Risk Management

WHO Urges Shift to Structured Health Emergency Drills

by

The World Health Organization (WHO) is urging countries to institutionalize simulation exercises through structured national programs to strengthen health emergency preparedness. The shift affects healthcare systems, supply chains, and public health planning, particularly in Mexico, where resilience gaps and nearshoring opportunities are reshaping investment, manufacturing, and regulatory priorities across the health sector. The World Health … Read more

German Police Rouse System Admins From Sleep Over IT Flaw

by

Police Fanned Out Early Sunday Brandishing an Advisory of a CVSS 10 Vulnerability David Meyer • March 25, 2026     German police apparently on their way to wake up a system administrator at 3 a.m. (Image: Shutterstock) Police officers across Germany roused corporate IT administrators during the early hours of Sunday morning. Their message … Read more

How Formula 1 turns data & cyber security into speed

by

Formula 1 is well known for its precision engineering pedigree and where races are won and lost by mere milliseconds. While it has long been data driven, attention to security and resilience are deepening. To dig into those themes, I was delighted to be joined by industry peers and the Atlassian Williams F1 team on … Read more

CrackArmour flaws in AppArmour risk Linux root access

by

Qualys researchers have identified nine vulnerabilities in AppArmour that, they say, could let an unprivileged local Linux user gain root access and weaken container isolation on affected systems. Dubbed CrackArmour, the issues relate to how the Linux kernel handles AppArmour security profiles. Qualys characterised the underlying pattern as a “confused deputy” problem, in which a … Read more

Microsoft patches major SQL Server flaw in March update

by

Microsoft has released fixes for 77 security vulnerabilities across its product portfolio in the March 2026 Patch Tuesday update, including a high-severity SQL Server flaw affecting multiple supported versions. It also disclosed that two of the newly published vulnerabilities were publicly known before patches became available, though there is no evidence of active exploitation so … Read more

Appdome unveils Threat-Memory to track repeated attacks

by

Appdome has launched Threat-Memory, a feature that stores threat history inside protected iOS and Android apps and assigns a severity score that updates over time. The product targets mobile fraud and account takeover attempts that recur across multiple sessions or app installs. It records prior suspicious activity on the device and makes it available to … Read more

US Treasury Clearing Mandate: FICC Updates & Preparations | DTCC Infographic

by

Archyde The Fixed Income Clearing Corporation (FICC), a subsidiary of the Depository Trust & Clearing Corporation (DTCC), has submitted proposed rule changes to the Securities and Exchange Commission (SEC) designed to… You can read the full story here: US Treasury Clearing Mandate: FICC Updates & Preparations | DTCC Infographic. Source link

Slow patching leaves SMB endpoints exposed for weeks

by

Acronis reported that small and midsize businesses often install software patches within a week. However, a significant minority of devices remain unpatched for weeks, leaving systems exposed after vulnerabilities become public. Analysis by the Acronis Threat Research Unit, based on telemetry from the second half of 2025, found a global median installation time of 185 … Read more

Android Malware Taps Google Gemini at Runtime

by

Researchers Say PromptSpy Automates Persistence on Infected Devices Pooja Tikekar (@PoojaTikekar) • February 20, 2026     Image: Shutterstock A newly discovered Android malware strain is using Google’s Gemini generative artificial intelligence model to automate part of its persistence mechanism, marking what researchers describe as the second known case of AI-driven mobile malware. See Also: … Read more