General cybersecurity industry news, market trends, and analysis
Two recently fixed prompt injections in Salesforce Agentforce and Microsoft Copilot would have enabled an external attacker to leak sensitive data.
The flaws could allow a remote attacker to maintain access after their account has been disabled and to access information from other user sessions.
All CISOs use AI in 2026 survey, Pentera report shows, driving hybrid deterministic security validation models.
These Chrome extensions looked harmless - but secretly stole data and hijacked accounts. Here’s what you need to know.
Researchers found adware capable of killing cybersecurity products and pushing more dangerous payloads to infected systems.
Congress is set to take up the reauthorization of a divisive program that lets U.S. spy agencies pore over foreigners’ calls, texts and emails, with supporters like President Donald Trump saying it has saved lives while critics point to longstanding concerns about warrantless surveillance of Amer...
The flaws could allow attackers to bypass authentication or execute arbitrary code or commands via HTTP requests.
Microsoft fixes 169 vulnerabilities including exploited SharePoint CVE-2026-32201, prompting CISA remediation by April 28, 2026.
Siemens, Schneider Electric, Aveva, Rockwell Automation, ABB, Phoenix Contact, Mitsubishi Electric, and Moxa patched vulnerabilities.
GPT-5.4-Cyber launch expands defender access and helped fix 3,000+ vulnerabilities, strengthening proactive cybersecurity defenses.
The deal aims to accelerate AI adoption, train workers, and develop cybersecurity partnerships — the latest move by a hyperscaler to compete for sovereign AI and data centers.
Elevation-of-privilege bugs accounted for more than half of the 165 vulnerabilities patched, with two zero-days in that mix.
