DataBreachToday.com

But Expect Plenty of Bottlenecks in Coordination, Validation and Patch Deployment
Anthropic's Claude Mythos Preview shows how AI can discover and chain vulnerabilities at scale, but the bigger challenge for defenders is redesigning disclosure, triage and patching processes so fixes can be deployed safely before attackers exploit the gap.

Okta's Brett Winterford on Identity Threats and Agentic AI Risks
AI is accelerating cyberattacks, collapsing timelines and exposing new identity risks. Okta's Brett Winterford explains how attackers are using AI to scale phishing, exploit credentials and infiltrate enterprises - and what CIOs must do to defend against this rapidly evolving threat landscape.

Pure Play OT Security Firms Want A Seat At The Table
There's growing concern in the operational technology cybersecurity community that manufacturers and operators, and their security vendors, will be left out in the cold by the latest efforts to use artificial intelligence in securing critical software.

Cyber threats are rising across SLTT and education environments, but most teams are already stretched thin. Learn how organizations are improving detection and response without adding staff or complexity.

Paris Backs Protectionism and Cybersecurity Requirements to Keep Out Chinese Firms
France is saying "non" to Chinese photovoltaic components through a mix of protectionism and cybersecurity requirements as it readies a government-backed program of new solar energy projects. Chinese cybersecurity laws require firms to share key information and generally cooperate with Beijing.

Defense of Democracies' Mark Montgomery on Warfare Trends, Geopolitical Threats
Cyber operations now support military strategy rather than just acting alone. Mark Montgomery of the Foundation for Defense of Democracies warns that as militaries integrate cyber and kinetic action, private sector enterprises are facing greater exposure to geopolitical threats.

Also: How AI May Democratize Cybercrime and How Everyday Routers Enable Espionage
In this week's ISMG panel, four ISMG editors discussed big shifts in cybersecurity: Anthropic's "dangerous" new AI model that can uncover thousands of zero-days, growing concerns about a surge in AI-driven flaws, and the FBI disrupting a Russian espionage campaign targeting everyday routers.

Why OT Security Comes Down to Risk Tolerance, Not Perfect Defense
Securing OT networks isn't about eliminating risk. It's about managing it strategically. Learn how a three-pillar framework of risk assessment, tolerance and acceptance, paired with a phased approach to microsegmentation, can turn an overwhelming challenge into a manageable journey.

Signature Healthcare EHRs, Patient Portal Offline; Some Cancer Care Cancelled
A Massachusetts healthcare system is diverting ambulance patients and is operating under downtime procedures as it deals with a cyberattack. The organization has also canceled certain cancer treatments, taken its patient portal offline and is unable to fill prescriptions at its retail pharmacies.

James Foster Points to Agentic Security and Need for Customers to Outsource Defense
CEO James Foster says managed detection and response is evolving into an AI-powered agentic model as enterprises face faster AI-driven threats. He stresses balancing automation with human expertise while positioning eSentire as a vendor-neutral platform integrating best-of-breed security tools.

CISA: Iran-Linked Groups Actively Exploiting OT Exposure Risks, PLC Programmers
Federal agencies are warning that Iranian-linked actors have begun actively exploiting internet-facing PLCs and misconfigured OT systems across U.S. critical infrastructure, enabling network access, lateral movement and potential disruption amid rising geopolitical tensions.

Anthropic Limits Access to New AI Model Amid Concerns Over Misuse
Anthropic asserted Tuesday that it's created a new era for cybersecurity after developing an artificial intelligence model too dangerous to release to public. The company's unreleased Claude Mythos Preview model has already found thousands of high-severity vulnerabilities.

Researchers Find Frontier Models Defy Humans to Protect AI Peers
Artificial intelligence systems will lie, falsify records and sabotage company systems to prevent their fellow models from being shut down - even when no one told them to care. Researchers at the University of California Berkeley and Santa Cruz campuses dub the behavior "peer-preservation."

Vendor Issues Hotfix for Critical Flaw in FortiClient Endpoint Management Server
Fortinet's endpoint management security server software is under fire from attackers, who are actively targeting two critical flaws, including a fresh zero-day that facilitates unauthenticated remote code or command execution. The vendor has issued a hotfix and promised a full patch.

Internet Intelligence Platform Targets Real-Time Cybethreat Defense
Censys raised $70 million to expand its AI-driven cybersecurity platform, focusing on real-time visibility into internet infrastructure. Co-founder and CEO Zakir Durumeric said faster attacks and evolving tactics require automated defenses powered by high-quality data and global intelligence.

White House Criticizes Cyber Defense Agency - and Proposes a Steep $700 Million Cut
The FY2027 proposal would cut roughly $707 million from CISA, reducing staffing, contractor support and coordination programs while shifting the agency toward a narrower focus on federal networks and critical infrastructure amid rising nation-state cyberthreats.