TechDay New Zealand - Aotearoa's technology news network

Security vulnerabilities stories

Story image
Picus launches tool for real-time validation of exploitable risks
Last week
#
devops
#
advanced persistent threat protection
#
soc
Picus Security launches Exposure Validation, a tool using real-time attack simulations to identify which vulnerabilities are truly exploitable in organisations.
Story image
Google DeepMind reveals new strategy to defend Gemini 2.5 AI
Last week
#
ai security
#
llms
#
cybersecurity
Google DeepMind has unveiled a new strategy to bolster Gemini 2.5 AI against indirect prompt injection attacks, enhancing its security and resilience.
Story image
Fintech sector faces mounting third-party security breach risks
Last week
#
mfa
#
fintech
#
application security
Nearly 42% of data breaches in top fintech firms stem from third-party vendors, highlighting critical supply chain vulnerabilities despite strong internal security.
Story image
Cybercriminals industrialise attacks on hospitality sector, report finds
Last week
#
ransomware
#
digital transformation
#
cybersecurity
Cybercriminals increasingly target Australia's hospitality sector, exploiting digital gaps with sophisticated attacks and dark web services, Trustwave warns.
Story image
Organisations prioritise AI security as GenAI adoption accelerates
Last week
#
malware
#
ransomware
#
encryption
Nearly 70% of organisations see AI, especially generative AI, as their top security risk, says Thales' 2025 Data Threat Report based on over 3,100 experts.
Story image
Tenable One unifies risk data with new connectors & dashboards
This month
#
cloud security
#
ai security
#
risk & compliance
Tenable launches connectors and customisable dashboards in Tenable One, unifying security data from multiple tools to enhance risk visibility and management.
Story image
Dior & Nucor cyberattacks highlight risks for global firms
This month
#
ransomware
#
martech
#
breach prevention
Luxury brand Dior and US steel producer Nucor both face major cyberattacks, exposing vulnerabilities in fashion and industrial sectors globally.
Story image
e2e-assure & Validato partner to enhance cyber resilience
This month
#
devops
#
advanced persistent threat protection
#
apm
e2e-assure partners with Validato to offer businesses continuous cyber security validation, enhancing defence against evolving threats using MITRE ATT&CK framework.
Story image
Lastwall IdP earns FedRAMP nod for quantum-ready Zero Trust
This month
#
hybrid cloud
#
cloud security
#
advanced persistent threat protection
Lastwall's Identity Platform has earned FedRAMP Moderate Authorisation, enabling US federal agencies to deploy quantum-resistant Zero Trust cybersecurity solutions.
Story image
Lazarus Group targets South Korean supply chains via software flaws
This month
#
firewalls
#
network security
#
financial systems
Kaspersky reveals Lazarus Group's 'Operation SyncHole,' targeting South Korean supply chains via software vulnerabilities and watering hole attacks.
Story image
Kaspersky warns AI-generated passwords expose users to attacks
This month
#
encryption
#
llms
#
ai
Kaspersky warns AI-generated passwords from ChatGPT, Llama, and DeepSeek often show predictable patterns, leaving users vulnerable to cyberattacks.
Story image
Immersive launches live AppSec exercises to boost secure coding
This month
#
it training
#
application security
#
devsecops
Immersive has launched AppSec Range Exercises, a live training tool to boost secure coding and improve application security in development teams.
Story image
Cloudhouse & ServiceNow join forces to boost IT governance
This month
#
itsm
#
servicenow
#
security vulnerabilities
Cloudhouse partners with ServiceNow to boost IT governance via integrated Guardian platform, enhancing application compatibility and infrastructure visibility.
Story image
Businesses intensify efforts to secure data in cloud computing
This month
#
malware
#
firewalls
#
data protection
Businesses are boosting cloud security efforts as rising cloud adoption brings complex risks, requiring new strategies to protect sensitive data and maintain compliance.
Story image
Cloud Security Alliance report urges new defences for cloud
This month
#
devops
#
cloud security
#
iam
The Cloud Security Alliance's 2025 report reveals repeated cloud security failures, urging firms to bolster identity controls and shared defence measures.
Story image
Zero-day hackers shift focus to enterprise tech in Google's report
This month
#
smartphones
#
firewalls
#
network security
Google's GTIG reports 75 zero-day exploits in 2024, highlighting a rising threat to enterprise tech despite a slight overall decrease from 2023.
Story image
GitHub Copilot surpasses 15 million users as AI tools expand
This month
#
ai
#
software development
#
microsoft
GitHub Copilot has exceeded 15 million users, growing rapidly as Microsoft advances its AI tools in software development and cloud services.
Story image
Unseen & Unsecured: The machine identity threat you can’t ignore
Last month
#
ai
#
cybersecurity
#
agentic ai
70% of firms manage more machine than human identities, with only 38% having real-time oversight, exposing a growing cybersecurity risk.
Story image
Legit Security unveils AI features to improve app vulnerability fixes
Last month
#
cloud security
#
risk & compliance
#
ai
Legit Security has launched AI features in its platform to help developers quickly identify and fix software vulnerabilities, enhancing app security and compliance.
Story image
Diligent teams with Cloudflare, Qualys to deliver cyber risk tool
Last month
#
cloud security
#
advanced persistent threat protection
#
cybersecurity
Diligent teams up with Cloudflare and Qualys to launch Cyber Risk Report, offering real-time threat insights for boards and executives on one platform.