Patching stories

Sasol slashes Java licensing costs 92% by standardising 150+ critical applications on Azul, securing systems tied to $14 billion turnover.

Codific warns power grids face repeat cyberattack patterns and urges utilities to bolster resilience to outages and cascading disruption.

Targa Telematics moves core systems to Equinix data centres in Milan and Frankfurt to bolster data sovereignty, resilience and growth.

Datadog warns 87% of organisations run software with exploitable flaws as ageing code, fast releases and automation amplify DevSecOps risk.

CIQ unveils RLC Pro, a paid Rocky Linux subscription promising long-term support, FIPS-ready security and vendor-backed bug fixes.

Splashtop has integrated its Autonomous Endpoint Management with CrowdStrike Falcon, unifying Windows endpoint status for IT and security teams.

Security debt hits 82% of organisations as legacy flaws linger over a year, with third-party code driving most critical vulnerabilities.

AI-fuelled ransomware, rapid cloud intrusions and identity abuse are transforming cyber risk, slashing response times for defenders.

Tenable warns cloud and AI adoption is creating a widening 'zero‑margin' security gap as exposure grows faster than defenders can respond.

Barracuda warns that unpatched firewalls and weak accounts drove 90% of 2025 ransomware attacks, as threats spread in mere hours.

UK's cyber agency warns ageing infrastructure and SMEs face rising attack risk, urging urgent resilience upgrades and stronger regulation.

UK urges small firms to 'lock the door' on cyber crime as attacks cost businesses GBP £14.7 billion a year and basic defences lag.

Most ransomware-hit firms now refuse to pay, as Arctic Wolf reports an 11-fold surge in data-only extortion and booming remote access abuse.

Ransomware hits record 7,458 named victims in 2025 as 124 gangs crowd dark web leak sites and new “supergroup” alliances emerge.

Cyber attacks on industrial systems in 2025 shifted from quiet spying to coordinated operations aiming to disrupt critical infrastructure.

Data-only extortion soars 11-fold as attackers 'log in instead of break in', abusing remote access tools for faster, stealthier raids.

Arctic Wolf says attackers are actively exploiting a critical BeyondTrust vulnerability in self-hosted remote access systems.

Most households leave router admin passwords unchanged, prompting insurer Everywhen to issue a 10‑step guide to secure home Wi‑Fi.

A newly uncovered SSHStalker botnet uses old-school IRC and legacy Linux exploits to hijack outdated corporate and cloud hosts at scale.

Microsoft rolls out fixes for 55 Windows flaws, including six exploited zero-days hitting Shell, MSHTML, Word and key desktop services.