Defenders fall behind, as AI rewrites the rules of a data breach

Thursday, May 21, 2026 at 05:13 PM UTC·Source: Graham Cluley

Updated: Thursday, May 21, 2026 at 06:00 PM UTC

Executive Summary

For almost 20 years, stolen credentials have been the most common route for attackers into organizations, according to the Verizon Data Breach Investigations Report (DBIR). But that's no longer the case. Read more in my article on the Fortra blog.

Analysis

Source Attribution

Originally published by Graham Cluley on May 21, 2026.

Related Threats

CRITICALRansomware

7 tabletop exercise mistakes that sabotage incident response

Discussion-based, low-stress simulations during which IT, legal, and other key leadership stakeholders walk through theoretical scenarios to test their preparedness for cyber incidents is a popular and highly useful tool. Yet unless tabletop training is properly handled, the results can be misleading and potentially destructive. When your organization’s incident response training consistently fail

10h agoCSO Online

HIGHRansomware

Bombay High Court Issues Injunction Prohibiting Hackers From Publishing Allegedly Hacked HDFC Investor Data

The Bombay High Court granted interim relief to HDFC AMC after a ransomware group called “Morpheus” allegedly stole over 680 GB of sensitive company and investor data. The court barred unidentified hackers from publishing or sharing the information, warning that any leak could lead to identity theft, financial fraud and irreparable harm. The case will... Source

2d agoDataBreaches.net

HIGHRansomware

Bombay High Court Issues Injunction Prohibiting Hackers From Publishing Allegedly Hacked HDFC Investor Data (1)

2d agoDataBreaches.net