Ransomware DataBreachToday.com

Enterprises Seek Multi-Agent Systems to Govern LLM-Generated Code at Scale
As AI-generated code surges, New York-based startup Qodo has raised $70 million in Series B funding to address governance and quality challenges. The company is building multi-agent systems to review code, enforce standards and reduce risk in enterprise software development.

Fallout Continues Over Leaked Claude Source Code Incident
The tension between AI developers and cybersecurity vendors is becoming increasingly apparent as new models show sudden leaps in capability - and AI firm Anthropic, for better or for worse, finds itself at the center of the drama.

AI is accelerating cyberattacks faster than organizations can prioritize them, forcing security leaders to rethink how they define and defend against “emerging threats.” Most modern threats aren’t new, just amplified by AI, says Akamai's Brent Maynard.

Stan Duijf of Dutch National Police on Collaborative Law Enforcement
Global law enforcement agencies are shifting tactics to disrupt ransomware earlier in the attack chain. Stan Duijf of the Dutch National Police describes how collaboration, threat intelligence and cryptocurrency seizures are making cybercrime more costly and less effective for criminals.

UK NCSC's Richard Horne on Strengthening Cyber Defense and Incident Response
Cyber risk is rising as digital dependence grows and threat actors expand. NCSC CEO Richard Horne outlines why leaders must treat cybersecurity as mission-critical, strengthen their resilience, and align defense efforts to counter ransomware, AI-driven threats, and supply chain attacks.

CareCloud: Intruder Accessed Systems for 8 Hours, Still Assessing Extent of Breach
Electronic health records vendor CareCloud has notified the U.S. Securities and Exchange Commission of a cyber incident earlier this month that temporarily disrupted the software and accessed one of its EHR environments. The company is assessing whether patient data was accessed or stolen.

Officials Aim to Head Off Calls for New Cyber Force Using Existing CyberCom Powers
For the private sector, the cyber talent gap is an HR issue. But for the U.S. military, it's a looming strategic crisis, the Pentagon's top cyber official said this week. "We cannot afford to continue this way," said Assistant Secretary of War for Cyber Policy Katherine Sutton.

Experts Cite Prepositioning Risk in Iranian Cyber Operations Amid Escalating War
Warnings from Iranian-linked hacking groups targeting U.S. water systems highlight a growing risk of prepositioned cyber access and rapid attack activation, analysts told ISMG, as federal defenders confront rising geopolitical tensions and operational strain across critical infrastructure sectors.

CEO Danny Brickman on Intent-Based Access and Non-Human Identity Governance
Oasis Security has raised $120 million in a Series B round to expand its identity platform focused on non-human identities and AI agents. CEO Danny Brickman says enterprises need intent-based access controls and automated governance to securely scale agentic adoption.

Menlo Ventures' Rama Sekhar on Securing AI Agents and Non-Human Identities
As AI evolves from assistants to autonomous agents, enterprises face a new attack surface driven by non-human identities. Rama Sekhar, partner at Menlo Ventures, explains why visibility, governance and AI-driven remediation are critical to securing this evolution.

Segura's Joe Carson on Agentic AI, Cyber Resilience and Estonia's Lessons
AI is accelerating both attackers and defenders, transforming cybersecurity into an AI-versus-AI battle. Segura's Joe Carson discusses why organizations must treat agentic AI as a force multiplier, not a replacement, and how to harness it responsibly in a future driven by autonomous agents.

Foundation Capital's Sid Trivedi on the Three Markets AI Labs Can't Easily Enter
AI labs are moving into application security, but three structural barriers define where they won't go, and that's where the next generation of durable security companies will be built, said Sid Trivedi, partner at Foundation Capital.

Netskope's Sanjay Beri on Data Risk, Agent Visibility and Enabling AI Safely
AI adoption has outrun enterprise security, leaving data exposed and controls nonexistent. Sanjay Beri, co-founder and CEO at Netskope, says the answer isn't restriction. It's visibility, context and a culture of enablement.

Car Hacking Village's Ghali on Automotive Security for AI-Driven Mobility Ecosystem
As vehicles evolve into connected, software-defined systems, cybersecurity risks now extend beyond the car itself. Kamel Ghali, vice president at Car Hacking Village, explains why threat modeling, AI safety and ecosystemwide visibility are critical in modern automotive security.

Rain Capital's Lefort on Overcapitalization and Cybersecurity's Barbell Effect
Cybersecurity funding hit all-time highs in 2025, rivaling the 2021 boom, said Sidra Ahmed Lefort, venture partner at Rain Capital. A "barbell effect" has taken hold, with capital concentrating at the earliest and latest stages while squeezing the Series cB and C middle.

Costanoa Ventures' John Cowgill on Moving From Static Analysis to Runtime Defense
Artificial intelligence-generated code is arriving faster than security teams can review it, and the risks are moving from the line level to the system level, says John Cowgill, partner at Costanoa Ventures.

Researcher: If Exploited, Bug Could Crash Hospital Medical Imaging Systems
The Cybersecurity Infrastructure and Security Agency is warning of a high severity in Grassroots DICOM, an open-source library commonly used for medical imaging products, that if exploited could allow an attacker to send a specially crafted file resulting in a denial-of-service situation.

Google's Accelerated PQC Timeline Demands Enterprise Action Now
Google set a public deadline for migrating to post-quantum cryptography, setting a strong signal for IT and security leaders that they too should transition their encryption into more robust algorithms. Enterprises need a migration strategy now before the window closes.

Federal Review Questions Whether Private Insurers Can Absorb Cyber Losses
A Department of the Treasury review of cyber risk under the Terrorism Risk Insurance Program comes amid concern that nation-state attacks and systemic cyber events may overwhelm private insurers, raising the prospect of a federal backstop to protect critical infrastructure and economic stability.

European Commission Publishes Draft Guidance for Cyber Resilience Act
Key implementation deadlines loom for one of Europe's most consequential cybersecurity laws and draft guidance from the European Union may help manufacturers comply - up to a point.