Security Bulletin

AI coding tools promise productivity but deliver security problems, too. As developers embrace "vibe coding," enterprises face mounting risks from insecure code generation that security teams can't keep pace with.

A new analysis by Frances data protection authority, CNIL, estimates that the GDPR has delivered significant cybersecurity benefits across the EU, preventing cyber-related losses of up to 1.4 billion since its 2018 implementation, Cybernews reports.

Computer Weekly reports that SailPoint is expanding its identity security platform with agentic AI features designed to manage and govern the growing use of AI agents within enterprises.

A new report reveals a troubling disparity between European businesses confidence in their fraud defenses and the growing prevalence of identity-related attacks, according to Biometric Update.

A new report by LSEG Risk Intelligence reveals that around 1.25 million children in the U.S. were victims of identity theft between July 2021 and July 2022, resulting in $1 billion in losses, according to Cybernews.

Cybernews reports that despite being confident in identifying phishing emails, 56% of workers and executives across the UK were not able to distinguish such scams from legitimate emails.

Cyberattacks against business leaders have increased from 43% in 2023 to 51% in 2025, following the killing of United Healthcare CEO Brian Thompson, Cybersecurity Dive reports.

Join the Mid-Market and SMB team at Cisco Live US 2025! Discover tailored solutions, product demos, and actionable insights for growing your business. Don't miss the sessions and prizes!

The impact of AI on ransomware, business email compromise, and the critical importance of context in threat detection.

At its core, energy management is about measuring, monitoring, and controlling energy consumption to unlock cost savings, improve operational efficiency, and reduce environmental impact. With over 40… Read more on Cisco Blogs

Foundation AI's second release—Foundation-sec-8b-reasoning is designed to designed to bring enhanced analytical capabilities to complex security workflows.

CISA has added two new vulnerabilities to its  Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2025-32433 Erlang Erlang/OTP SSH Server Missing Authentication for Critical Function Vulnerability CVE-2024...