Patching stories

Critical Microsoft flaws double as Azure and Dynamics 365 risks surge, BeyondTrust warns organisations to prioritise identity and privilege controls.

AI models that can hunt and chain software flaws are forcing boards to rethink cyber defences, while scrutiny grows over Anthropic's MCP design risks.

Anthropic limits Claude Mythos to critical users after it exposed browser and Linux flaws, stoking fears of AI-driven cyber risk for banks.

CIQ rolls out Enterprise Linux compliance stack as federal cryptography, defence contractor and post-quantum rules tighten from 2026.

Emerson deepens its cybersecurity push with OPSWAT, adding OT patch management to the Ovation platform as utilities face rising attack pressure.

Banks and regulators race to assess Anthropic's controlled Mythos access, as AI cyber testing raises fears over payments, trading and wider financial stability.

Manufacturing was the most targeted sector for ransomware in 2025, as Check Point counted 1,466 attacks worldwide amid rising supply chain exposure.

Splashtop bets on AI-assisted patching and security alerts in a single console as it targets lean IT teams and MSPs with a new endpoint platform.

Study finds UK telecom firms exposing security-critical server data as Europe-wide analysis flags widespread certificate failures and critical asset weaknesses.

Microsoft's latest security update fixes an exploited SharePoint flaw and a critical Windows IKE bug as browser patches surge to record levels.

Splashtop unveils AI-assisted endpoint platform for IT teams, blending patching, remote support and security alerts in one console.

Forrester warns Anthropic's Project Glasswing could overwhelm vulnerability management, as AI uncovers flaws faster than patching teams can respond.

Orca Security warns that AI credentials, vulnerable dependencies and lax pipeline controls are leaving production environments exposed across US and Europe.

Qualys says attackers are exploiting flaws before disclosure as remediation backlogs swell, with edge devices facing the highest risk.

Microsoft says Storm-1175 is exploiting newly disclosed flaws within hours, hitting organisations in the UK and elsewhere with fast-moving Medusa ransomware.

Qualys study says attackers are exploiting flaws before patches exist, as manual remediation lags and edge systems emerge as the highest risk.

Acronis rolls out globally available managed detection and response for MSPs, bundling 24/7 monitoring, incident response and recovery tools.

Attackers abuse trusted tools, remote support software and stolen SSO sessions to breach systems, ReliaQuest says.

SIOS rolls out spring webinar and conference programme on cloud resilience, SQL Server uptime and Linux failover across AWS, Azure and Google Cloud.

Experts warn firms must improve visibility and backup resilience as automated ransomware campaigns and hidden SaaS and AI assets widen exposure.