Current AI web agents lack reliable defenses against prompt injection attacks and can fulfill attack objectives undetected while users remain unaware of the threat.
Meta suffers multiple security incidents simultaneously — Instagram account hacks, data leaks exposing personal information, and renewed NSO Group activity targeting WhatsApp.
The Cyber Resilience Act requires documented and timely update processes for IoT devices, forcing CISOs to implement systematic changes in software maintenance.
AI-accelerated attacks require a paradigm shift from reactive emergency cybersecurity to preventive health models with continuous system monitoring instead of crisis management.
CVE-2026-35273 in Oracle PeopleSoft was leveraged to extort over 100 organisations; Google identified 68% of targets in the higher education sector with stolen data exceeding 40 GB.
The GreatXML exploit leverages a security vulnerability in Microsoft’s offline scan function to bypass BitLocker and access encrypted drives from recovery mode after a successful Defender offline scan.
Only 5% of CISOs prioritize the “Harvest Now, Decrypt Later” threat despite second-highest concern about quantum computing, while standards for quantum-resistant encryption are available from 2024.
NIS2 and KRITIS impose varying levels of cybersecurity obligations on healthcare facilities depending on whether they are classified as critical infrastructure and their size.
