AI promises cost savings, productivity improvements, and better customer experiences, but CIOs need to figure out how to calculate the ROI, McDonald said. “The question then becomes, ‘What am I going to get from this?’” he added. “That investment is not necessarily trivial.” While enterprises look to adopt AI, many software vendors will be flooding the market with AI-based products in the next two years, Lovelock suggested. AI-based email and collaboration tools, content services, and…

When it comes to cloud native application platforms, we’re at an important evolutionary point: will the best practice for platforms be to build or to buy? Should you choose the components you need for a platform and integrate them together, or should you buy a pre-integrated platform? Unless you’re a handful of organizations, the practical answer is that you should buy the platform. Before I get to why, what even is a “cloud native platform”?…

Quishing attacks, a form of phishing that leverages QR codes, have significantly increased, climbing from a mere 0.8% in 2021 to 10.8% in 2024.  The figures come from the latest Egress report, which also suggests a notable decrease in attachment-based payloads, which halved from 72.7% to 35.7% over the same period.  According to the new data published today, impersonation attacks have remained prevalent, with 77% masquerading as well-known brands, notably DocuSign and Microsoft. Social engineering…

The Russian-backed threat actor known as Sandworm has become such a prominent ally of the Kremlin in the Ukraine war that Mandiant has decided to graduate the group into a named Advanced Persistent Threat (APT) group, APT44. In a new report, the Google-owned cybersecurity firm revealed that Sandworm has been responsible for almost all the disruptive and destructive operations against Ukraine over the past decade. Since the outbreak of the war in Ukraine, Sandworm has…

Security researchers have uncovered a new threat actor leveraging fake domains masquerading as authentic IP scanner software sites.  Zscaler ThreatLabz uncovered this sophisticated cyber-threat in March 2024 and described the findings in an advisory published on Wednesday.  The actor registered multiple domains resembling genuine software sites through typosquatting and utilized Google Ads to boost their visibility in search engine results. This strategy aimed to lure unsuspecting victims, primarily IT professionals, into visiting these malicious sites….