Enterprise Security Tech

In an era when geopolitics, regulation and innovation are colliding at high velocity, enterprises are sounding the alarm on a new breed of risk—one in which trade policy, state-sponsored cyber threats and under-governed artificial intelligence are converging to create a complex danger zone. According to the Riskonnect 2025 New Generation of Risk Report , a global survey of over 200 risk, compliance and resilience professionals reveals that traditional risk playbooks may be f

Microsoft’s support for Windows 10 officially ended last week on October 14 , but for millions of systems worldwide, that deadline has come and gone with business still as usual — and that’s the problem. Nearly a decade after its 2015 debut, Windows 10 has finally entered the post-support void. Microsoft is no longer issuing free updates, security patches, or bug fixes, and that has left an estimated 5.25 percent of all workloads  still running the operating system exposed, a

A cyber-extortion campaign exploiting zero-day vulnerabilities in Oracle’s E-Business Suite (EBS) has now ensnared Envoy Air , the Texas-based regional carrier owned by American Airlines . The airline’s name appeared on the Cl0p ransomware gang’s leak site  late last week, alongside other high-profile victims including Harvard University  and the University of the Witwatersrand  in South Africa. The attackers claim to have stolen more than 26 GB of data , though investigators

The financial sector’s confidence game has a new player—and it’s not on Wall Street. It’s in the data center. According to new research from Omega Systems , cyber resilience has officially become the line between solvency and collapse for wealth managers, family offices, and investment firms navigating an era of nonstop digital assault. In The Survival Imperative: Cyber Resilience in Financial Services in 2025 , Omega paints a stark picture of an industry under siege. Nearly

In the past year, the internet’s biggest security threat hasn’t been a zero-day exploit or a sophisticated ransomware operation. It’s something far more insidious—and human. Or at least, it sounds human. AI-powered phishing campaigns are rewriting the rules of online deception. Voice-cloned executives, fake “customer support” chats, and hyper-realistic scam websites now blur the line between reality and manipulation. The technology once used to enhance creativity and producti

In a daring escalation of credential-based social engineering, threat actors are now masquerading as security updates for widely used password managers to surreptitiously implant remote access tools on target machines. The scheme — currently attacking LastPass  and Bitwarden  users — represents a shift from credential-harvesting phish to full device hijack via trusted infrastructure. The Scam in Detail: Disguised as a Safe Update Beginning over the recent holiday weekend, use