30,000 German enterprises must align their IT security governance with EU-wide NIS2 requirements, which standardizes incident reporting, risk management, and supply chain security.
Leaked GitHub tokens at Novo Nordisk demonstrate that secrets management must be properly addressed as an identity problem, not merely as a tooling challenge.
The four-year-old Popa botnet, used to monetize compromised TV boxes, is traced technically and personally to the Israeli proxy provider NetNut (Alarum Technologies).
Klue Battlecards is the third compromised Salesforce-integrated app through which customer data has been stolen; victims include cybersecurity firm Huntress.
CVE-2026-48907 in Joomla JCE enables unauthenticated code execution with CVSS 10.0 and is being actively exploited, while large-scale WordPress attack campaigns run parallel through manipulated plugins.
Attackers systematically exploit legitimate AI tools and popular developer infrastructure as attack vectors while deliberately minimizing traditional security signals.
An OAuth vulnerability in the Klue platform allowed attackers to gain access to Salesforce CRM data from enterprise customers and exploit it for extortion purposes.
MDM uses native operating system APIs to centrally configure, secure, and monitor enterprise device fleets – essential for compliance and threat prevention in decentralized work environments.
Orphaned AI agents in enterprise networks pose significant security risks because their authorization and access rights are often undocumented and not traceable.