Threat intelligence stories

Qevlar AI secures USD $30m led by Partech and Forgepoint to grow its autonomous AI SOC and shift from alert triage to insight-driven defence.

OPSWAT launches MetaDefender Aether, an AI-native perimeter engine promising 99.9% zero-day detection with a single high-confidence verdict.

Attackers are ditching malware for stolen identities, misconfigurations and abused AI tools, Google warns in its latest cloud threat report.

Cohesity debuts sovereign cloud tie-ups, AI-driven threat tools and midsize bundle to harden data protection as enterprises scale AI.

Fortinet debuts cloud SOC preview and unified FortiEndpoint as it leans on agentic AI to automate security ops and cut endpoint sprawl.

LastPass launches Secure Access Essentials, a browser-focused suite to secure access to workplace apps, SaaS and unsanctioned AI tools.

Cohesity expands sovereign cloud, AI resilience and threat detection tools, targeting midsize firms with streamlined data security packages.

Fortinet unveils FortiSOC cloud SOC and wider FortiAI automation to unify security ops, tackle AI-driven threats and cut tool sprawl.

Glasswall launches Foresight AI, scoring file-borne threat risk from CDR telemetry to help security teams prioritise offline investigations.

A stealthy BlackSanta malware spree is hijacking HR recruitment workflows, killing endpoint defence tools and exfiltrating sensitive data.

UK unveils expanded fraud strategy, pledging GBP £250m and a GBP £30m Online Crime Centre to target fast-moving online and overseas scams.

AI-native agents could quietly upend endpoint and SASE, eroding incumbents' telemetry moats as control shifts to the AI interaction layer.

Teradata boosts Enterprise Vector Store with agentic, multimodal tools to unify unstructured data for governed, large-scale AI workloads.

Police and tech firms have dismantled Tycoon 2FA, a phishing service used to bypass MFA and hijack cloud accounts at industrial scale.

ShinyHunters claims it hacked merchant data firm Woflow, raising supply chain fears for major brands despite no confirmed breach yet.

SAP teams with Uptycs to launch Juno, a “Glass Box” AI security analyst designed to augment SOC teams with verifiable, auditable outputs.

Cato launches Dynamic Prevention, a SASE-native engine that auto-detects multi-stage attacks by correlating months of security telemetry.

Climb secures exclusive Irish distribution of Sophos Threat Profile and full suite, targeting rising AI-driven cybersecurity demand.

Global ransomware attacks jump 50% to 7,874 in 2025, with industrial firms bearing the brunt as criminal groups reshuffle their tactics.

Agentic AI massively accelerates elite cyber teams but can slow inexperienced hackers, Hack The Box's large-scale benchmark reveals.