Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

SaaS-only platforms are betting everything on automation. But when the threat landscape demands judgement, data volume alone is not the answer. For years, a certain category of threat intelligence vendor has sold the same idea: feed your data into our platform, let the AI process it, and your security team will have everything they need. It is a compelling proposition, particularly for organisations under pressure to demonstrate coverage without expanding headcount.

Let’s catch up on the more interesting vulnerability disclosures and cyber security news gathered from articles across the web this week. This is what we have been reading about on our coffee break! Are you on the fence with this too? Your hard disk may not be all safe and secure as you think… I think this counts as one of those WTF moments right?

For most of the last decade, the central question in bot management was a binary one: is this traffic malicious? If yes, block it. If no, let it through. That question was the right one to ask when the problem was DDoS traffic, credential stuffing, and inventory-hoarding scalpers. It is no longer the right question for a significant proportion of the non-human traffic now hitting enterprise digital platforms.

When a new vulnerability is announced, the race begins. Security teams jump into action, checking exposure, triaging events, identifying affected systems, and figuring out how quickly they can patch. The clock is ticking and they know it. At the same moment, threat actors are doing their own version of that work. They’re reading the same advisories, watching the same feeds, and asking a much simpler question: Who is still vulnerable?

This Anti-Ransomware Day, it's important to recognize the ever-changing landscape of cyber threats and how organizations can fortify their defenses. The evolution from traditional ransomware to cyber extortion over the last few years reflects a professionalized, decentralized ecosystem. To arm your organization against this danger, understanding the current landscape and implementing robust defense strategies is essential.

A major phishing operation is targeting soccer/football fans ahead of the 2026 FIFA World Cup, which begins in June, according to researchers at Flare. The attackers have set up at least 79 phishing sites impersonating the official FIFA website.

Researchers at Bitdefender warn that Netflix-themed phishing attacks can have far-reaching consequences if users follow poor security practices. While Netflix is generally associated with a user’s personal life, phishing attacks targeting personal accounts can put users’ employers at risk. “Your Netflix account is just the starting point. It’s not the final target,” Bitdefender says. “Most people reuse passwords across multiple platforms.

AI agents are already inside most enterprise environments. They complete tasks, connect to live systems, and make decisions that used to require a human. Gartner projects that 40% of enterprise applications will include task-specific AI agents by the end of 2026, up from less than 5% today. What was an experiment two years ago is now a core part of how work gets done. If your organization is adopting AI agents or planning to, security is not something you can figure out later.

Security no longer works the way it used to. Relying on passwords alone is no longer enough to protect modern systems. Credentials are easily stolen, reused, or compromised, while users are increasingly frustrated with repeated login prompts and complex authentication steps. At the same time, access patterns have changed. Employees work remotely, applications run in the cloud, and users log in from different devices and locations throughout the day.

SaaS sprawl means more credentials, more exposure and more manual work for IT teams. Every cloud service an organization adds is another set of passwords that needs to be created, managed and eventually rotated, and most teams are still doing that by hand. SaaS Configuration gives organizations a scalable way to automate password rotation across any number of Privileged Access Management (PAM) User records in the Keeper Vault, keeping credentials current without the manual overhead.