Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Digital payments in India have expanded exponentially, and UPI alone is anticipated to register over 130 billion transactions by the end of 2025. This explosive growth goes beyond convenience, meaning that millions of people in India are fundamentally changing how they pay for things. UPI currently accounts for about 80% of retail payments in India and facilitates over 13.5 billion transactions per month, with year-on-year growth of a massive 35%.

The global zero trust security market was valued at USD 19.2 billion in 2024 and is expected to grow at a CAGR of over 17.4% between 2025 and 2034, driven by rising cybersecurity threats. This explosive growth is a direct reflection of the fundamental change in how organizations think about security.

As enterprises scale their infrastructure across on-premises, hybrid and cloud environments, traditional Identity and Access Management (IAM) tools are struggling to keep up. Legacy Privileged Access Management (PAM) platforms were built to support static infrastructures and were not designed for today’s multi-cloud environments. They have been shown to increase complexity, create gaps in security coverage and cause significant budget strain.

AI coding assistants are evolving quickly. But are the latest models any better at writing secure code? Our October 2025 analysis brings fresh data on how newer large language models (LLMs) stack up against their predecessors, and the results reveal both progress and persistent gaps. This update builds on our July 2025 GenAI Code Security Report, which tested over 100 LLMs across four major programming languages.

The EU’s Digital Operational Resilience Act (DORA) has just turned a year old. This regulation represented a fundamental shift in how the financial sector manages ICT risk, moving beyond traditional compliance to demand continuous, demonstrable digital operational resilience. A year on, the focus has changed. Organizations can no longer just avoid cyber incidents. They need to prove they can withstand, respond to, and recover from disruptions quickly and effectively.

Phishing continues to be the most common way attackers gain initial access. If you want to prevent phishing in your organisation, it starts with understanding how these campaigns suceed and why they continue to bypass traditional controls. Drawing on insights from our recent webinar Red Team Insights: What We’ve Learned from Breaching the Best, this article explores the tactics attackers rely on and the steps security teams can take to strengthen their defences.

This blog post provides a dive into HTTP/3’s evolution for security engineers, an overview of our research journey, and what led us to develop the open-source tool QuicDraw, which can be used for fuzzing and racing HTTP/3 applications. QuicDraw implements “Quic-Fin-Sync” our implementation of the last-byte-sync with the single packet attack on HTTP/3. We conclude by evaluating QuicDraw’s performance against a real-world target and comparing its results to other tools.

Cybersecurity never stands still. Every login, session, and connection shifts the balance between freedom and control. Effective access management today isn’t about restriction—it’s about enabling trust at the speed of innovation. Modern enterprises achieve this by evolving their controls to be seamless, adaptive, and invisible to the user.

Egnyte is excited to announce a new collaboration with Microsoft, integrating Egnyte’s data governance and secure collaboration expertise with Microsoft Agent 365 for AI agents. This collaboration is designed to transform how organizations empower their employees, enhancing productivity and decision-making through secure, governed AI. The enterprise landscape is rapidly evolving.

The widening attack surface signals a critical risk, and your supply chain is the prime target. Attackers exploit vulnerabilities that were inserted long before the system was onboarded. This enables them to infiltrate data or disrupt systems at any stage, making supply chain attacks a direct and growing risk. A third-party breach compromises your vendor, but a supply chain attack targets you, which is why organizations need to make supply chain cybersecurity a business priority.