ExpressVPN has launched a private AI platform called ExpressAI, designed to give users access to AI tools without their data being used for profiling or model training. ExpressAI is built around confidential computing enclaves, which process decrypted conversations in a cryptographically isolated environment. According to ExpressVPN, this keeps user messages inaccessible to the host system, … Read more
Formula 1 is well known for its precision engineering pedigree and where races are won and lost by mere milliseconds. While it has long been data driven, attention to security and resilience are deepening. To dig into those themes, I was delighted to be joined by industry peers and the Atlassian Williams F1 team on … Read more
Microsoft has released fixes for 77 security vulnerabilities across its product portfolio in the March 2026 Patch Tuesday update, including a high-severity SQL Server flaw affecting multiple supported versions. It also disclosed that two of the newly published vulnerabilities were publicly known before patches became available, though there is no evidence of active exploitation so … Read more
Bitdefender has identified a malware campaign that uses Google Ads to distribute fake downloads of Anthropic’s Claude AI coding tool, with developers among the main targets. The activity centres on sponsored search results that appear when users search for terms such as “Claude code” and related developer tools. Attackers buy ads that mimic legitimate software … Read more
Appdome has launched Threat-Memory, a feature that stores threat history inside protected iOS and Android apps and assigns a severity score that updates over time. The product targets mobile fraud and account takeover attempts that recur across multiple sessions or app installs. It records prior suspicious activity on the device and makes it available to … Read more
DoubleVerify has issued a fraud alert about a mobile scam in which criminals hijack dormant Android developer accounts and use them to publish fraudulent gaming apps on Google Play. The company said the pattern differs from earlier app store scams that relied on newly created developer accounts. Those accounts often attract heavier scrutiny from app … Read more
Token Security Labs has reported that employees are actively using the open-source AI assistant Clawdbot, also known as Moltbot, in 22% of its customer organisations. Clawdbot is a personal AI assistant that runs on a user’s own Mac or Linux device. The project’s creator is Peter Steinberger. Users can connect the assistant to messaging and … Read more
Rapid7 has launched a managed detection and response service that integrates signals from Microsoft Defender and links them with Rapid7’s security operations tooling and analysts. The service, called Rapid7 MDR for Microsoft, targets organisations that run Microsoft as a core provider for productivity and security. Rapid7 said the service uses bi-directional integrations with Microsoft Defender … Read more
Cobalt has listed its Microsoft Teams integration on Microsoft Marketplace, giving customers another route to deploy the company’s penetration testing collaboration tools inside Teams. The integration sits within the Cobalt Offensive Security Platform. It adds a two-way connection between Cobalt’s penetration testers and customer teams via Microsoft Teams channels. Cobalt said the integration links penetration … Read more
Microsoft remained the most imitated brand in phishing attacks during the fourth quarter of 2025, according to data from Check Point Research, which tracked brand impersonation across phishing attempts globally. The research unit said Microsoft accounted for 22% of all detected brand phishing attempts in the quarter. Google followed with 13% and Amazon with 9%. … Read more