top of page


Enterprise Security Tech
A cybersecurity resource for CxOs
Search


Iran-Linked Hackers Tied to Los Angeles Transit Cyberattack, Researchers Say
A cyberattack that disrupted systems at the Los Angeles County Metropolitan Transportation Authority is now being attributed to Iranian state-backed actors, according to new research that points to a broader escalation in cyber activity targeting U.S. infrastructure. Researchers at Gambit Security say the group behind the March breach, calling itself Ababil of Minab, is likely linked to Iran’s Ministry of Intelligence and State Security. The group had claimed to act independe
May 27


Ransomware Attacks Hold Near Record Levels as New Threat Groups Scale Faster, NCC Group Warns
Ransomware activity remains stubbornly high in 2026, even as monthly volumes fluctuate, according to new threat intelligence from NCC Group. The firm recorded 748 global ransomware incidents in April, a slight decline from March but still part of a broader trend that shows attackers operating at a higher baseline than last year. That shift reflects something more structural than a temporary spike. The ransomware-as-a-service economy has matured into a repeatable, scalable bus
May 27


TrustLogix Unveils AI Agent Kill Switch to Combat Growing ShadowAI Risks
As enterprises rapidly deploy autonomous AI agents across internal systems, cybersecurity teams are struggling to control how those agents access sensitive corporate data. TrustLogix announced a major expansion of its TrustAI platform aimed at solving that problem with real-time AI governance controls at the data layer. The new release introduces several capabilities designed for enterprise AI security, including a runtime “kill switch” that allows organizations to instantly
May 27


OpenAI Rotates Signing Certificates After npm Supply Chain Attack Exposes Internal Credentials
OpenAI has disclosed that attackers tied to the ongoing TanStack npm supply chain compromise gained access to internal credentials after breaching two employee devices, underscoring how deeply modern software attacks can penetrate development environments without ever touching production systems. The company said the intrusion was part of the broader “Mini Shai-Hulud” campaign, a fast-moving operation targeting npm ecosystems, CI/CD pipelines, and developer tooling. While Ope
May 18


Law Firms Face Cybersecurity Gaps and AI Governance Pressure as Clients Demand More Transparency
A new 2026 industry report from Integris reveals a widening gap between how law firms view technology and how their clients judge it, with cybersecurity failures, uneven AI adoption, and weak strategic planning emerging as key risks to both trust and revenue. The findings, based on surveys of more than 400 law firm decision makers and 600 clients, show that technology is no longer a back-office function. It is now a core part of how legal services are delivered and evaluated.
May 18


Open Source Worm Code Sparks New Wave of npm Supply Chain Attacks
A new phase in software supply chain attacks is unfolding across the JavaScript ecosystem, as publicly released worm code fuels a surge of low-effort but highly effective malicious packages on npm. Security researchers warn that what began as a proof of concept has quickly evolved into a scalable attack model that favors speed over sophistication. The shift follows the public release of the Shai-Hulud worm source code, which has enabled copycat attackers to rapidly deploy var
May 18
bottom of page