24 percent of security leaders cite lack of transparency and visibility as the biggest obstacle to effective security operations – despite the necessary tools mostly being in place.
SBOM is a formalized component inventory with standardized data fields and exchange formats (SPDX, CycloneDX) that enables security leaders to automatically track vulnerable components in the supply chain.
A critical privilege escalation vulnerability (CVE-2026-54420) in the LiteSpeed cPanel plugin is being actively exploited and requires immediate patching to version 2.4.8 or higher.
Attackers could pre-register cloud storage buckets based on predictable naming schemes derived from project ID and region to replace uploaded models with malware before Vertex AI loaded them.
German companies increasingly want to make cloud infrastructure more sovereign but are not yet willing to accept significant performance losses – while European alternatives remain unavailable.
The BSI has granted non-compliant companies until 31 July 2026 as a final deadline for NIS2 registration, signaling an end to previous non-enforcement.