Author: Staff Writer

Corero’s adaptive DDoS protection enhances security architecture for complex, multi-environment deployments Corero Network Security, the distributed denial of service (DDoS) protection specialists, announced it has been named a Certified Partner in the World Wide Technology (WWT) ecosystem. WWT is a leading global technology integrator with deep expertise in cybersecurity, cloud, AI, and digital transformation, helping enterprise and service provider clients navigate complex infrastructure challenges. As part of this partnership, Corero has been added to WWT’s Cyber Security and Business Resilience Practice Portfolio, making its solutions immediately available to WWT customers. Cyber Technology Insights : Introducing Lat61 by Point Wild: A Unified Platform of Configurable…

Security researchers at Nx have disclosed a critical vulnerability affecting build systems with remote caching capabilities, potentially impacting thousands of organizations that rely on these systems for CI/CD pipeline performance. The vulnerability, designated CVE-2025-36852 and nicknamed “CREEP” (Cache Race-condition Exploit Enables Poisoning), carries a severity score of 9.4 and allows any developer with pull request access to inject malicious code into production artifacts. The Vulnerability Remote caching in CI is widely adopted across the software industry to dramatically improve build performance to drastically reduce build times. However, the CREEP vulnerability exploits a fundamental flaw in how most organizations implement these…

 RevEng.ai, a cutting-edge start-up building foundation AI models for identifying security threats and vulnerabilities in software, is thrilled to announce the successful completion of its $4.15 million seed funding round. This milestone investment underscores the company’s mission to build AI for identifying unsafe code embedded inside software supply chains without needing access to source code. The funding round was led by Sands Capital, with participation from In-Q-Tel Capital, IQ Capital, and Episode 1. These funds will enable RevEng.ai to accelerate its growth, enhance its proprietary AI models, and expand its team to meet the growing demand for proactive cybersecurity solutions, and increase…

Bonfy.AI, the pioneer in adaptive content security, announced its emergence from stealth mode with its Bonfy Adaptive Content Security unified platform. Founded by security industry veterans Gidi Cohen and Danny Kibel, Bonfy secured $9.5 million in 2024 in seed funding led by TLV Partners, with participation by Saban Capital Group, and is set to optimize how AI and human-generated content is monitored and protected, differentiating itself by using AI-powered business context and business logic to accurately prevent exposures such as oversharing, IP leakage, privacy violations, and non-compliant communications. Customers use Bonfy’s proprietary AI-powered technology to analyze and manage content risks associated with AI tools such as ChatGPT…

Cayosoft, the undisputed leader in hybrid Microsoft Active Directory (AD) and Entra ID identity security, announced the filing of a groundbreaking patent for a method of training Artificial Intelligence (AI) systems to perform directory management and security automation. The approach uses Observational Change Data (OCD) to train AI on how changes are made, who makes them, and under what conditions, providing the foundation for intelligent automation and real-time threat response. Unlike traditional logs or snapshots, OCD captures richer change details and metadata across AD, Entra ID, and Microsoft 365, along with critical context like who made the change, what changed,…

Fast Facts A critical vulnerability in Citrix Netscaler, CVE-2025-5777, poses a severe risk with a severity score of 9.3, raising concerns of potential attacks surpassing the CitrixBleed crisis. Currently, there are no active exploits, but experts expect malicious actors to capitalize on this flaw, which allows session hijacking and token disclosure. Additionally, CVE-2025-6543 is under active exploitation as a zero-day vulnerability, further exacerbating risks for Netscaler users. Organizations are urged to immediately patch their systems, especially those still using outdated versions of Netscaler ADC and Gateway that have reached end-of-life status. A Growing Concern The recent discovery of a critical…

AI-powered Incident Intake and Triage from Resolver delivers complete, structured security reports — cutting admin time by up to 90% for faster hand-off to investigative teams. Resolver, a leading provider of Risk Intelligence solutions, announced a powerful new capability designed to eliminate manual triage and streamline reporting for security teams worldwide: AI-Powered Automated Intake and Triage. The new feature, part of Resolver’s leading security and investigation software, helps teams capture complete case details upfront, categorize incidents intelligently, and accelerate resolution — driving greater efficiency across the entire incident response workflow. “With Automated Intake and Triage, security teams can capture better data…

Summary Points Escalating Threats: The Scattered Spider cybercrime gang has expanded its attacks to airlines and transportation sectors after previously targeting retail and insurance industries since April. Significant Incidents: Mandiant reports multiple incidents resembling Scattered Spider’s tactics, with recent confirmations of their focus on aviation, food, and manufacturing sectors. Recent Attack: Hawaiian Airlines experienced disruptions due to a cyberattack but has not attributed it directly to any group while continuing to operate safely and investigating the incident. Alert Measures: Experts urge organizations to heighten awareness of social engineering attacks, enhance identity verification, and audit remote management tools to prevent exploitation.…

BigID, the leading platform for data security, privacy, compliance, and AI governance, announced its certification in the HPE Unleash AI Partner Program, deepening its strategic alliance with Hewlett Packard Enterprise (HPE) to bring embedded data intelligence to HPE Private Cloud AI. This recognition deepens BigID’s strategic collaboration with Hewlett-Packard Enterprise (HPE) to help customers operationalize responsible AI at scale. HPE Private Cloud AI is a turnkey, full-stack AI platform co-developed with NVIDIA to help enterprises of every size build and deploy generative AI (GenAI) applications. By integrating BigID’s discovery, classification, and governance capabilities, joint customers can safeguard sensitive data, apply…

Laxton, a global leader in biometric identity solutions, is proud to announce a strategic partnership with Dai Nippon Printing Co., Ltd. (DNP) through a majority investment by DNP. The announcement was made at Identity Week in Amsterdam, marking a new era for Laxton as it becomes part of DNP’s Smart Communication segment. Laxton’s management team will remain in place and continue to lead the business, now strengthened by DNP’s global scale, technological leadership, and 150-year legacy of innovation. Together, the two organizations will form the most vertically integrated identity management company in the world—delivering end-to-end solutions for citizen registration, identity verification,…