared on the Cl0p ransomware gang’s leak site  late last week, alongside other high-profile victims including Harvard University  and the University of the Witwatersrand  in South Africa. The attackers claim to have stolen more than 26 GB of data , though investigators

The financial sector’s confidence game has a new player—and it’s not on Wall Street. It’s in the data center. According to new research from Omega Systems , cyber resilience has officially become the line between solvency and collapse for wealth managers, family offices, and investment firms navigating an era of nonstop digital assault. In The Survival Imperative: Cyber Resilience in Financial Services in 2025 , Omega paints a stark picture of an industry under siege. Nearly

In the past year, the internet’s biggest security threat hasn’t been a zero-day exploit or a sophisticated ransomware operation. It’s something far more insidious—and human. Or at least, it sounds human. AI-powered phishing campaigns are rewriting the rules of online deception. Voice-cloned executives, fake “customer support” chats, and hyper-realistic scam websites now blur the line between reality and manipulation. The technology once used to enhance creativity and producti