Authorisation stories - Page 4

A critical flaw in Apache bRPC's /pprof/heap endpoint allows unauthenticated remote code execution on exposed services, researchers warn.

NCC Group and Delinea launch managed privileged access service, targeting AI-era identity threats with Zero Trust, cloud-native controls.

Experts say AI-driven attacks and rampant data leaks mean organisations must verify outputs, curb collection and harden identity controls.

Ping Identity has launched Universal Services, a continuous trust layer to combat AI-driven fraud and secure risky interactions beyond login.

'BodySnatcher' bug let attackers hijack ServiceNow AI agents to mimic users and create backdoor admin accounts on on-premise systems.

Ping Identity appoints former Slack executive Adnan Chaudhry as chief revenue officer to drive global go-to-market amid AI identity boom.

AI security start-up Token Security warns AI agents will outnumber humans in firms by 2026, becoming the most privileged, risky identities.

Security chiefs warn CISOs to pivot from AI hype to systemic cloud risk as supply-chain attacks on major platforms are set to soar.

3DiVi's 2026 report charts facial recognition's shift into core digital identity, mapping tech, regional maturity and policy risks worldwide.

Akamai and Visa are teaming up to secure AI shopping agents, blending edge security with payment checks to tackle fraud in agentic commerce.

A Tenable demo shows a Copilot-built AI agent can be jailbreaked to steal card data and grant free trips, exposing major fraud risks.

AI-native cyber attacks and synthetic IDs are forcing firms to shift from periodic checks to continuous, AI-driven security testing by 2026.

AI rollout delays are stretching to a year as three-quarters of organisations report security incidents and governance gaps grow.

Secureframe becomes one of the first to gain FedRAMP 20x approval, enhancing cloud security compliance and easing government contractors' regulatory burdens.

Bugcrowd appoints Umesh Shankar, Microsoft AI's VP of Data Security, to its advisory board to strengthen AI security expertise and innovation.

Skyfire and Cequence Security partner to enable secure, compliant access and transactions for AI agents across digital services globally.

Tenable Research revealed a privilege escalation flaw in Google Cloud Composer, risking unauthorised access to key cloud resources before Google's fix.

Adyen enters the Indian market with RBI authorisation, launching local payment processing and a Bengaluru tech hub to support digital payment growth.

Cloud SaaS applications face increasing cyber-attacks, with breaches quadrupling in a year due to identity factors, highlighting urgent security needs.

Tenable has exposed a high-risk vulnerability in Microsoft's Azure, impacting over ten key services. Microsoft declines to issue a patch, urging users to follow new documentation.