Security vulnerabilities stories - Page 4

OWASP has released its first Business Logic Abuse Top 10, spotlighting critical cross-domain threats beyond traditional technology-specific vulnerabilities.

Despite rising cyber threat awareness, only 14% of UK employees trained on security receive printer-specific training, leaving devices vulnerable.

Akamai has launched DNS Posture Management, offering centralised control over DNS assets across multicloud platforms to enhance security and compliance.

Distology partners with Flare to enhance threat intelligence and dark web monitoring for UK and European security resellers and MSSPs.

Adidas has suffered a data breach via a third-party provider, exposing customer information and highlighting rising cyber risks in retail supply chains.

Picus Security launches Exposure Validation, a tool using real-time attack simulations to identify which vulnerabilities are truly exploitable in organisations.

Google DeepMind has unveiled a new strategy to bolster Gemini 2.5 AI against indirect prompt injection attacks, enhancing its security and resilience.

Nearly 42% of data breaches in top fintech firms stem from third-party vendors, highlighting critical supply chain vulnerabilities despite strong internal security.

Nearly 70% of organisations see AI, especially generative AI, as their top security risk, says Thales' 2025 Data Threat Report based on over 3,100 experts.

Tenable launches connectors and customisable dashboards in Tenable One, unifying security data from multiple tools to enhance risk visibility and management.

e2e-assure partners with Validato to offer businesses continuous cyber security validation, enhancing defence against evolving threats using MITRE ATT&CK framework.

Kaspersky warns AI-generated passwords from ChatGPT, Llama, and DeepSeek often show predictable patterns, leaving users vulnerable to cyberattacks.

Immersive has launched AppSec Range Exercises, a live training tool to boost secure coding and improve application security in development teams.

Cloudhouse partners with ServiceNow to boost IT governance via integrated Guardian platform, enhancing application compatibility and infrastructure visibility.

Businesses are boosting cloud security efforts as rising cloud adoption brings complex risks, requiring new strategies to protect sensitive data and maintain compliance.

The Cloud Security Alliance's 2025 report reveals repeated cloud security failures, urging firms to bolster identity controls and shared defence measures.

Google's GTIG reports 75 zero-day exploits in 2024, highlighting a rising threat to enterprise tech despite a slight overall decrease from 2023.

GitHub Copilot has exceeded 15 million users, growing rapidly as Microsoft advances its AI tools in software development and cloud services.

Legit Security has launched AI features in its platform to help developers quickly identify and fix software vulnerabilities, enhancing app security and compliance.

Diligent teams up with Cloudflare and Qualys to launch Cyber Risk Report, offering real-time threat insights for boards and executives on one platform.