CyberSecure Specialist

Opal Security Raises $23 Million for AI-Native Identity Governance

Identity governance startup Opal Security has announced raising $23 million in a new funding round that brings the total investment in the company to $59 million. The fresh round of funding was led by Greylock and Battery Ventures, with additional support from Cambium Capital. Founded in 2020, San Francisco-based Opal has built an AI-native platform that provides organizations with real-time visibility, policy-as-code, and direct control over all identities, including employees, service accounts, and AI agents.…

Read More

Lessons for life: Why children’s data is a long-term identity risk

Kids Online Your child’s first data breach may happen before they’ve even opened a bank account. Here’s how to keep their digital life safe. Phil Muncaster 03 Jun 2026  •  , 6 min. read When we talk about cybersecurity and digital safety in the context of our children, it’s often framed in one of two ways. Either it’s about inappropriate or unsafe content – of the sort that COPPA is meant to regulate in the…

Read More

OWASP Incubator Project Helps Developers Find and Fix Vulnerable Dependencies in Seconds

Including npm packages in software development projects saves time but can introduce unseen but known vulnerabilities. CVE Lite CLI is a lightweight command line security scanner that operates on lockfiles during software development. It focuses on JavaScript and Typescript files and is an OSV-powered dependency scanner supporting npm, pnpm and Yarn. It is an open source tool developed by Sonu Kapoor, now community supported and recently adopted as an OWASP Incubator Project. Kapoor has been…

Read More

Offroad Emerges From Stealth With $7 Million to Tackle Enterprise Identity Risk

Criminals no longer knock at the door; they abuse the keys that companies can no longer control. Offroad seeks to provide that control. New York- and Tel Aviv-based Offroad emerged from stealth with seed funding of $7 million, led by Ibex Investors and Skywell Capital. Offroad helps organizations move from identity visibility to identity resolution – it claims to investigate, govern, remediate, and verify identity risks. The firm uses agentic AI to find and investigate…

Read More

Coralogix Raises $200M at $1.6B Valuation to Scale AI Observability Platform

Coralogix announced on Wednesday that it has raised $200 million in Series F funding for its AI-native observability platform. The company has raised a total of $550 million and told SecurityWeek that the latest funding round (co-led by Advent, CPPIB, and Greenfield) has brought its valuation to $1.6 billion. The new funding will be used for product development, expanding the company’s telemetry data lake architecture, and global growth.  Coralogix offers a full-stack observability platform that…

Read More

Trump Signs Executive Order That Invites Vetting of Top AI Models for National Security Risks

President Donald Trump signed an executive order on oversight of artificial intelligence Tuesday, less than two weeks after postponing a White House ceremony over his concerns that a similar policy could dull America’s technological edge. The order establishes a framework for the federal government to vet the national security risks of the most advanced AI systems for up to a month before their public release. Participation by AI developers would be voluntary, the order says.…

Read More

WP Maps Pro Vulnerability Exploited to Take Over WordPress Sites

Threat actors are exploiting a critical-severity vulnerability in the WP Maps Pro WordPress plugin to take over websites, Defiant warns. WP Maps Pro allows site administrators to embed Google Maps in their installations, customizable with advanced location, markers, and categories. The exploited vulnerability, tracked as CVE-2026-8732 (CVSS score of 9.8), allows unauthenticated threat actors to create new administrative accounts and take over vulnerable sites. WP Maps Pro has been designed to support tooling, which exposes…

Read More

Hackers Used Meta’s AI Support Bot to Seize Instagram Accounts

The Instagram accounts for the Obama White House and the Chief Master Sergeant of the U.S. Space Force were briefly defaced with pro-Iranian images and messages over the weekend, after instructions began circulating on Telegram showing how to trick Meta’s “AI support assistant” bot into resetting account passwords. A screenshot from a video released on Telegram claiming to show how Meta’s AI customer support bot could be tricked into resetting a target’s password. On May…

Read More

This month in security with Tony Anscombe – May 2026 edition

In this roundup, Tony looks at attacks against Polish water treatment facilities, how AI-directed attacks failed in Mexico, and what Google believes is the first AI-generated zero-day exploit 29 May 2026 It’s that time of month when ESET Chief Security Evangelist Tony Anscombe looks back at some of the top cybersecurity stories that made the news over the past 30 or so days and offers insights that the they may hold for your own cyber-defenses.…

Read More

ESET APT Activity Report Q4 2025–Q1 2026

ESET Research Threat Reports An overview of the activities of selected APT groups investigated and analyzed by ESET Research in Q4 2025 and Q1 2026 Jean-Ian Boutin 28 May 2026  •  , 4 min. read ESET APT Activity Report Q4 2025–Q1 2026 summarizes notable activities of selected advanced persistent threat (APT) groups documented by ESET researchers from October 2025 through March 2026. The operations highlighted here are representative of the broader threat landscape we investigated…

Read More