Threat modelling stories

Women hold under a quarter of cyber roles, but the field is broader, more human and more open to curiosity than many women are told.

Claude Code flaws found by Check Point could let malicious repos run code and grab API keys before developers confirm a project is trusted.

IRONSCALES' Winter 2026 Release debuts three AI agents, outbound encryption and Teams deepfake defences to counter next‑gen phishing.

NCC warns that insecure connected farm machinery could let cyber attacks disrupt harvests, cut yields and threaten food supply chains.

Women in cybersecurity demand real visibility and inclusion, warning that lack of female voices skews risk, products and leadership decisions.

Non-consensual deepfake abuse of women is not just online harassment but cybercrime, demanding full threat intelligence and security action.

Codific warns power grids face repeat cyberattack patterns and urges utilities to bolster resilience to outages and cascading disruption.

A rapid surge in OpenClaw AI assistant use has left tens of thousands of exposed systems and a trail of hijacked tools and malicious add-ons.

3DiVi unveils four-layer defence model to harden face authentication against deepfakes and spoofing as remote ID checks surge globally.

CompTIA unveils SecAI+ certification to equip cybersecurity professionals with AI security, risk management and governance skills.

Safer Internet Day highlights how AI is transforming online trust, child protection and digital commerce, amid calls for stricter safeguards.

AI-driven cloud adoption is forcing firms to swap static privacy checklists for continuous, real-time defence of sensitive data flows.

WhatsApp launches Strict Account Settings, a lockdown mode offering tighter privacy and security for journalists and other high‑risk users.

GlobalLogic and Elektrobit are deepening their 15-year alliance to accelerate software-defined vehicles, safety, cyber security and HPC.

Industrial AI and IT/OT convergence are forcing factories to abandon closed networks and adopt hybrid, zero trust cyber security architectures.

LF Energy's audit of the widely used EVerest EV charging stack finds and fixes security flaws, boosting confidence in open source grids.

Practical DevSecOps unveils a hands-on Certified Security Champion course to embed security advocates inside software development teams.

Codific sees 2026 cybersecurity shaped by shadow AI, passwordless logins, tighter regulation and a sharper focus on software supply chains.

MITRE warns that cheap face-swap deepfakes can defeat banks' remote KYC checks, bypassing liveness tools to open fraudulent accounts.

Enterprises brace for a cautious 2026, rolling back risky AI pilots and recasting generative tools as governed, human-supervised teammates.