Dilki Rathnayake

When the Iran conflict escalated the way it did, most businesses had no playbook for it. The disruption didn’t stay in the region. It showed up in energy supplies, financial systems, hospitals, and communication networks, touching organisations that had simply been going about their day. No warning, no preparation, just a sudden wave of uncertainty about what was happening and what it meant for them. That lack of readiness tends to get lost in conversations about cyber warfare, and it’s exactly what we wanted to address. James Blake is VP of Global Cyber Resiliency Strategy at Cohesity. He has handled…

Threat actors aren’t just using AI to write better phishing emails anymore; they’re building malware that thinks for itself. Google’s Threat Intelligence Group (GTIG) has identified a new phase in cyber operations where attackers are embedding large language models (LLMs) directly into their malware. The finding is a shift from AI as a productivity booster to AI as an active, adaptive weapon. Malware That Rewrites Itself In what Google calls the first example of “just-in-time AI,” GTIG discovered malware families like PROMPTFLUX and PROMPTSTEAL that use AI during execution to generate new code, hide their tracks, and even change behavior…

We’re back with another expert interview! This time, we’re joined by Matt Warner, CEO and co-founder of Blumira, to talk about how businesses can stay ahead of cyber threats during the summer months and why this quieter season might be the best time to strengthen their security defenses. It’s the holiday season, and attacks often spike during this time. So, what does the threat landscape look like right now, and what should businesses be watching for? Yes, it is one of the big patterns we see, that things slow down in the summer. Everyone starts going on holiday, focus shifts…

The introduction of the UK’s Online Safety Act has sparked a lot of conversation and confusion. Both users and businesses are still trying to make sense of what it really means and how to navigate it. Professor George Loukas, Professor of Cyber Security (Human-centric and Cyber-physical Security) at the University of Greenwich, is here to discuss some of the challenges and to explore how we might approach the Act more thoughtfully moving forward. Since the Act took effect, we’ve seen strong public reactions and a spike in VPN usage. Beyond these obvious responses, what does this say about public engagement,…

Various threat actors and organizations are expected to undergo significant changes. Deep and Dark Web (DDW) marketplaces will likely be influenced and governed by law enforcement operations and geopolitical factors, while ransomware, digital extortion, and social engineering will continue to pose serious threats to organizations. These were some of the findings of ZeroFox’s 2025 Key Forecasts Report, which added that generative AI (GenAI) will be a key tool that malicious actors will exploit to enhance the efficiency and effectiveness of their attacks. Daniel Curtis, Manager of Global Intelligence at ZeroFox, says, “The threat from LLMs, deepfake technology, and other…

Small and medium-sized businesses are highly vulnerable to Business Email Compromise (BEC) attacks. Threat actors are evolving, exploiting human error and trust while leveraging automation tools and AI. To shed light on this evolving threat, Information Security Buzz spoke with David Langlands, Todyl’s Chief Security Officer, to discuss the notorious Söze Syndicate, its global impact, and what steps businesses can take to protect themselves. 1. How significant is the threat foreign actors pose using U.S.-based ISPs to facilitate Business Email Compromise (BEC) scams? It’s a significant threat, and we’ve seen threat actors shift towards this direction. Our observations over the past…

The software industry is full of surprises. From development to user experience, it`s a vast avenue of innovations, problem-solving, and security hurdles, driving to create a better and reliable digital landscape for everyone. We spoke with Paul Davis, Field CISO at JFrog, on some interesting topics such as Generative AI, preparing for software outages, and what could be the next Y2K. Dive into this insightful discussion to learn more! What lessons from the Y2K incident remain relevant to today’s cybersecurity challenges? The Y2K crisis was a pivotal moment because we had noticed and knew a problem was coming, and the amount of…

Despite the increase in cloud adoption, there`s a notable decrease in confidence in handling cloud threats in real-time. The skills shortage is also a major challenge with 95% being moderately to extremely concerned and 76% being directly impacted. These were two of the findings of Fortinet’s latest “2025 State of Cloud Security Report,” produced by Cybersecurity Insiders. The report highlights trends and challenges organizations face in the cloud security landscape. Based on insights from over 800 cybersecurity professionals, it also serves as a guide on strengthening organizations’ cloud security posture while adopting innovation in their cloud services. Vincent Hwang, Vice…

At Information Security Buzz, we deliver the latest cybersecurity news and insights, engaging with various companies to understand their goals, objectives, and contributions to advancing cybersecurity. In this interview, we spoke with Kamal Shah, Co-founder and CEO of Prophet Security, to explore the company’s mission and discuss how their AI-driven SOC Analyst addresses the evolving landscape of cybersecurity threats. 1. Tell me about Prophet Security and what inspired your team to build an AI SOC Analyst, and what exactly does it do within a security operations center? The number one customer feedback we got at my last two companies was…

With the rise of sophisticated cyber threats and the growing complexity of the digital landscape, entities are in a desperate battle to stay ahead of potential risks. Information security is no longer just an IT issue but a critical component of business strategy and governance. To shed light on the current state of cybersecurity and effective communication strategies in this field, Information Security Buzz recently spoke with Gary Hibberd, the ‘Professor of Communicating Cyber’ at ConsultantsLikeUs. Gary shares his expertise on the evolving challenges and the importance of clear communication in navigating cybersecurity threats. Can you share your journey into…