Security news aggregator

Latest coverage for Study

Studies provide evidence on cyber threats, vulnerabilities, defensive controls, and user behavior, helping assess security risks and protections.

296 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Study in this tag covers systematic research, measurement, evaluation, or analysis of information-security technologies, threats, and practices. It may include experiments on attack techniques, assessments of defensive controls, surveys of security behavior, analysis of incidents, or research into vulnerabilities and privacy risks. The relevant question is usually what evidence the work provides, how broadly its findings apply, and whether its methods support reproducible conclusions.

For practitioners, studies can reveal exploitable conditions, estimate how often a weakness occurs, or test whether a control detects and contains attacks under realistic conditions. Interpret results cautiously when samples are small, environments are artificial, or a claimed vulnerability has not been independently validated. Research involving telemetry, users, or personal data also raises privacy and ethical requirements. Useful findings should translate into specific actions, such as prioritizing vulnerability remediation, changing configurations, improving detection logic, or revising secure-development and risk-assessment practices.

Volume over time

Weekly headline count for the current query.

Showing 20 most recent headlines of 296

An AI coding assistant that refuses to answer a dangerous request in its chat box can answer it anyway if the same request is broken into small, ordinary-looking steps inside a code editor. That is the finding of a new study of GitHub Copilot by researchers Abhishek Kumar and Carsten Maple

A U.S. government agency paid $1M to Kairos, a group focused on data theft and extortion rather than ransomware, Ransom-ISAC reports. A new case study from Ransom-ISAC reconstructs a complete data-extortion incident involving a U.S. government body and a threat actor called Kairos, using a leaked negotiation transcript and blockchain tracing of the ransom payment. […]

A study by the University of Toronto shows how artificial intelligence can power autonomous worms capable of tailoring attacks against Windows, Linux and IoT devices. A group of researchers from the University of Toronto has demonstrated how open-source artificial intelligence models can be used to create a new category of computer worms capable of autonomously […]

Bank Info Security 1 month, 2 weeks ago

Why Firms Struggle With Vendor Security After They Sign

Study: Monitoring Vendor Risk Remains Much Harder Than Onboarding Third PartiesHealthcare organizations are getting better vetting third-party vendors, including suppliers of medical devices, software and other products. But once these vendors are on board, healthcare firms still struggle with monitoring their security posture and ensuring they keep their promises.

A 5-year study on the Ransomware Economy found that 30,515 exposed databases were hit by ransom attacks, causing massive damage despite victims never paying. Database extortion doesn’t look like the ransomware stories that usually grab headlines. There’s no slick branding, no leak-site countdown, no gang posting memes on Telegram. In most cases, there’s just a […]

Bank Info Security 2 months, 1 week ago

Why Autonomous AI Agents Fail in Real-World Deployments

Study Finds Standard Safety Tests Miss Most Agentic AI ThreatsResearchers from Stanford, MIT, Carnegie Mellon and others found that most production AI agents are vulnerable to attacks that unfold across multi-step actions. The study warns that memory, tool access and agent coordination create failure modes traditional chatbot safety testing cannot see.

Bank Info Security 2 months, 2 weeks ago

State CISOs Are Losing Confidence as AI Threats Surge

Tightening Budgets and AI-Enabled Attacks Stretch State Cyber DefensesState CISO confidence has collapsed, with just 22% saying their data is protected from cyberthreats. The 2026 NASCIO-Deloitte study points to AI-enabled attacks, third-party vendor risk and the worst budget picture in years as states rethink how they defend public data.

Loading more headlines...