Generative AI is threaded through almost every enterprise workflow today — from daily tasks like asking ChatGPT a question, to powerful copilots embedded in SaaS like Microsoft 365, Salesforce, or Slack. That convenience creates a new attack surface: malicious prompt injections (MPIs). MPIs trick AI systems into ignoring rules, running hidden code, or leaking data. […]
Data security news & resources

Are identity tools failing SOC operations?
Data security breaches aren’t slowing down. From exposed AWS buckets to credential-stuffing attacks on SaaS platforms, compromised identities remain the weakest link in enterprise security. According to Verizon’s 2025 Data Breach Investigations Report, stolen credentials were the initial entry point in 22% of breaches, and a staggering 88% of basic web application attacks involved the […]

How to mitigate the security risks of frontline SaaS apps
A digital transformation is taking place on the frontline. Employees who were once underserved by enterprise technology are now gaining access to modern SaaS tools that drive efficiency, collaboration, and real-time decision-making. For organizations, it’s a powerful opportunity to unlock greater productivity at scale. But it also introduces new risks. Each new endpoint expands the […]

Allianz Life data breach impacts 1.4 million customers
Allianz Life has announced it suffered a data breach that impacted the personal data of the majority of its 1.4 million customers. The company, a major provider of life insurance and annuities, is part of Allianz SE—one of the world’s largest financial services groups, serving more than 128 million people globally. Here’s everything we know […]

Qantas data breach exposes six million customers
Qantas is warning millions of customers that their personal data could be exposed after a cyber attack hit a third-party platform used by one of its offshore contact centers. Here’s everything we know about the breach so far. How did the breach happen? Qantas says it detected unusual activity on the affected third-party system earlier […]

Human risk management: The key to a culture of cybersecurity
All employees make mistakes—whether that’s a typo in an email, sending a document to the wrong person or missing a deadline. Some mistakes, though, have greater consequences than others, especially when it comes to cybersecurity and compliance. Sending a sensitive document to the wrong recipient, for example, can be an immediate data breach and compliance […]

Runtime data security vs DSPM
In the alphabet soup of cloud security tools, few acronyms have risen faster—or with more promise—than data security posture management (DSPM). Touted as a cure-all for sensitive data exposure, DSPM promises deep visibility into cloud environments. But as many CISOs have found, visibility alone isn’t enough. DSPM might show you where the problems are—but it […]

Is your customer service team a data leak waiting to happen?
On May 15, the crypto giant, Coinbase, announced that malicious actors had gotten away with the personal information of tens of thousands of customers—an incident set to cost the company nearly $400 million. But the scale of this breach isn’t the major story. It’s how the cybercriminals did it—bribing outsourced customer service agents to steal […]

Texas Department of Transportation breach shows passwords aren’t enough
The Texas Department of Transportation (TxDOT) has disclosed a data breach after a threat actor accessed and downloaded 300,000 crash records from its database. The breach took place on May 12, 2025, and stemmed from a login using compromised credentials—yet another example of how a single weak link in identity security can put huge amounts […]

Coinbase insider data breach: What we know so far
Crypto exchange giant Coinbase has confirmed a significant data breach involving bribed support contractors, compromised customer information, and a $20 million extortion demand. The attack is expected to cost the company up to $400 million in remediation and reimbursements—and it didn’t involve a single line of malware. Here’s everything we know so far. How did […]

Security training is failing. Here’s what really works.
Companies are pouring more money than ever into training their people to spot and stop cyber threats. But despite the investment, one stubborn issue won’t go away: humans are still behind the vast majority of data breaches. Even with security awareness training becoming the norm, the numbers show they’re having little impact—60% of breaches still […]