Latest Internet & Cybersecurity News
Industrial Organizations Overestimate Remote Access Security
A new global report, 'The State of Industrial Remote Access 2026', based on a survey of 400 leaders, shows organizations rate visibility and readiness as 'good' but reveal gaps in vendor oversight and auditability. Vendor access multiplies risks, especially with 21–100 vendors, and tool fragmentation erodes control. Nearly 70% use shared IT/OT governance, linked to better security.
AI and Deepfakes Supercharge Cyber-Attacks
Cloudflare's 2026 Threat Report warns AI tools like LLMs lower barriers for cybercriminals, enabling rapid phishing and malware at scale. Threat actors, including state-sponsored groups, use AI for data targeting in supply chain attacks. Deepfakes help North Korean actors infiltrate firms as insiders via fake IDs.
US Banks on High Alert for Cyberattacks Amid Iran Conflict
US financial firms heighten monitoring for Iran-linked attacks following the killing of Supreme Leader Ali Khamenei, amid escalating Middle East tensions. Intelligence warns of possible low-level DDoS by Iran-aligned hacktivists; financial sector was top DDoS target in 2024 per FS-ISAC. Credit agencies note rising cyber risks to banks.
Half of Private Equity Portfolio Companies Face High Cyber Risk
ACA Vantage Benchmarking Report finds 50% of over 300 PE portfolio companies have elevated or high cybersecurity risk across 18 industries. Third-party risk management scores 71 average, penetration testing 76; health services and transportation hit 82. Smaller firms are key entry points to larger networks.
Regulatory Convergence Across Tech, ESG, and Cybersecurity
Global regulators align rules on tech, ESG, and cyber, intertwining risks like cyber incidents affecting ESG data integrity. EU leads with unified frameworks; US boosts board accountability; UK adds anti-greenwashing. Recommendations include unified controls and third-party oversight.
Global Coalition Publishes 6G Security and Resilience Principles
A coalition released principles for 6G security as it enters pre-standardization, emphasizing AI-native designs for initial commercial launches. Focuses on resilience amid research phase advancements.
Rising Vendor Risks in Industrial Cybersecurity Exposed
Secomea's report highlights 'confidence-to-evidence gap' where compliance confidence outpaces vendor session auditability. Organizations with weak IT/OT alignment see tripled incident exposure from vendors.
Cloudflare Tracks AI-Enabled Supply Chain Attacks
Cloudforce One observed AI aiding threat actors in locating high-value data, compromising hundreds of corporate tenants. Describes AI as 'force multiplier' industrializing threats.
Iran Cyber Threats Target US Financial Infrastructure
Lazard and Morningstar warn of Iran's cyber capabilities against banks, amid geopolitical flare-up. FS-ISAC notes financial services as prime DDoS target.
PE Firms Struggle with Third-Party Cyber Risks
ACA report shows third-party risk highest in manufacturing (81) and industrial services (75). Calls for governance and monitoring amid vendor expansion.
ESG Reporting Depends on Cyber Resilience
Regulations demand secure data for ESG, with operational resilience key for critical sectors. Boards need integrated risk oversight.
6G Pushes Secure-by-Design Standards
Principles stress vulnerability management and supply chain security for upcoming 6G networks.