Threat modelling stories

NCC warns that insecure connected farm machinery could let cyber attacks disrupt harvests, cut yields and threaten food supply chains.

Women in cybersecurity demand real visibility and inclusion, warning that lack of female voices skews risk, products and leadership decisions.

Non-consensual deepfake abuse of women is not just online harassment but cybercrime, demanding full threat intelligence and security action.

Codific warns power grids face repeat cyberattack patterns and urges utilities to bolster resilience to outages and cascading disruption.

A rapid surge in OpenClaw AI assistant use has left tens of thousands of exposed systems and a trail of hijacked tools and malicious add-ons.

3DiVi unveils four-layer defence model to harden face authentication against deepfakes and spoofing as remote ID checks surge globally.

CompTIA unveils SecAI+ certification to equip cybersecurity professionals with AI security, risk management and governance skills.

Safer Internet Day highlights how AI is transforming online trust, child protection and digital commerce, amid calls for stricter safeguards.

AI-driven cloud adoption is forcing firms to swap static privacy checklists for continuous, real-time defence of sensitive data flows.

WhatsApp launches Strict Account Settings, a lockdown mode offering tighter privacy and security for journalists and other high‑risk users.

GlobalLogic and Elektrobit are deepening their 15-year alliance to accelerate software-defined vehicles, safety, cyber security and HPC.

Industrial AI and IT/OT convergence are forcing factories to abandon closed networks and adopt hybrid, zero trust cyber security architectures.

LF Energy's audit of the widely used EVerest EV charging stack finds and fixes security flaws, boosting confidence in open source grids.

Practical DevSecOps unveils a hands-on Certified Security Champion course to embed security advocates inside software development teams.

Codific sees 2026 cybersecurity shaped by shadow AI, passwordless logins, tighter regulation and a sharper focus on software supply chains.

MITRE warns that cheap face-swap deepfakes can defeat banks' remote KYC checks, bypassing liveness tools to open fraudulent accounts.

Enterprises brace for a cautious 2026, rolling back risky AI pilots and recasting generative tools as governed, human-supervised teammates.

Practical DevSecOps is offering a Black Friday sale with 15% off all certifications and up to $500 off bundles for hands-on security training.

Practical DevSecOps has certified over 1,000 professionals in its rigorous AI security programme, addressing critical skills gaps in defending against evolving AI threats.

Nearly one-third of CVE entries are unverified, revealing flaws in how organisations assess software security risks and reliance on CVSS scores.