Enterprise Security Tech

When the researchers at Forcepoint published their latest intelligence briefing, what emerged looked less like typical malware trends and more like a full-blown arms race. On one side: cybercriminals supercharging their arsenals with malicious large language models (LLMs) and deepfakes. On the other: defenders scrambling to deploy “agentic” AI, multistream telemetry and behavioural models to keep pace. It’s a clear message: AI is now the front line in cybersecurity. Here’s w

The dark web has long been the backroom of the internet — where threat actors trade exploits, leak stolen credentials, and barter access to networks most people assume are secure. But new research from Trustwave SpiderLabs  paints a sobering picture: public sector organizations, from local municipalities to national agencies, are now a hot commodity in this underground economy. VPNs for Sale: A Backdoor into Government Networks SpiderLabs researchers found a bustling market f

The financial sector’s confidence game has a new player—and it’s not on Wall Street. It’s in the data center. According to new research from Omega Systems , cyber resilience has officially become the line between solvency and collapse for wealth managers, family offices, and investment firms navigating an era of nonstop digital assault. In The Survival Imperative: Cyber Resilience in Financial Services in 2025 , Omega paints a stark picture of an industry under siege. Nearly

As the U.S. Department of Defense prepares to enforce sweeping cybersecurity mandates under the Defense Federal Acquisition Regulation Supplement (DFARS) Final Rule this November, one AI-native compliance platform is trying to help contractors catch up before it’s too late. Strike Graph today unveiled a free guided Cybersecurity Maturity Model Certification (CMMC) Self-Assessment and Compliance Toolkit , designed to help defense contractors get audit-ready and protect their

According to new research from Comparitech , ransomware attacks on government organizations jumped sharply in 2025 — even as quarterly totals showed signs of decline. The firm’s latest analysis recorded 276 attacks on government entities  worldwide between January and September 2025, marking a 41 percent increase  from the same period in 2024 (196). Of those, 147 attacks have been confirmed  by the victims themselves — nearly identical to last year’s confirmed total (146). Co

SocGholish, the insidious “fake update” scheme that lures users into installing malicious code masquerading as browser or plugin patches — has quietly evolved into a full-blown Malware-as-a-Service ecosystem. New technical analysis from threat researchers at Trustwave SpiderLabs , a LevelBlue company, shows the operation now functions less like a single campaign and more like an industrial distribution layer that any criminal buyer can plug into. The result: access-for-hire