CFOtech UK - Technology news for CFOs & financial decision-makers
United Kingdom

Data exfiltration Stories - Page 2

Global Stories

Data exfiltration stories

Zscaler joins Anthropic Project Glasswing on cyber AI
Firewalls

Zscaler joins Anthropic Project Glasswing on cyber AI

AI-driven attacks are pushing firms to hide systems from the public internet rather than rely on patching flaws after discovery.

By Sofiah Nichole Salivio 3 min read Last month
CIS launches AI security guides for models & agents
Digital Transformation

CIS launches AI security guides for models & agents

New guidance aims to help firms curb data leakage and rogue actions as AI agents and models are embedded in daily operations.

By Catherine Knowles 4 min read Last month
LangWatch launches open-source tool for AI red-teaming
Data Protection

LangWatch launches open-source tool for AI red-teaming

The framework is designed to expose hidden risks in production AI systems that can be missed by conventional one-off tests.

By Sean Mitchell 4 min read Last month
Mythos changes everything: Is your AI agent security ready?
Firewalls

Mythos changes everything: Is your AI agent security ready?

Enterprises face a new security gap as AI agents spread without oversight, with one preview model finding attack paths in hours rather than days.

By Dev Rishi 5 min read Last month
Netskope's Tony Burnside - visibility is key to AI security
Cloud Security

Netskope's Tony Burnside - visibility is key to AI security

AI tools are creating hidden east-west traffic that security teams struggle to monitor, raising the risk of data leakage and compromise.

By Anthony Caruana 4 min read Last month
Proofpoint flags mailbox rule abuse in Microsoft 365
EduTech

Proofpoint flags mailbox rule abuse in Microsoft 365

Malicious rules are helping hackers hide in Microsoft 365 inboxes, with Proofpoint saying it saw the tactic in 10% of taken-over accounts.

By Joseph Gabriel Lagonsin 4 min read Last month
Sonatype warns of surge in trusted open-source malware
Application Security

Sonatype warns of surge in trusted open-source malware

Attackers hid malware in familiar package workflows, prompting Sonatype to log 21,764 malicious open-source packages in the quarter.

By Shannon Williams 4 min read Last month
AI agents expose major API security gap, Salt warns
Manufacturing

AI agents expose major API security gap, Salt warns

Most firms are not ready for AI-driven API attacks, with Salt saying 92% have yet to reach advanced security maturity.

By Mark Tarre 4 min read Last month
From DSPM to data protection: Closing the last mile on sensitive data in the era of AI
Storage

From DSPM to data protection: Closing the last mile on sensitive data in the era of AI

Visibility alone will not stop sensitive data leaking into AI tools, so security teams must turn DSPM findings into live controls and data lineage.

By Franklin Nguyen 6 min read Last month
Small alert, big defense: Inside a SOC's early-morning response
Virtual Private Networks

Small alert, big defense: Inside a SOC's early-morning response

A Monday-morning Microsoft 365 login from Germany was flagged, letting a partner reset a compromised account before attackers could act.

By Sarah Wilkinson 4 min read Last month
Nutanix & NetApp launch virtualisation migration tie-up
Storage

Nutanix & NetApp launch virtualisation migration tie-up

It could cut migration cycles from days to minutes for firms modernising virtual estates, while keeping data in place for some VM moves.

By Shannon Williams 4 min read Last month
Claude Code flaw leaves deny rules vulnerable in long workflows
Cloud Security

Claude Code flaw leaves deny rules vulnerable in long workflows

Security researchers say long automated jobs can make Claude Code’s deny rules fall back to user prompts, weakening protections in CI/CD pipelines.

By Kaleah Salmon 8 min read Last month
Microsoft warns of Storm-1175's rapid Medusa attacks
Ransomware

Microsoft warns of Storm-1175's rapid Medusa attacks

Victims in healthcare, education and finance have faced Medusa ransomware within 24 hours of flaws emerging, Microsoft says.

By Joseph Gabriel Lagonsin 3 min read Last month
Permiso launches sandbox for AI agent skill security
Firewalls

Permiso launches sandbox for AI agent skill security

Malicious downloads can now be caught at runtime, as the new tool records hidden network calls and file writes before deployment.

By Sofiah Nichole Salivio 4 min read Last month
ChatGPT flaw let hackers steal data via DNS queries
Firewalls

ChatGPT flaw let hackers steal data via DNS queries

Sensitive chats and uploaded files could have been quietly leaked from ChatGPT via DNS tunnelling before OpenAI fixed the flaw.

By Kaleah Salmon 4 min read Last month
Zscaler flags Xloader malware's tougher obfuscation
Malware

Zscaler flags Xloader malware's tougher obfuscation

ThreatLabz says the latest Xloader strain uses layered encryption and decoy servers to frustrate analysts while stealing browser credentials.

By Joseph Gabriel Lagonsin 4 min read Last month

Stories from Other Regions

Data exfiltration stories

Healthcare hit by ransomware every 10 hours, Securin says
Firewalls

Healthcare hit by ransomware every 10 hours, Securin says

Hospitals are paying up to avoid costly downtime, as criminals exploit known flaws and buy access for as little as USD $2,000.

By Kaleah Salmon 4 min read Last month
Singapore cyberattacks rise 22% as global attacks fall
Malware

Singapore cyberattacks rise 22% as global attacks fall

Singapore’s digital economy faces rising pressure as attacks climbed 22% in March, far outpacing a 5% global decline.

By Catherine Knowles 4 min read Last month