Posted on AI Security Cloud Security Incidents & Breaches Vulnerability Intelligence

Exploiting Human Logic: The Rise of ‘MFA Fatigue’ and Password Manager Social Engineering

Modern cyber threats are shifting focus from breaking encryption to manipulating user behavior through psychological fatigue. New tactics target the friction between automated security tools and manual user intervention, specifically exploiting the 'MFA fatigue' phenomenon and the warning dialogs of password managers to trick users into authorizing unauthorized access or bypassing domain-matching security protocols. Read more

Posted on AI Security Cloud Security Identity & Governance Security Operations

AI Shift Triggers 1,140% Identity Surge as Organizations Pivot to Non-Human Identity Governance

Okta's 'Businesses at Work 2026' report reveals a massive 1,140% surge in access requests over two years, driven primarily by autonomous AI agents. This shift is forcing global enterprises to move beyond traditional user-centric security, prioritizing non-human identity (NHI) governance and phishing-resistant multi-factor authentication to secure modern cloud and hybrid infrastructure environments. Read more

Posted on AI Security Cloud Security Security Operations Vulnerability Intelligence

CrowdStrike Launches Project QuiltWorks to Counter AI-Driven Vulnerability Discovery

CrowdStrike has established Project QuiltWorks, an industry-wide coalition including OpenAI and IBM, to address the rapid discovery of software vulnerabilities by generative AI. The initiative integrates expert-led red teaming with frontier AI models to help organizations prioritize and remediate risks faster than automated exploitation tools can identify them, moving beyond traditional periodic security scanning. Read more

Posted on AI Security Cloud Security Incidents & Breaches Security Operations

Kaspersky Analysis Reveals GPU Performance Gains Render Eight-Character Passwords Obsolete

A new study by Kaspersky analyzing 231 million leaked passwords shows that 48% can be cracked in under a minute. Rapid advancements in consumer GPU hardware, specifically the shift to the NVIDIA RTX 5090, have dramatically reduced the time required to break simple hashes, rendering traditional eight-character passwords virtually useless against modern brute-force and AI-assisted attacks. Read more

Posted on AI Infrastructure Risk AI Security Cloud Security Vulnerability Intelligence

Google Identifies First Cases of AI-Driven Zero-Day Exploitation by Threat Actors

Google's Threat Intelligence Group (GTIG) has reported the first observed instances of hackers using AI to discover zero-day vulnerabilities and generate exploit tools for large-scale attacks. The activity involved several notorious hacking groups collaborating to bypass two-factor authentication (2FA) in open-source network management tools. Read more

Posted on AI Infrastructure Risk AI Security Incidents & Breaches Security Operations

Wistron Accelerates Blue Team Response from Hours to Minutes via Generative AI Integration

At the 2026 CYBERSEC Taiwan conference, high-tech manufacturer Wistron revealed how its security operations center (SOC) successfully integrated generative AI to reduce incident analysis time from 15 minutes to 1 minute and overall response times from hours to under 10 minutes, achieving a 97.5% accuracy rate in threat detection. Read more

Posted on AI Infrastructure Risk AI Security Cloud Security Identity & Governance

Taiwan FSC Unveils Post-Quantum Cryptography Migration Guidelines for Financial Sector

Taiwan's Financial Supervisory Commission (FSC) has announced a new roadmap for financial cybersecurity resilience, focusing on the 'AI Vulnerability Storm' and the transition to Post-Quantum Cryptography (PQC). The commission is set to release a formal PQC migration guide to prepare the industry for 'Y2Q' risks by 2029. Read more