OSF Digital, a Salesforce-exclusive consulting and services firm, has been chosen to participate in the Salesforce Forward Deployed Engineering (FDE) Partner Network. Salesforce FDE partner network builds agentic AI skills OSF Digital will join a network of firms adopting deep learning, expert skills, and specialized training from Salesforce’s internal teams to help organizations “turn agentic…
Category: APAC
AI, APAC, Cloud Security, Cybersecurity, Data Breaches, Exploits, Global Security News, Politics, Risk Management
Frontier AI models offer sneak peak of seismic cyber shifts ahead
The advent of Claude Mythos combined with the release of OpenAI’s GPT-5.5 have changed the threat model for CISOs. The arrival of those frontier AI models — and the ones soon to follow — makes it much easier to discover and chain vulnerabilities at a speed and scale that will require most cyber departments to…
AI, APAC, Apps, Cybersecurity, Exploits, Global Security News, Network Security, Risk Management
June Patch Tuesday marks a ‘new normal’ with over 200 CVEs, 32 rated ‘critical’
June’s Patch Tuesday security updates have arrived, with SAP fixing four critical vulnerabilities and Microsoft addressing over 200 CVEs. Microsoft’s to-do list includes fixes for three zero days, 32 patches rated as ‘critical’, and a batch of other high-risk vulnerabilities that need urgent assessment. There’s also one older flaw under exploit, and some patches affecting…
AI, APAC, Cybersecurity, Global Security News, Network Security
Kaseya Unveils MSP Success Ecosystem for Efficient Growth
Global provider of AI-powered IT management and cybersecurity software, Kaseya, announced the launch of MSP Success, a unified growth ecosystem that brings together Kaseya’s growth and business acceleration programs, including MSP Success Digital Marketing, MSP Success Peer, and the Kaseya Community. Kaseya unifies its partner marketing and peer groups This unification is meant to help…
AI, APAC, Apps, Europe, Global Security News
EU Unveils Tech Sovereignty Package and Chips Act 2.0
The EU has unveiled its much-anticipated European Technological Sovereignty Package, comprising two pieces of legislation intended to boost the continent’s independence in cloud services, AI and semiconductors. The Cloud and AI Development Act seeks to foster the growth of AI models and apps, as well as the buildout of supporting infrastructure, with a specific goal…
AI, APAC, Cybersecurity, Data Breaches, Endpoint, Exploits, Global Security News, Network Security
AI worm prototype shows attackers don’t need Mythos to take over your network
Researchers from the University of Toronto developed a computer worm prototype powered by an AI agent that successfully self-replicated to different systems within a simulated computer network. The worm used a free large language model (LLM) running on local hardware and exploited a combination of older and new vulnerabilities, as well as misconfigurations that remain…
AI, APAC, Exploits, Global Security News
CVE-2026-23111: Linux nf_tables Flaw Enables Root Exploits
A Linux kernel nf_tables bug lets local users gain root via use-after-free caused by a logic error; patch removes a single “!”. CVE-2026-23111 lives in nf_tables, the Linux kernel’s packet filtering framework. Exodus Intelligence researcher Oliver Sieber found the bug in early 2025 and chained it into a full local privilege escalation. The flaw was…
AI, APAC, Exploits, Global Security News, privacy
WWDC: Apple’s AI moment of truth arrives
Everybody is watching to see what comes from Apple at its annual Worldwide Developer Conference (WWDC) today. There’s a great deal at stake, as when it comes to artificial intelligence (AI) today’s event represents an existentially important moment for the company. Apple execs absolutely must convince developers, industry watchers, users — all of us — that it…
AI, APAC, Europe, Funding, Global Security News, Government & Policy, Risk Management, Venture
EU’s cloud sovereignty push leaves room for US hyperscalers
The European Commission published its tech sovereignty package last week, including the clearest signal yet of its intention to strengthen European cloud sovereignty and reduce its dependence on US hyperscalers. It’s a response to growing concerns among European organizations and regulators about the reliance on US tech firms and legislation such as the US CLOUD…
AI, APAC, Exploits, Global Security News
CVE-2026-49975: HTTP/2 Bomb Attack Can Knock Web Servers Offline in Seconds
A newly disclosed denial-of-service vulnerability, tracked as CVE-2026-49975, shows how long-known HTTP/2 weaknesses can still be chained into a highly effective modern attack. SecurityWeek reports that researchers at Calif demonstrated an HTTP/2 Bomb exploit capable of knocking major web servers offline within seconds by combining a compression bomb with a Slowloris-style hold that prevents the…
AI, APAC, Global Security News
AgentGG: Open-source agentic SAST scanner
Static analysis tools have spent years matching source code against known-bad patterns and handing engineers long lists of candidate issues to triage by hand. AgentGG approaches the same job with AI agents that read the code, follow imports, walk the call graph, and confirm a finding before they report it. The project is an open-source…
AI, APAC, Endpoint, Exploits, Global Security News, Network Security
HTTP/2’s speed abused to slow webserver performance in DoS attack
Security researchers are warning of an issue with the default HTTP/2 configuration used by major web servers which reportedly survived more than a decade of human review before showing up in Codex-assisted analysis. A flaw in the handling of the HTTP/2 protocol made a denial-of-service (DoS) attack possible on web servers including nginx, Apache HTTP…
AI, APAC, Compliance, Cybersecurity, Global Security News, Government & Policy, Risk Management
OpenAI responds to White House executive order on AI governance
OpenAI has proposed mandatory federal evaluations of the most capable AI models before public release while arguing that regulators should stop short of deciding whether those systems can be deployed, staking out a middle ground in the debate over how frontier AI should be governed. The company’s proposal came a day after the White House…
AI, APAC, Apps, Cybersecurity, Exploits, Global Security News, Network Security, Risk Management
Inside the race to adapt to an AI-powered security world
Troy West was in Warsaw when his dinner was interrupted by his phone. But he was happy about it. West, associate director of cybersecurity for autonomous offensive security company XBOW, had just learned that a trial version of the company’s platform had found a vulnerability that led to a full takedown of a development environment…
AI, APAC, Cybersecurity, Global Security News
Evergreen Expands ANZ Footprint with OSIT Acquisition
Evergreen has acquired Office Solutions IT (OSIT), expanding its managed services presence in Australia and New Zealand through its Lyra Technology Group portfolio. The deal marks Evergreen’s largest acquisition in the ANZ region and its first regional MSP acquisition involving a company with an existing employee stock ownership plan (ESOP). OSIT will join two other…
APAC, Exploits, Global Security News
New HTTP/2 Bomb attack can take down web servers in seconds
The HTTP/2 Bomb attack exploits default configurations of major web servers including NGINX, Apache HTTP Server, Microsoft IIS, Envoy, and Cloudflare Pingora.
AI, APAC, Cybersecurity, Europe, Global Security News, Government & Policy
Eu sets out plans to reduce reliance on US cloud providers
The European Union has now published a set of measures aimed at boosting Europe’s tech industry to help reduce reliance on US and Chinese suppliers for AI, cloud, and semiconductors. The proposals include rules to restrict the use of US hyperscalers for certain public sector procurement purposes, but stop short of banning them outright. “Technological…
AI, APAC, Global Security News
After a quick 1.1M sales, MacBook Neo set to reshape the PC industry
Apple’s MacBook Neo appears to be a triumph of strategic disruption that has already cast shock waves across the industry — and that energy is still playing out. Approximately 55,000 MacBook Neo computers have been sold every day since it was introduced in March, according to IDC data (as first noted by TechCrunch). In fact, it looks as if Apple sold 1.1…
AI, APAC, Cybersecurity, Exploits, Global Security News
New HTTP/2 Bomb Vulnerability Allows Remote DoS on NGINX, Apache, IIS, Envoy & Cloudflare
Cybersecurity researchers have discovered a remote denial-of-service exploit that affects major web servers, including NGINX, Apache HTTPD, Microsoft IIS, Envoy, and Cloudflare Pingora. The vulnerability has been codenamed HTTP/2 Bomb by Calif. “The vulnerable behavior exists in each server’s default HTTP/2 configuration,” the company said, adding it was discovered by OpenAI Codex by chaining
AI, APAC, china, Global Security News, Government & Policy, Network Security, Politics, Russia
The Pentagon Is Running an AI Propaganda Mill Targeting Latin America
The United States is feeding Pentagon propaganda to internet users in Latin American countries using a new AI-laden content mill, an investigation by The Intercept has found. La Tilde quietly began development early this year and appears to still be a work in progress, pitching itself as a modern media brand for Latin American audiences…
AI, APAC, Apps, Compliance, Global Security News
Workday Intros New Developer Capabilities for Enterprise AI Agents
Workday has made a series of announcements recently, including a new partnership with AWS and new capabilities designed to help developers build, run, and govern AI agents on trusted HR and finance data while using the agentic coding tools and clouds they already utilize. The new capability announcements include: New Developer Agent and Agent-Ready Tools…
AI, APAC, Cloud Security, Cybersecurity, Exploits, Global Security News, Government & Policy, Network Security
Anthropic expanding access to Project Glasswing
Anthropic is broadening access to its Project Glasswing program, adding approximately 150 organizations in 15 countries, the company announced Tuesday, as its restricted Claude Mythos Preview model has already surfaced more than 10,000 high- or critical-severity software vulnerabilities since the program launched in early April. The expansion follows an initial cohort of roughly 50 partners…
AI, APAC, Compliance, Cybersecurity, Europe, Global Security News, Network Security, Risk Management
ENISA NIS360 2026: Progress Across the Board, But the Sectors That Matter Most Are Still Falling Short
ENISA NIS360 2026 shows cybersecurity improving across EU critical sectors, but health, water, rail, and space remain in the risk zone. ENISA has published its third annual NIS360 report, assessing the cybersecurity maturity and criticality of all sectors covered by the NIS2 directive. The headline finding is that things are improving across the board. The…
AI, APAC, Apps, Global Security News
Snowflake Expands AWS Deal as Enterprise AI Demand Grows
Snowflake is committing $6 billion to AWS over multiple years as the cloud data company works to secure the compute capacity needed to support growing enterprise AI workloads. The expanded agreement deepens Snowflake’s long-running relationship with AWS and comes as the company reports stronger revenue growth tied to AI adoption. Revenue outlook improves as AI…
AI, APAC, Compliance, Global Security News, Risk Management
Integris CEO on First Focus Acquisition, Global MSP Demand
Integris’ planned acquisition of First Focus is not just a geographic expansion play. According to founder and CEO Rashaad Bajwa, the deal gives the U.S.-based MSP a scaled platform in Australia and New Zealand at a time when SMB customers are beginning to ask harder questions about AI, data protection, and governance. First Focus expands…
AI, APAC, Compliance, Cybersecurity, Global Security News, Government & Policy, Risk Management
AI Growth Exposes Gaps in Governance and Readiness
Artificial intelligence (AI) adoption continues to grow across industries, but new research from Veeam suggests many organizations are still working through the governance, security, and operational challenges associated with deploying AI at scale. The study, which surveyed 300 technology and business leaders across financial services, healthcare, government, manufacturing, and technology sectors, found that 95% of…
AI, APAC, Global Security News, Network Security
Meta considers becoming a hyperscaler
Meta has raised the possibility that it could be joining the likes of Amazon, Microsoft and Google in offering cloud services at some point in the future — although potential customers shouldn’t be adding the company to their suppliers list just yet. When asked about plans for offering such services at the company’s annual shareholders…
AI, APAC, Compliance, Cybersecurity, Data Breaches, Exploits, Global Security News, malware, privacy, Risk Management
AI Threats, Data Breaches, and Supply Chain Risks Define This Week of May 2026 in Cybersecurity
Major Threats & Vulnerabilities Data Breaches and Credential Exposures The hacking group ShinyHunters claims responsibility for stealing over 42 million customer records from Charter Communications. The alleged breach, conducted through social engineering and Microsoft Entra compromise, is under investigation. Organizations are urged to review MFA enforcement and monitor SaaS environments for suspicious activity. Read more…
AI, APAC, Apps, Data Breaches, Exploits, Global Security News, Network Security
Lack of response to critical vulnerability in Gogs is a reminder of the limits of open source projects
A newly discovered and so far unpatched critical vulnerability in the open source Gogs Git service not only demands immediate action from developers to secure their code, it also puts a spotlight on the potential issues in using self-hosted code platforms from small maintainers. The hole is a critical argument injection vulnerability, discovered by a…
AI, APAC, Compliance, Global Security News, Network Security
Simplifying policy management with URL and Domain Category filtering on AWS Network Firewall
Network administrators face a persistent challenge: maintaining domain blocklists and allowlists that keep pace with the internet. New websites and services emerge daily, and keeping these lists current requires constant manual updates that leave gaps in coverage. This challenge intensifies when managing access to rapidly evolving categories like AI services, where new tools launch on…
AI, APAC, Apps, Cloud Security, Compliance, Data Breaches, Data Security, Endpoint, Global Security News, Network Security, Risk Management
6 Best Cloud Log Management Services Reviewed in 2026
This guide is for security teams, SOC analysts, DevOps engineers, and IT administrators looking to improve cloud visibility, threat detection, and operational monitoring in 2026. It reviews the best cloud log management services, key platform features, and important factors to consider when selecting the right solution for your environment. Key Takeaways of Cloud Log Management…
AI, APAC, Apps, Cloud Security, Compliance, Cybersecurity, Data Breaches, Exploits, Global Security News, malware, Network Security, Risk Management
What Is Cloud Security Management? Types & Strategies in 2026
This guide is for cloud security teams, IT leaders, and security administrators looking to improve cloud visibility, data protection, and compliance across modern cloud environments in 2026. It explains how cloud security management works, key cloud security strategies and tools, and best practices for securing cloud infrastructure and operations. Key Points about Cloud Security Management…
AI, APAC, Compliance, Global Security News, Network Security
Cogent Data Center Sale Highlights AI Inference Shift
If you’ve been following AI infrastructure at all over the past year, you know that most of the conversation has been centered around training, which, of course, refers to the massive systems used to build these models in the first place. That’s where all the talk of bigger clusters, more GPUs, and more power has…
AI, APAC, Apps, Cloud Security, Compliance, Cybersecurity, Data Breaches, Data Security, Global Security News, malware, Network Security, Risk Management
Top 7 Cloud Security Posture Management (CSPM) Tools in 2026
This guide is for IT leaders, cloud security teams, and compliance professionals looking to strengthen cloud security posture and reduce configuration risks in 2026. It covers the top cloud security posture management (CSPM) tools and the key capabilities organizations should evaluate to improve visibility, automate remediation, and enforce compliance across cloud environments. Key Takeaways of…
AI, APAC, Apps, Cybersecurity, Endpoint, Exploits, Global Security News, Network Security, Risk Management
FastAPI-based AI tools exposed to authentication bypass by flaw in Starlette framework
A single malformed character in a web request can let an unauthenticated attacker slip past the access controls that guard applications built on Starlette, the open-source Python framework that powers FastAPI, researchers said. The flaw, tracked as CVE-2026-48710 could allow attackers to bypass host-validation protections using malformed Host headers, according to an advisory from cybersecurity…
AI, APAC, Cybersecurity, Data Breaches, Exploits, Global Security News, Government & Policy, malware, Network Security, Risk Management
The NSA, ‘Mythos’ and the quiet emergence of AI cyber doctrine
For most of my career running security operations, the shape of cyber conflict has been defined by who could move faster than the other side. Faster at identifying a vulnerability, faster at patching, faster at detecting, faster at responding. The last few months have made me reevaluate that framing. Speed still matters. It just no…
AI, APAC, Apps, Compliance, Global Security News, Network Security, privacy, Risk Management
Top 6 UCaaS Providers for Businesses in 2026
Unified Communications as a Service (UCaaS) is essential for modern businesses looking to stay connected in today’s fast-moving work environment. By combining video conferencing, VoIP, messaging, and collaboration tools into a single cloud-based platform, UCaaS helps teams communicate and collaborate in real time from anywhere. As remote and hybrid work continue to evolve in 2026,…
AI, APAC, Apps, Global Security News, Network Security, Risk Management
How Lineage Reveals Your Data’s Secrets
Imagine this scenario: on an otherwise fine and ordinary Monday morning, your security operations center (SOC) flags a suspicious alert. Files from a confidential vault are transferring to someone’s personal cloud storage account. Halt! An analyst stops the flow, but some files are leaked to who-knows-where. In fact, other than knowing the leak happened, you…
AI, APAC, Global Security News
Dell CEO Says Agentic AI is Straining Supply Chains
The AI boom was already straining the supply chain, and agentic AI is apparently pushing it to a new level of dysfunction. Speaking at Dell Technologies World 2026 in Las Vegas, Dell Technologies CEO Michael Dell said the rise of autonomous AI systems is making it harder for supply and demand to settle into any…
AI, APAC, Apps, Compliance, Global Security News
High-Quality Customer Outcomes Require Courageous Leadership
This article is written by Brett Diamond, CEO, 11:11 Systems, and provided to Channel Insider by 11:11 Systems. Every company claims to be customer-first. Many invest in support, success teams, and service management frameworks. But the uncomfortable truth is this: ensuring quality at every customer touch point often requires focused decision-making. And the decisions that…
AI, APAC, Cybersecurity, Exploits, Global Security News, Government & Policy
Anthropic: Mythos finds more than 10,000 software flaws in first month
Anthropic said its month-old Project Glasswing initiative has uncovered more than 10,000 high- or critical-severity software vulnerabilities across systemically important code, a finding the company says has shifted the central problem in cybersecurity from discovering flaws to verifying and patching them. The findings, drawn from partner reports and independent evaluations, mark one of the first…
AI, APAC, Cybersecurity, Exploits, Global Security News, Risk Management
Project Glasswing has uncovered 10,000 vulnerabilities: Anthropic
Anthropic says it and upwards of 50 partners involved in Project Glasswing have uncovered an estimated 10,000 critical or high-severity vulnerabilities in their software offerings. The company launched the cybersecurity initiative, which is built around Claude Mythos Preview, in April, stating that its launch partners would use it as part of their defensive security work.…
AI, APAC, Apps, Exploits, Global Security News, Network Security, Risk Management
The AI that cracked Apple Silicon is only the beginning
A security research team just used Claude Mythos to identify the first known exploit in Apple’s M5 chip. They needed physical access to the device to use it, the vulnerability has since been patched, and I don’t think it should be seen as a huge threat. But it is a stark warning that in this AI…
AI, APAC, Apps, Global Security News, Risk Management
LG Launches PRO Services to Simplify DVLED Rollouts for Partners
LG Electronics USA’s commercial display division has launched LG PRO Services, a new “manufacturer-backed” installation service for its Direct View LED (DVLED) portfolio. The service covers fixed-price All-in-One DVLED models as well as cabinet-based indoor DVLED solutions, expanding LG’s role beyond hardware to help partners plan, deploy, and scale display projects with greater confidence. Addressing…
AI, APAC, china, Compliance, Cybersecurity, Data Breaches, Endpoint, Exploits, Global Security News, malware, Network Security, privacy, Risk Management, Russia
AI-Driven Threats, Critical Vulnerabilities, and Supply Chain Breaches Define the Week in May 2026
Major Threats & Vulnerabilities AI-Powered Cyberattacks and Exploits The 2026 Verizon DBIR revealed that vulnerability exploitation has surpassed credential abuse as the leading breach vector, accounting for 31% of incidents. The report highlights how generative AI is accelerating attack automation and expanding third-party risk exposure, particularly among SMBs facing ransomware threats. Microsoft Defender vulnerabilities are…
AI, APAC, china, Cybersecurity, Funding, Global Security News, Government & Policy, Network Security, Russia
Lawmakers from both parties say CISA cuts have gone too far
Two cybersecurity-focused members of Congress agreed Thursday that reductions to the Cybersecurity and Infrastructure Security Agency have done too much damage to an agency essential to defending civilian networks against foreign adversaries. Rep. Don Bacon, R-Neb., and Rep. James Walkinshaw, D-Va., spoke during a discussion at the National Cyber Innovation Forum. Despite representing different parties,…
AI, APAC, Global Security News, privacy
Do Apple’s accessibility efforts point at its AI plans?
You can usually measure a society by the way it treats its most vulnerable populations, and technology often can help people live better, more autonomous lives. Apple firmly believes that, and this year’s raft of accessibility announcements introduced to mark Global Accessibility Awareness Day shine a light on that belief. The company has won a string of awards…
AI, APAC, Apps, Global Security News
AI Demand Pushes Neoclouds into the Channel Conversation
Neocloud providers are gaining momentum as enterprises look for more GPU capacity to support AI training, fine-tuning, and inference. For MSPs, resellers, and system integrators, that shift could expand the cloud infrastructure conversation beyond hypescalers. As AI workloads push customers to compare every available option, partners have an opportunity to advise on cost, capacity, workload…
AI, APAC, Compliance, Cybersecurity, Global Security News, Government & Policy, malware, Network Security, Risk Management
How Can MSSPs Scale Threat Detection Without Burning Out Their Analysts?
Scaling threat detection as an MSSP doesn’t mean hiring more analysts — it means enabling the analysts you already have to handle more clients, more alerts, and more complex threats without burning out. The practical path forward combines three capabilities: continuous real-time intelligence that keeps detection systems current automatically, instant IOC investigation that cuts triage…
AI, APAC, Exploits, Global Security News, malware, Network Security, Risk Management
Why some security fixes never reach your vulnerability dashboard
On April 22, for roughly 90 minutes, a malicious version of Bitwarden CLI appeared on npm. Version 2026.4.0 contained a credential-stealing payload that executed an obfuscated loader and harvested AWS, Azure, GCP, GitHub, and npm tokens from any developer machine that ran npm install. The attackers reached Bitwarden’s npm publishing path through a compromised GitHub…
AI, APAC, Compliance, Cybersecurity, Europe, Global Security News, Network Security, Risk Management
Westcon-Comstor Launches White-Label OneSOC Service
Westcon-Comstor has launched OneSOC, a vendor-agnostic, white-label security operations service designed to help channel partners offer SOC capabilities under their own brand without upfront investment. The global technology distributor, which specializes in cybersecurity, networking, and hybrid cloud, announced the service on May 19. OneSOC targets partner barriers to SOC delivery OneSOC is available across Europe,…
AI, APAC, Compliance, Cybersecurity, Endpoint, Global Security News, malware, Network Security, Risk Management
Top 5 Phishing-Driven Social Engineering Attacks on Companies in 2026
Your employees are not falling for “bad grammar” phishing anymore. They are being pulled into fake Microsoft logins, banking pages, AI tool instructions, real OAuth flows, and event invitations that look close enough to daily work to pass without alarm. For CISOs, that is the real social engineering problem in 2026: attacks are no longer…
AI, APAC, Cybersecurity, Global Security News
Mini Shai-Hulud Pushes Malicious AntV npm Packages via Compromised Maintainer Account
Cybersecurity researchers have discovered a fresh software supply chain attack campaign that has compromised various npm packages associated with the @antv ecosystem as part of the ongoing Mini Shai-Hulud attack wave. “The attack affects packages tied to the npm maintainer account atool, including echarts-for-react, a widely used React wrapper for Apache ECharts with roughly 1.1…
AI, APAC, Cybersecurity, Endpoint, Global Security News, Risk Management
Microsoft May security patch fails for some due to boot partition size glitch
“Something didn’t go as planned. Undoing changes.” That’s all the clue some Windows 11 users will get when Microsoft’s May Security Update fails to install because of insufficient free space on the EFI System Partition (ESP), leaving their systems unprotected by the dozens of patches it contained. This issue affects devices with limited free space…
AI, APAC, Cybersecurity, Endpoint, Global Security News, Risk Management
Microsoft May security patch fails for some due to boot partition size glitch
“Something didn’t go as planned. Undoing changes.” That’s all the clue some Windows 11 users will get when Microsoft’s May Security Update fails to install because of insufficient free space on the EFI System Partition (ESP), leaving their systems unprotected by the dozens of patches it contained. This issue affects devices with limited free space…
AI, APAC, Compliance, Cybersecurity, Data Breaches, Global Security News, Risk Management
MY TAKE: AI agents force a rethink of enterprise service lines as vendors move up the tech tack
ORLANDO — Companies are pulling AI agents into their daily operations through a dozen side doors. Related: SaaS and AI agents converge One of them was in focus at KB4-CON, KnowBe4’s annual customer conference at the Marriott World Center here last week. The Clearwater, Fla.-based cybersecurity training vendor used the conference to lay out a…
AI, APAC, Apps, Compliance, Endpoint, Global Security News, Network Security, privacy, Risk Management
The 6 Best Enterprise Password Managers You’ll Actually Trust in 2026
This guide is for IT leaders, security teams, and business decision-makers looking to improve credential security and reduce password-related risks in 2026. It covers the best enterprise password managers, their standout features, and the key factors to evaluate when choosing the right solution for your organization. Key Points About Enterprise Password Managers in 2026 Enterprise…
AI, APAC, Global Security News, Risk Management
Q&A: AI Ushers in a New Era in MSP Service Efficiency
The managed services industry is under increasing pressure to scale operations, improve response times, and maintain profitability without continuously adding headcount. For many MSPs, the challenge lies in the operational burden that is created by workflows that still depend heavily on human coordination at nearly every stage of the service desk process. According to Mark…
AI, APAC, Global Security News
Debian 13.5 point release lands with security fixes, bug patches
Debian 13.5 is the fifth point release for the stable distribution “trixie.” The update folds in roughly 100 Debian Security Advisories and corrections for more than 130 source packages, covering everything from the Linux kernel and Apache HTTP Server to OpenSSH, sudo, systemd, OpenSSL, glibc, and FreeRDP. Fresh installer images carrying the same fixes will…
AI, APAC, Cybersecurity, Data Breaches, Europe, Exploits, Global Security News, Government & Policy, malware, Network Security, Russia
Security Affairs newsletter Round 577 by Pierluigi Paganini – INTERNATIONAL EDITION
A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Attackers exploit Funnel Builder bug to inject e-skimmers into e-stores Pwn2Own Berlin 2026, Day Three: DEVCORE…
AI, APAC, Apps, Endpoint, Exploits, Global Security News, Network Security, Risk Management
For May, Patch Tuesday means 139 updates — but no zero-days
Microsoft this week released 139 updates affecting Windows, Office, .NET, and SQL Server (though there were no updates for Microsoft Exchange Server). Despite the absence of zero-days, the May Patch Tuesday update still requires Patch Now recommendations for Windows and Office. The combination of three unauthenticated network RCEs (Netlogon, DNS Client, and SSO Plugin for…
AI, APAC, Global Security News, Government & Policy
Why Apple needs Intel — and America needs them both
If you think about it, it’s in the national interest for Apple to work with Intel to develop at least some capacity for silicon production outside of Taiwan. It’s also in Apple’s interest, as its continued growth means it needs more and more chips to put inside an ever-expanding product catalog. During Apple’s Q2 26 fiscal call, CEO Tim Cook…
AI, APAC, Cybersecurity, Europe, Global Security News, Government & Policy
Microsoft business software faces UK antitrust probe over bundling, AI lock-in
The UK’s competition regulator has launched a broad antitrust investigation into Microsoft’s business software ecosystem, opening a new front in growing regulatory scrutiny of how cloud platforms, productivity software, and embedded AI capabilities may affect competition in enterprise technology markets. UK’s Competition and Markets Authority (CMA) said in a statement that it had opened a…
AI, APAC, Compliance, Cybersecurity, Europe, Exploits, Global Security News, Network Security, Risk Management
EU’s Cyber Resiliency Act will put IT leaders to the test
Unlike most cyber security regulations, the EU’s Cyber Resilience Act is about product safety rather than processes or certification, extending the CE mark from the physical side of products to software, firmware, backend services, and anything with a network connection. It encodes existing best practices, enforces minimum product support lifecycles, and could mean developing stronger…
AI, APAC, Apps, Endpoint, Global Security News
How Southwest Airlines is putting endpoint operations on autopilot
As digital tools become more central to its operations, Southwest Airlines is increasingly turning to AI and automation to prevent endpoint issues from affecting the sprawling airline. The new tools allow the company’s IT team to take a more strategic, rather than reactive, approach to operations, said Derek Whisenhunt, head of end user computing at…
AI, APAC, Global Security News, Network Security
Vector embedding security gap exposes enterprise AI pipelines
Enterprise adoption of retrieval-augmented generation has moved sensitive corporate content into a new storage format that existing security tools cannot inspect. Companies deploying internal AI assistants convert documents into high-dimensional numerical vectors and ship them to embedding services and vector databases over ordinary HTTPS connections. Data loss prevention products scan documents and network traffic, and…
AI, APAC, Cloud Security, Compliance, Europe, Global Security News, Risk Management
Introducing the updated AWS User Guide to Governance, Risk, and Compliance for Responsible AI Adoption
The financial services industry (FSI) is using AI to transform how financial institutions serve their customers. AI solutions can help proactively manage portfolios, automatically refinance mortgages when rates decrease, and negotiate insurance premiums for customers. However, this adoption brings new governance, risk, and compliance (GRC) considerations that organizations need to address. To help FSI customers…
AI, APAC, Cybersecurity, Exploits, Global Security News, Network Security
Cyberattack: First they come for Foxconn, then they come for you
Apple’s key manufacturing partner Foxconn has confirmed its US factories suffered a ransomware attack in recent days after the gang responsible claimed to have stolen 8TB of data from the company — including confidential Apple information. This isn’t the first attack to hit Foxconn, and such is the scale and value of the company that it is unlikely…
AI, APAC, Cloud Security, Compliance, Cybersecurity, Endpoint, Global Security News, privacy, Risk Management
2026 CSO Award winners showcase business-enabling cyber innovation
The annual CSO Awards annually recognize security projects that demonstrate outstanding security leadership and business value. For this year’s program, CSO honors 64 security organizations whose hard work and innovative approaches have had a significant impact on how their enterprises navigate risks in an increasingly challenging cyber environment. These projects showcase the variety of strategies…
AI, APAC, Apps, Exploits, Global Security News
Microsoft May 2026 Patch Tuesday, (Tue, May 12th)
Today’s Microsoft patch Tuesday fixes 137 different vulnerabilities. In addition, the update addresses 137 Chromium-related issues affecting Microsoft Edge. There are no already disclosed or already exploited vulnerabilities included in today’s patches. I removed the Chromium issues from the table below and included only the 137 Microsoft issues to make it more readable. Note that issues…
AI, APAC, Exploits, Global Security News
Pwn2Own Berlin 2026 Hits Capacity as Rejected Hackers Release 0-Days
Pwn2Own Berlin 2026 reportedly reached full capacity for the first time, prompting rejected researchers to publicly disclose zero-day exploits targeting Firefox, NVIDIA, and AI platforms.
AI, APAC, Compliance, Global Security News, Network Security
SonicWall Expands Security Platform With Cloud-Focused NSv XS
SonicWall is expanding its Gen 8 security platform beyond physical appliances with the launch of the NSv XS, a new virtual firewall designed for managed service providers (MSPs) and managed security service providers (MSSPs). Gen 8 security platform expands to virtual environments Announced Tuesday, the NSv XS brings SonicWall’s Gen 8 protections into cloud and…
AI, APAC, Cybersecurity, Endpoint, Funding, Global Security News, Network Security, Risk Management, Venture
AI is separating the companies built to scale from the ones built to sell
If you had time to walk the expo floor at this year’s RSA Conference, it was impossible to miss the shift in our industry. Artificial intelligence has moved from an emerging layer to the foundation of what powers cybersecurity companies. But from our vantage point as investors who work closely with founders and operators, the bigger…
APAC, Global Security News
Elon Musk’s Grok Is Losing Ground in AI Race
Adoption by business and consumer users has slowed as parent SpaceX rents out spare computing capacity to rival Anthropic.
AI, APAC, Cybersecurity, Data Breaches, Endpoint, Europe, Exploits, Global Security News, Government & Policy, malware, Network Security, Risk Management, Russia
Security Affairs newsletter Round 576 by Pierluigi Paganini – INTERNATIONAL EDITION
A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Quasar Linux RAT (QLNX): A Fileless Linux Implant Built for Stealth and Persistence Braintrust security incident…
AI, APAC, Apps, Cloud Security, Compliance, Endpoint, Global Security News, Network Security, Risk Management, Venture
ICYMI: April 2026 @AWS Security
Read all about the latest AWS security features, compliance updates, and hands-on resources in our new, monthly digest posts. You’ll find expert blog posts, new service capabilities, code samples, and workshops. AWS Security Blog posts This month’s AWS Security Blog posts covered AI security, identity and access management, threat intelligence, data protection, and multicloud operations.…
AI, APAC, Cloud Security, Compliance, Cybersecurity, Global Security News, Network Security, Risk Management
Best MSP Certifications to Grow Services in 2026
To stay ahead in today’s competitive channel landscape, managed service providers (MSPs) need relevant certifications that validate their expertise and strengthen their credibility across key areas such as cybersecurity, cloud services, and artificial intelligence (AI). With the growing number of role-based and vendor-specific certifications available in 2026, choosing the right ones to expand your service…
AI, APAC, Compliance, Cybersecurity, Data Breaches, Global Security News, Network Security, Risk Management
CISOs: Align cyber risk communication with boardroom psychology
By now, executive boards across industries understand that cyberattacks can be costly. What they often lack, however, is a clear view of which risks pose the biggest threat to their business and why certain investments need to rise to the top. Many security leaders lose traction at that point. The challenge is less about sounding…
AI, APAC, china, Global Security News
Iranian state-backed spies pose as ransomware slingers in false flag attacks
An Iranian state-sponsored espionage group is pretending to be a regular ransomware gang in a new wave of ransomware attacks targeting enterprises. APT group MuddyWater (aka Seedworm) is masquerading as the Chaos ransomware-as-a-service group to confuse incident response and mask its spying and cyber-sabotage, according to research by security vendor Rapid7. The attacks — geared…
AI, APAC, Exploits, Global Security News, malware, Network Security, Risk Management
CVE-2026-23918: Critical Apache HTTP/2 Flaw Can Trigger DoS and Possible RCE
Apache has patched CVE-2026-23918, a critical flaw in Apache HTTP Server’s HTTP/2 handling that Apache describes as a “double free and possible RCE.” The issue affects Apache HTTP Server 2.4.66 and was fixed in 2.4.67, released on May 4, 2026. The CVE-2026-23918 vulnerability matters because it can be abused remotely and without authentication. Public reporting…
AI, APAC, Exploits, Global Security News, malware, Network Security, Risk Management
CVE-2026-23918: Critical Apache HTTP/2 Flaw Can Trigger DoS and Possible RCE
Apache has patched CVE-2026-23918, a critical flaw in Apache HTTP Server’s HTTP/2 handling that Apache describes as a “double free and possible RCE.” The issue affects Apache HTTP Server 2.4.66 and was fixed in 2.4.67, released on May 4, 2026. The CVE-2026-23918 vulnerability matters because it can be abused remotely and without authentication. Public reporting…
AI, APAC, Exploits, Global Security News
Apache fixes critical HTTP/2 double-free flaw CVE-2026-23918 enabling RCE
Apache fixed several flaws in HTTP Server, including CVE-2026-23918 (CVSS score of 8.8), a double-free bug in HTTP/2 that could allow remote code execution. The Apache Software Foundation has released updates to fix multiple vulnerabilities in its HTTP Server, including CVE-2026-23918 (CVSS score of 8.8). The issue involves a “double free” error in HTTP/2 handling…
AI, APAC, Compliance, Cybersecurity, Data Breaches, Endpoint, Global Security News, malware, Network Security, privacy, Risk Management
How CISOs Reduce Cyber Risk with MITRE ATT&CK
Nowadays CISOs face escalating threats that outpace traditional defenses. The strategy is evolving from compliance-driven checklists to a threat-informed approach. MITRE ATT&CK provides a globally accessible knowledge base of real-world adversary tactics, techniques, and procedures (TTPs), enabling organizations to understand, prioritize, and counter actual attacker behaviors rather than abstract controls. This shift helps align security efforts with business…
AI, APAC, Apps, Cybersecurity, Endpoint, Global Security News, Network Security, Risk Management
Introducing AI traffic analysis dashboards for AWS WAF
As AI agents, bots, and programmatic access become an increasingly significant portion of web traffic, organizations need better tools to understand, analyze, and manage this activity. Today, we’re excited to announce AI Traffic Analysis dashboards for AWS WAF protection packs—also known as web access control lists (web ACLs)—providing comprehensive visibility into AI bot and agent…
APAC, Global Security News
Critical Apache HTTP/2 Flaw (CVE-2026-23918) Enables DoS and Potential RCE
The Apache Software Foundation (ASF) has released security updates to address several security vulnerabilities in the HTTP Server, including a severe vulnerability that could potentially lead to remote code execution (RCE). The vulnerability, tracked as CVE-2026-23918 (CVSS score: 8.8), has been described as a case of “double free and possible RCE” in the HTTP/2 protocol…
AI, APAC, china, Global Security News, Risk Management
Apple can’t make chips fast enough, but that’s only part of the story
Apple has held “exploratory” talks about manufacturing processors for its devices in the US, Bloomberg reports. The move seems to reflect Apple’s need to secure additional chip supplies to meet growing demand for its products, but could also represent a contingency plan to reduce the company’s reliance on Taiwan Semiconductor Manufacturing Company (TSMC’s) advanced manufacturing facilities in Taiwan. I doubt…
AI, APAC, Apps, Global Security News
Oracle will patch more often to counter AI cybersecurity threat
Oracle plans to issue security patches for its ERP, database, and other software on a monthly cycle, rather than quarterly, to respond to the increased pace of AI-enabled software vulnerability discovery. Other software vendors, notably Microsoft, SAP, and Adobe, already release patches on a monthly beat, always on the second Tuesday of each month. Oracle,…
AI, APAC, Apps, Endpoint, Global Security News, Network Security, Risk Management
Securing open proxies in your AWS environment
This article shows you how to identify and secure open proxies in your AWS environment to prevent abuse, protect your IP address reputation, and control costs. An open proxy is a server that forwards traffic on behalf of internet users without requiring authentication. While proxies can support legitimate use cases such as load balancing or…
AI, APAC, Apps, Cybersecurity, Data Breaches, Endpoint, Global Security News, Government & Policy, Network Security, Risk Management, Russia
Why data centers now belong on the critical infrastructure list
Missile and drone attacks that took out cloud data centers in the Middle East underscored a critical vulnerability in the modern economy: reliance on digital infrastructure that sustains competitive advantage and operational continuity for corporations, nations, and militaries. The outages and downstream disruption were a preview of a new form of strategic and operational risk.…
AI, APAC, Compliance, Europe, Global Security News, Risk Management
AWS, Microsoft, & Google Cloud Converge Around AI-Led Growth
The “big three” hyperscalers, Amazon Web Services (AWS), Microsoft, and Google Cloud, have been especially active over the past 12 months, operating both as suppliers of in-demand data center capacity for AI model developers and as builders of their own models, services, and tools. While each has historically leaned into distinct strengths and target markets,…
AI, APAC, Global Security News
OpenAI Growth Miss Rattles AI Chip and Cloud Stocks
A report that OpenAI missed internal growth targets was enough to shake confidence up and down the AI supply chain this week, sending chip and cloud stocks lower and raising new questions about how fast the market is actually expanding. Shares of Nvidia fell more than 3%, while AMD dropped even further before recovering slightly…
AI, APAC, Cybersecurity, Exploits, Global Security News, malware, Network Security, Risk Management
Release Notes: Expanded Threat Intelligence Access, AI Assisted Search 1,770 New Detections and More
April brought several updates across ANY.RUN’s Threat Intelligence and detection coverage. The biggest change is expanded access to Threat Intelligence: Free plan users now get 20 premium requests in TI Lookup and YARA Search. This gives security teams a practical way to check suspicious indicators, explore related sandbox sessions, and validate malware or phishing activity using real attack…
AI, APAC, Exploits, Global Security News, malware, Network Security
Danger of Libredtail [Guest Diary], (Wed, Apr 29th)
[This is a Guest Diary by James Roberts, an ISC intern as part of the SANS.edu BACS program] Over the last few months, I have gained valuable experience working with the Internet Storm Center (ISC) operating a honeypot and analyzing its output via a SIEM environment. This work gave me hands on experience with system…
APAC, Global Security News, Network Security
Viasat Confirms Successful Launch and Initial Signal Acquisition of ViaSat-3 F3
Successful ViaSat–3 F3 launch advances Viasat’s global, multi-orbit network strategy Designed to Deliver 1 Tbps of Capacity, ViaSat–3 F3 to Significantly Expand Flexible, Resilient, High-Speed Connectivity Across the Asia-Pacific Region Later this Year
AI, APAC, Global Security News, Risk Management
Dematic brings Multishuttle FD to Australia, Unlocking Scalable, High-Density Storage without over Investment
Dematic, a global leader in supply chain automation, is set to exhibit the Dematic Multishuttle® FD System in Australia. The Multishuttle FD System is a high-density shuttle-based storage system designed to help businesses double storage capacity while reducing the risk of over-investing in warehouse automation.
AI, APAC, Apps, Compliance, Cybersecurity, Data Breaches, Endpoint, Exploits, Global Security News, malware, Network Security
6 Best Intrusion Detection & Prevention Systems in 2026
This guide is for IT leaders, security teams, and network administrators looking to strengthen threat detection and response in 2026. It covers the top intrusion detection and prevention systems (IDPS) and key features to consider when choosing the right solution. Network security is not just about keeping the bad guys out. It’s about having a…
AI, APAC, Europe, Global Security News, privacy
U.S. companies hit with record fines for privacy in 2025
U.S. states issued $3.45 billion in privacy-related fines to companies in 2025, a total larger than the last five years combined, according to research and advisory firm Gartner. The increase is partly driven in part by stronger, more established privacy laws in states like California, new interstate partnerships built around enforcing laws across state lines,…
AI, APAC, Data Breaches, Global Security News, privacy
Weekly Update 501
This is so “peak 2026” – writing an equality policy to ensure people treat our AI bot with the same respect as they do their human counterparts. It’s intentionally a bit tongue-in-cheek, but it’s there for a purpose: we simply don’t have the capacity to deal with every request we get, and we need Bruce…
AI, APAC, Apps, Cloud Security, Compliance, Cybersecurity, Exploits, Global Security News, malware, Network Security, Risk Management
Optimize security operations through an AWS Security Hub POC
April 27, 2026: This post was first published in September 2025 when the enhanced AWS Security Hub was in public preview. It has since been updated to reflect the general availability of Security Hub. This revision also provides a more detailed, step-by-step framework for planning your POC. AWS Security Hub prioritizes your critical security issues…
AI, APAC, Cybersecurity, Endpoint, Exploits, Global Security News, Network Security, Risk Management
The ‘manager of agents’: How AI evolves the SOC analyst role
Every SOC analyst has heard it by now: “AI is coming for your job”. I hear it in conversations with SOC teams. I see it in the hesitation during evaluations. And increasingly, I feel it as a source of resistance — especially from the very people AI is supposed to help. But the reality is…