A data breach stemming from a social engineering attack on the fintech company Betterment has exposed the personal information of 1.4 million individuals.
Cyber Security
Cyber criminals, state-sponsored hackers and even the occasional disgruntled employee are constantly looking to gain unauthorized access for a variety of purposes: theft of money, cyber espionage, personal information for sale or for use in scams, and damage to critical infrastructure for just a few of the most common.
So how does an organization mitigate an entire world full of continual cyber attacks? Just as buildings have a number of necessary elements of physical security: access control, cameras, alarms and so on; there are similar key elements of cyber security that are absolutely vital for just about any modern business.
It starts with identifying and closing the most common doors that attackers use. For example, phishing attacks on employees are far and away the most common initial point of entry. The breach of even a low-level employee account can quickly turn into an escalation in access privileges and the ability to reach sensitive information. This is also true of smart devices, which are generally more poorly secured than computers and phones.
A zero-day vulnerability that has been with iOS since the first iPhone launched has been identified and patched out by Apple, but with the warning that there is evidence it has been exploited in attack chains for quite some time.
As we enter 2026, AI-native automation is fundamentally reshaping telemetry pipeline management. As a result, around 80% of configuration tasks currently hand-built by Observability/Security teams will be automated, transforming the roles of those teams from builders to strategic drivers.
Publishing platform Substack has disclosed a data breach that leaked nearly 700,000 user records after an unauthorized third-party exploited a security flaw.
For fraud and AML leaders, the solution isn’t choosing between technology and people, but rather empowering teams with the right technology. AI agents are the key to this transformation with the ability to supercharge fraud and AML teams across end-to-end workflows with human-in-the-loop control.
The role of the CISO has evolved dramatically over the past decade. What was once a function centered on technical controls and perimeter defense has become a leadership position at the crossroads of business strategy, risk management and enterprise resilience.
Lack of tools or intelligence won't be the defining cybersecurity challenge of 2026. It's overabundance. Signals, platforms and rapid technological advancements dominate security leaders going into the new year.
A massive data leak has exposed over 8.7 billion records of primarily Chinese people stored on an unsecured Elasticsearch cluster on bulletproof infrastructure.
Security researchers believe that Chinese hackers are to blame for the attack in part because of the "selective" nature of the targets that were chosen for follow-on compromise via malicious software updates. Notepad++ is a free and broadly popular piece of software that is thought to have tens of millions of users worldwide.
Moltbook has been the talk of social media the past week, as its AI agent user base seemingly does everything from conspire against humanity to form new religions. But, relegated to the less sensational world of security news, a data leak has already exposed masses of API authentication tokens, private messages and email addresses.










