Earlier this month, the White House announced funding cuts at the Homeland Security Department\u2019s cyberdefense unit.
The post Cyber Experts Say DHS Funding Cuts Have Stalled Security appeared first on PYMNTS.com.
\n", "content_text": "Earlier this month, the White House announced funding cuts at the Homeland Security Department\u2019s cyberdefense unit.\r\n\t\r\n\t\t\r\n\t\r\n\r\n\r\n\t\nNow, cybersecurity experts and lawmakers are warning that those cuts and earlier staff departures have hindered the ability of the Cybersecurity and Infrastructure Security Agency (CISA) to work with the private sector and opened the door to threats.\nDuring a House subcommittee hearing on Wednesday (April 29), lawmakers warned that CISA is facing a crisis of capacity, Federal News Network reported.\nRep. Delia Ramirez (D-Ill.) revealed that the agency has lost approximately one-third of its total workforce over the past year The Stakeholder Engagement Division, which manages private-sector coordination, suffered the biggest hit, losing 96 of its 189 staff members since early last year.\n\u201cIt\u2019s ironic to talk about modernizing DHS\u2026 when Trump has been on a vindictive campaign to dismantle CISA,\u201d Ramirez stated, highlighting a fiscal 2027 budget request that would further slash the Stakeholder Engagement Division to just 62 positions.\nThe impact of these cuts is being felt acutely across the industry, the report added. Scott Algeier, executive director of the IT-ISAC, testified that the dissolution of the Critical Infrastructure Partnership Advisory Council (CIPAC) last year removed the essential legal framework for strategic engagement.\n\u201cAs a result, most of the work with CISA is at a standstill,\u201d Algeier warned, noting that adversaries continue to attack with impunity while a promised replacement for the council has failed to materialize.\nPYMNTS reported earlier this month that the White House’s budget for 2027 calls for a $707 million cut to CISA, bringing its funding to $2.2 billion.\nThe Office of Management and Budget (OMB) said in the budget that the new allocation reverts CISA to its original mission, removes programs that duplicate others at the state and federal levels, and does away with programs focused on so-called misinformation and propaganda.\n\u201cThe Budget refocuses CISA on its core mission \u2014 Federal network defense and enhancing the security and resilience of critical infrastructure \u2014 while eliminating weaponization and waste,\u201d OMB said in the budget. \u201cCISA was more focused on censorship than on protecting the Nation\u2019s critical systems, and put them at risk due to poor management and inefficiency, as well as a focus on self-promotion.\u201d\nPYMNTS reported last year that CISA was facing scrutiny amid the cuts being undertaken by the Department of Government Efficiency (DOGE).\n\r\n\r\nThe post Cyber Experts Say DHS Funding Cuts Have Stalled Security appeared first on PYMNTS.com.", "date_published": "2026-04-30T16:18:29-04:00", "date_modified": "2026-04-30T16:18:29-04:00", "authors": [ { "name": "PYMNTS", "url": "https://www.pymnts.com/author/pymnts/", "avatar": "https://secure.gravatar.com/avatar/679fcf5c2ed5358e99e8e23b22e3b5d761e37bdb76fa7b0e13d8ecd9ff01bf88?s=512&d=blank&r=g" } ], "author": { "name": "PYMNTS", "url": "https://www.pymnts.com/author/pymnts/", "avatar": "https://secure.gravatar.com/avatar/679fcf5c2ed5358e99e8e23b22e3b5d761e37bdb76fa7b0e13d8ecd9ff01bf88?s=512&d=blank&r=g" }, "image": "https://www.pymnts.com/wp-content/uploads/2026/04/DHS-cuts-security.png", "tags": [ "Cybersecurity", "Department of Homeland Security", "Government", "national security", "News", "politics", "PYMNTS News", "Security", "What's Hot" ] }, { "id": "https://www.pymnts.com/?p=3696620", "url": "https://www.pymnts.com/cybersecurity/2026/openai-will-arm-critical-cyber-defenders-with-frontier-model/", "title": "OpenAI Will Arm Critical Cyber Defenders With Frontier Model", "content_html": "OpenAI\u00a0will start rolling out a frontier cybersecurity model called GPT-5.5-Cyber to \u201ccritical cyber defenders\u201d within days, CEO\u00a0Sam Altman\u00a0said\u00a0in\u00a0a Wednesday (April 29)\u00a0post\u00a0on X.
The post OpenAI Will Arm Critical Cyber Defenders With Frontier Model appeared first on PYMNTS.com.
\n", "content_text": "OpenAI\u00a0will start rolling out a frontier cybersecurity model called GPT-5.5-Cyber to \u201ccritical cyber defenders\u201d within days, CEO\u00a0Sam Altman\u00a0said\u00a0in\u00a0a Wednesday (April 29)\u00a0post\u00a0on X.\r\n\t\r\n\t\t\r\n\t\r\n\r\n\r\n\t\n\u201cWe will work with the entire ecosystem and the government to figure out trusted access for cyber; we want to rapidly help secure companies/infrastructure,\u201d Altman wrote.\nOpenAI announced\u00a0in\u00a0a Wednesday\u00a0blog post\u00a0that the company released an\u00a0Action Plan\u00a0that describes how it will build the infrastructure needed to support cybersecurity defenders and will provide trusted actors across society with access to defensive tools.\nThe company\u2019s plan includes democratizing cyber defense, coordinating across government and industry, strengthening security around frontier cyber capabilities, preserving visibility and control in deployment, and enabling users to protect themselves.\nOpenAI said in its post that as AI reshapes cybersecurity, criminals are deploying the same capabilities as defenders.\n\u201cBuilding resilience in the Intelligence Age will require both working through democratic institutions and processes, and broadening access to the technologies that can help protect communities, critical systems and our national security,\u201d OpenAI said in the post.\nIt was reported April 21 that OpenAI has begun briefing state and federal government officials on the capabilities of its\u00a0cybersecurity\u00a0product. The AI startup held an event in Washington, D.C., where it demonstrated a new model to officials from throughout the government and from various national security agencies.\nThe company is taking a dual-track approach, making one version of its model more widely available with robust safeguards, and another more permissive version for cyber defenders through its Trusted Access program. This tactic will let more companies, like local water utilities, access advanced AI tools.\nOpenAI said April 14 that it plans to expand access to the Trusted Access for Cyber (TAC) program, which it introduced in February, to give cybersecurity professionals access to frontier models.\nThe company said it is scaling up TAC to thousands of verified individuals and hundreds of teams responsible for defending critical software.\n\u201cIn preparation for increasingly more capable models from OpenAI over the next few months, we are fine-tuning our models specifically to enable defensive cybersecurity use cases, starting today with a variant of GPT-5.4 trained to be cyber-permissive: GPT-5.4-Cyber,\u201d OpenAI said in an April 14\u00a0blog post.\n\r\n\r\nThe post OpenAI Will Arm Critical Cyber Defenders With Frontier Model appeared first on PYMNTS.com.", "date_published": "2026-04-30T16:08:42-04:00", "date_modified": "2026-04-30T16:08:42-04:00", "authors": [ { "name": "PYMNTS", "url": "https://www.pymnts.com/author/pymnts/", "avatar": "https://secure.gravatar.com/avatar/679fcf5c2ed5358e99e8e23b22e3b5d761e37bdb76fa7b0e13d8ecd9ff01bf88?s=512&d=blank&r=g" } ], "author": { "name": "PYMNTS", "url": "https://www.pymnts.com/author/pymnts/", "avatar": "https://secure.gravatar.com/avatar/679fcf5c2ed5358e99e8e23b22e3b5d761e37bdb76fa7b0e13d8ecd9ff01bf88?s=512&d=blank&r=g" }, "image": "https://www.pymnts.com/wp-content/uploads/2025/05/OpenAI-5.jpg", "tags": [ "Cybersecurity", "Fraud Prevention", "News", "OpenAI", "PYMNTS News", "What's Hot" ] }, { "id": "https://www.pymnts.com/?p=3689872", "url": "https://www.pymnts.com/cybersecurity/2026/smart-firms-treat-vendor-risk-like-their-own/", "title": "Smart Firms Treat Vendor Risk Like Their Own", "content_html": "Artificial intelligence has opened up Pandora\u2019s box for enterprise cybersecurity. And what it found was that the modern enterprise is no longer a closed system. It is a web of dependencies, stitched together by software vendors, cloud providers, and outsourced engineering partners.
The post Smart Firms Treat Vendor Risk Like Their Own appeared first on PYMNTS.com.
\n", "content_text": "Artificial intelligence has opened up Pandora\u2019s box for enterprise cybersecurity. And what it found was that the modern enterprise is no longer a closed system. It is a web of dependencies, stitched together by software vendors, cloud providers, and outsourced engineering partners.\r\n\t\r\n\t\t\r\n\t\r\n\r\n\r\n\t\nIncreasingly, this means the weakest link isn\u2019t one that\u2019s found inside the organization at all but instead resides across the long tail of third-party software that keeps operations running. That may be old news to some in the C-suite, but what\u2019s new news is how fast latent vulnerabilities across a corporate supply chain can be surfaced, thanks in large part to emerging frontier AI models, like both Anthropic\u2019s Mythos and OpenAI\u2019s GPT 5.4 cyber model, and their user-agnostic capabilities for cyber exploitation.\nIn response to today\u2019s dynamic and evolving threat landscape, Microsoft\u00a0recently (April 14) patched over 167 existing security vulnerabilities in its\u00a0Windows\u00a0operating systems and related software with new updates.\nVulnerabilities that might once have lingered undetected for months are now surfaced in days, sometimes hours. In parallel, attackers are becoming more opportunistic, scanning not just primary targets but their extended ecosystems for entry points.\nBut in a world of interconnected systems, patch discipline is only as strong as the weakest vendor.\nSee also: What AI-Driven Attack Chains Mean for CFOs and CISOs\u00a0\nRace to Protect Soft Spots AI Unearths\nCybersecurity has always been described as a moving target. What distinguishes the current moment is how quickly yesterday\u2019s best practices are becoming today\u2019s minimum requirements. Patch discipline, vendor audits, and incident response planning are no longer differentiators; they are table stakes.\nPYMNTS covered Monday (April 27) how hackers have reportedly begun impersonating\u00a0Microsoft Teams\u00a0help desk workers to dupe victims into installing data-stealing malware. These attacks are part of a larger trend PYMNTS covered last week, one that sees\u00a0hackers\u00a0\u201clogging in\u201d\u00a0rather than breaking in.\nThe result is a paradox: even as internal defenses improve, overall risk can increase because the attack surface has expanded beyond direct control. A vendor\u2019s delayed patch cycle or misconfigured system can become the enterprise\u2019s problem overnight.\nFor CFOs, this introduces a category of risk that is both material and difficult to quantify. Unlike traditional operational risks, third-party vulnerabilities are often opaque, buried in contractual relationships that may have been primarily negotiated for cost efficiency or speed rather than cyber resilience.\nThe\u00a0PYMNTS Intelligence\u00a0report \u201cVendors and Vulnerabilities: The Cyberattack Squeeze on Mid-Market Firms\u201d found that hackers are increasingly\u00a0going after\u00a0middle market firms, which\u00a0depend\u00a0on third-party cloud providers, software-as-a-service platforms, managed service and logistics providers, which can leave them vulnerable to attack.\nAs a result, the predictable rhythms of enterprise IT maintenance are increasingly misaligned with the pace of modern threats. Vulnerabilities disclosed today can be weaponized tomorrow. If a vendor takes weeks to deploy a fix, that lag becomes a window of exposure not just for them, but for every client connected to their systems.\nSee also: FBI Warns: Internal Risk May Outpace Cyber Threats\u00a0\nNew Cybersecurity Table Stakes\nThird-party risk is no longer a niche compliance concern. It is becoming the frontline of defense.\nAs cybersecurity becomes more intertwined with enterprise value, the CFO\u2019s role is expanding. This does not mean becoming a technical expert. It does mean asking sharper questions. How quickly do our critical vendors patch known vulnerabilities? What visibility do we have into their security practices? How are we prioritizing investments in vendor risk management relative to other initiatives?\nData, in this environment, is becoming critical to powering real-time visibility. CFOs can embrace strategies such as automated scanning, continuous monitoring, and predictive analytics to provide a more dynamic view of a partner\u2019s security posture.\n\u201cThe lagging organizations treat the data as a storage problem while the leading organizations actually treat it as a decisioning system,\u201d Max Spivakovsky, senior director of global payments risk management at\u00a0Galileo,\u00a0told PYMNTS in an interview posted this month for the \u201cWhat\u2019s Next in Payments\u201d series.\nSee also:\u00a0Cybersecurity\u2019s Hottest New Job Is Negotiating With Hackers\nBut perhaps the most profound shift is a conceptual one. Third-party risk management is moving from a periodic, compliance-driven exercise to a continuous process. Annual audits and questionnaires are no longer sufficient in a landscape where vulnerabilities can emerge and evolve rapidly.\nAfter all, AI isn\u2019t the only vulnerability high-value enterprise firms and institutions are facing. In other cybersecurity news, PYMNTS wrote earlier about the way\u00a0Quantum Day\u00a0\u2014 the moment when commercially available quantum computers can crack widely used cryptographic systems \u2014 has ceased being a distant hypothetical.\n\u201cAs a result of the shrinking strategic horizon, what was once a theoretical, deep-tech risk is instead now being operationalized into present-day procurement decisions, product roadmaps and compliance mandates,\u201d that report said.\n\r\n\r\nThe post Smart Firms Treat Vendor Risk Like Their Own appeared first on PYMNTS.com.", "date_published": "2026-04-28T19:42:59-04:00", "date_modified": "2026-04-29T22:53:45-04:00", "authors": [ { "name": "PYMNTS", "url": "https://www.pymnts.com/author/pymnts/", "avatar": "https://secure.gravatar.com/avatar/679fcf5c2ed5358e99e8e23b22e3b5d761e37bdb76fa7b0e13d8ecd9ff01bf88?s=512&d=blank&r=g" } ], "author": { "name": "PYMNTS", "url": "https://www.pymnts.com/author/pymnts/", "avatar": "https://secure.gravatar.com/avatar/679fcf5c2ed5358e99e8e23b22e3b5d761e37bdb76fa7b0e13d8ecd9ff01bf88?s=512&d=blank&r=g" }, "image": "https://www.pymnts.com/wp-content/uploads/2026/04/third-party-cyber-risk1.jpg", "tags": [ "B2B", "B2B Payments", "Cyber Risk", "Cyberfraud", "Mythos", "News", "PYMNTS News", "vendors", "Cybersecurity" ] }, { "id": "https://www.pymnts.com/?p=3676593", "url": "https://www.pymnts.com/cybersecurity/2026/citizens-bank-customers-targeted-in-third-party-data-breach/", "title": "Citizens Bank Customers Targeted in Third-Party Data Breach", "content_html": "Two U.S. banks say they are investigating data breaches targeting their customers\u2019 information.
The post Citizens Bank Customers Targeted in Third-Party Data Breach appeared first on PYMNTS.com.
\n", "content_text": "Two U.S. banks say they are investigating data breaches targeting their customers\u2019 information.\r\n\t\r\n\t\t\r\n\t\r\n\r\n\r\n\t\n\u201cWe have been managing an incident involving data extracted from a third party vendor,\u201d\u00a0Citizens Bank\u00a0said in a\u00a0statement\u00a0Tuesday (April 21).\n\u201cFor Citizens, most of this was masked test data, although a limited set of information for a small number of customers was involved.\u201d\nThe bank said there is no evidence of unauthorized access to its network, and operations would continue as usual, with enhanced monitoring in place.\nMeanwhile, a\u00a0report\u00a0from the website Cyber News says that Texas-based lender\u00a0Frost Bank\u00a0had learned from one of its vendors that hackers had gained access to its system, which may have compromised Frost customer data.\n\u201cWe have engaged external cybersecurity experts to assist in our investigation, and early findings indicate that the incident may be related to recent claims made by cybercriminals,\u201d a spokesperson for the bank told Cyber News, adding there is \u201cno evidence of unauthorized access to the Frost network.\u201d\nThat report notes that both banks had appeared on the dark web site of the Everest\u00a0ransomware\u00a0gang, with attackers giving the lenders six days before releasing the stolen data.\n\u201cRansomware has become a structured, global industry,\u201d PYMNTS wrote earlier this month. \u201cOrganized cybercriminal groups now operate with business-like efficiency. Attacks are no longer limited to encrypting files; they often involve ‘double extortion, where attackers threaten to leak stolen data if payment is not made.\u201d\nIt has led to the rise of the\u00a0ransomware negotiator, people whose skills lie not so much in technical expertise and more about human interaction, albeit via virtual channels. Negotiators need to quickly assess the attacker\u2019s credibility, figure out whether stolen data will actually be released and consider how flexible the ransom demand might be.\nThe emergence of ransomware negotiators, PYMNTS added, is a sign of a broader shift in how organizations view cyber risk.\n\u201cIt is no longer solely a technical problem; it is a business risk that requires strategic management,\u201d the report continued. \u201cIn this sense, negotiators function as a form of corporate diplomat, engaging with adversaries to protect organizational interests.\u201d\nMeanwhile, research by PYMNTS Intelligence has found that\u00a0third-party vulnerabilities\u00a0are at the heart of many contemporary cyberattacks.\nFindings from PYMNTS Intelligence in the August edition of the 2025 Certainty Project report,\u00a0\u201cVendors and Vulnerabilities: The Cyberattack Squeeze on Mid-Market Firms,\u201d\u00a0show that attackers often compromise a vendor first, then exploit the trust relationship to infiltrate their target firm.\nThe research found that 38% of invoice fraud cases and 43% of phishing attacks originated with compromised vendors.\n\r\n\r\nThe post Citizens Bank Customers Targeted in Third-Party Data Breach appeared first on PYMNTS.com.", "date_published": "2026-04-23T12:21:01-04:00", "date_modified": "2026-04-23T12:21:01-04:00", "authors": [ { "name": "PYMNTS", "url": "https://www.pymnts.com/author/pymnts/", "avatar": "https://secure.gravatar.com/avatar/679fcf5c2ed5358e99e8e23b22e3b5d761e37bdb76fa7b0e13d8ecd9ff01bf88?s=512&d=blank&r=g" } ], "author": { "name": "PYMNTS", "url": "https://www.pymnts.com/author/pymnts/", "avatar": "https://secure.gravatar.com/avatar/679fcf5c2ed5358e99e8e23b22e3b5d761e37bdb76fa7b0e13d8ecd9ff01bf88?s=512&d=blank&r=g" }, "image": "https://www.pymnts.com/wp-content/uploads/2024/08/cybersecurity-data-breach-fraud.jpg", "tags": [ "banking", "Citizens Bank", "Data Breach", "Frost Bank", "News", "PYMNTS News", "What's Hot", "Cybersecurity" ] }, { "id": "https://www.pymnts.com/?p=3666444", "url": "https://www.pymnts.com/cybersecurity/2026/anthropics-mythos-leads-global-bank-regulators-to-call-for-increased-vigilance/", "title": "Anthropic\u2019s Mythos Leads Global Bank Regulators to Call For Increased Vigilance", "content_html": "Financial regulators continue to voice unease about potential cyberthreats from Anthropic\u2019s Mythos artificial intelligence (AI) model.
The post Anthropic\u2019s Mythos Leads Global Bank Regulators to Call For Increased Vigilance appeared first on PYMNTS.com.
\n", "content_text": "Financial regulators continue to voice unease about potential cyberthreats from Anthropic\u2019s Mythos artificial intelligence (AI) model.\r\n\t\r\n\t\t\r\n\t\r\n\r\n\r\n\t\nThe latest concerns come from the Asia-Pacific region, Reuters reported Monday (April 20), where regulators said they were tracking the development and potential implications of Mythos.\nAnthropic said earlier this month that Mythos had uncovered thousands of high-severity vulnerabilities, including flaws in major operating systems and web browsers. Initially, the startup limited access to about 40 companies, including Amazon, Apple and J.P. Morgan Chase, so they can experiment with the model and address weaknesses in their systems.\nAs Reuters noted, the model\u2019s capabilities for high-level coding could grant it a potentially unprecedented ability to spot cybersecurity vulnerabilities.\nA spokesperson for the Australian Securities and Investments Commission (ASIC) told Reuters that it was closely monitoring the use of Mythos along with other regulators to determine possible implications for the Australian market.\n\u201cASIC engages closely with other regulators, government agencies and the financial sector to understand and respond to changing technologies,\u201d the spokesperson said.\nThe commission added that it expects financial services licensees to \u201cbe on the front foot\u201d to protect customers and clients.\nThe Australian Prudential Regulation Authority (APRA), which regulates the country\u2019s banks, said it would \u201ccontinue to assess the implications of these technological advancements to ensure the ongoing safety and resilience of the financial system.\u201d\nMeanwhile, South Korea\u2019s Financial Supervisory Service (FSS) said it met with information security officials from financial companies last week to discuss Mythos-related risks.\nElsewhere in Asia, Singapore\u2019s central bank, the Monetary Authority of Singapore (MAS), said advances in AI could accelerate the discovery and exploitation of software vulnerabilities in information technology systems.\n\u201cFinancial institutions need to redouble efforts to strengthen their security defences, proactively identify and close vulnerabilities, and raise vigilance on cyber hygiene, including timely security patching,\u201d it said.\nMAS added that it was coordinating with the Cyber Security Agency of Singapore to protect critical infrastructure operators.\nThese statements follow similar warnings in Europe, Great Britain and the U.S., where the Treasury Department has sought access to Mythos.\nAs PYMNTS wrote last week, statements such as these show the \u201csplit-screen reality\u201d around Anthropic in the wake of Mythos\u2019 release.\n\u201cThe company is gaining traction fast in the enterprise market even as regulators and banks scramble to understand the risks that come with more powerful AI tools,\u201d that report said.\n\r\n\r\nThe post Anthropic\u2019s Mythos Leads Global Bank Regulators to Call For Increased Vigilance appeared first on PYMNTS.com.", "date_published": "2026-04-20T13:21:29-04:00", "date_modified": "2026-04-20T13:21:29-04:00", "authors": [ { "name": "PYMNTS", "url": "https://www.pymnts.com/author/pymnts/", "avatar": "https://secure.gravatar.com/avatar/679fcf5c2ed5358e99e8e23b22e3b5d761e37bdb76fa7b0e13d8ecd9ff01bf88?s=512&d=blank&r=g" } ], "author": { "name": "PYMNTS", "url": "https://www.pymnts.com/author/pymnts/", "avatar": "https://secure.gravatar.com/avatar/679fcf5c2ed5358e99e8e23b22e3b5d761e37bdb76fa7b0e13d8ecd9ff01bf88?s=512&d=blank&r=g" }, "image": "https://www.pymnts.com/wp-content/uploads/2026/04/Claude-Mythos-AI-zero-day-1.jpg", "tags": [ "Anthropic", "banking", "Cybersecurity", "Mythos", "News", "PYMNTS News", "What's Hot" ] }, { "id": "https://www.pymnts.com/?p=3666373", "url": "https://www.pymnts.com/cybersecurity/2026/the-cyber-insecurity-list-why-hackers-are-logging-in-not-breaking-in/", "title": "The Cyber Insecurity List: Why Hackers Are Logging in, Not Breaking In", "content_html": "Cybercriminals ranging from state actors to industrialized ransomware syndicates are converging on the same strategic truth: the shortest path into a target is often through the digital relationships that help the target function.
The post The Cyber Insecurity List: Why Hackers Are Logging in, Not Breaking In appeared first on PYMNTS.com.
\n", "content_text": "Cybercriminals ranging from state actors to industrialized ransomware syndicates are converging on the same strategic truth: the shortest path into a target is often through the digital relationships that help the target function.\r\n\t\r\n\t\t\r\n\t\r\n\r\n\r\n\t\nThe center of gravity in enterprise cybersecurity is no longer the corporate laptop or even the data center. It is the software-as-a-service (SaaS) layer that sits between employees and the systems that matter most. These vulnerabilities, spanning identity systems, cloud middleware, telecom providers, open-source packages, AI vendors and SaaS connectors, are no longer side channels. They are the main terrain.\nThat shift is especially visible in the most consequential criminal operations from just the first four months of 2026, which have produced a density of cyber incidents that, in an earlier era of the internet, would each have dominated the global business agenda on their own.\nConsider the run to date: a reported 10-petabyte breach of a Chinese state supercomputing center; an attack on Stryker that disrupted operations across 79 countries; a claimed 375-terabyte compromise at Lockheed Martin; the exposure of the FBI director\u2019s personal inbox; a supply-chain intrusion that hit the Axios npm package; a Cisco source-code theft; an Oracle legacy-cloud compromise still generating fallout; a breach at Mercor, a crucial AI data vendor to OpenAI, Anthropic, and Meta; and a sprawling Salesforce-centered extortion wave linked to the combined capabilities of several hacking groups. And that\u2019s just scratching the surface.\nTaken together, these are not just breaches. They are signals. And the signal is clear: the architecture of digital risk has fundamentally changed.\nSee also: What AI-Driven Attack Chains Mean for CFOs and CISOs\nThe Collapse of the Perimeter\nFor much of its operational history, enterprise cybersecurity strategies have been anchored in a relatively stable assumption that organizations could meaningfully define and defend a perimeter. Firewalls, network segmentation and endpoint protection were all designed around this core idea that there was an \u201cinside\u201d worth protecting and an \u201coutside\u201d to keep at bay.\nBut the modern enterprise is a distributed system composed of SaaS platforms, cloud providers, APIs, contractors and open-source dependencies. Identity, not infrastructure, has become the primary control plane. In such an environment, a single compromised credential or third-party vendor can function as a master key, bypassing traditional defenses entirely.\nThe\u00a0PYMNTS Intelligence\u00a0report \u201cVendors and Vulnerabilities: The Cyberattack Squeeze on Mid-Market Firms\u201d found that hackers are increasingly\u00a0going after\u00a0middle-market firms, which\u00a0depend\u00a0on third-party cloud providers, software-as-a-service platforms, managed service and logistics providers, which can leave them vulnerable to attack.\nOrganizations no longer control the full extent of their own attack surface. They inherit risk from every partner, platform, and dependency they rely on. And that inherited risk is often opaque, difficult to quantify, and nearly impossible to fully mitigate.\nThe weak point is often not a core platform but an integration, a support workflow, a contractor system or a developer package maintained far upstream.\nConsider the nature of modern digital infrastructure. A single SaaS provider may serve thousands of companies. A compromised code repository can be cloned and redistributed instantly. A breached identity system can grant access across multiple environments simultaneously. Data, once exfiltrated, can be replicated infinitely at near-zero cost.\nSee also: Cybersecurity\u2019s Hottest New Job Is Negotiating With Hackers\nThe Industrialization of Cyber Adversaries\nCompounding these structural shifts is the increasing sophistication and coordination of hackers. Groups like ShinyHunters, Scattered Spider, and LAPSUS$ are not operating as isolated entities. They are part of an evolving ecosystem of cyber adversaries that share tools, techniques and, increasingly, objectives.\nThe convergence of dissolved perimeters, global blast radii, industrialized adversaries, and continuous exposure is reshaping the cyber landscape in fundamental ways. It is compressing timelines, amplifying impacts and challenging long-held assumptions about what it means to be secure.\nIf the last hundred days have revealed anything, it is that the pace of change in cybersecurity is accelerating. The next hundred days are unlikely to be any less consequential.\nAfter all, while few of the year\u2019s headline incidents to-date can be cleanly reduced to \u201cAI attacks,\u201d it is equally difficult to overlook the parallel surge in AI-enabled offensive capability. Anthropic\u2019s Claude Mythos Preview, for example, has\u00a0reportedly\u00a0demonstrated the ability to autonomously discover and exploit vulnerabilities across major operating systems and web browsers, including decades-old bugs in widely trusted systems.\nIn other cybersecurity news, PYMNTS wrote earlier about the way\u00a0Quantum Day\u00a0\u2014 the moment when commercially available quantum computers can crack widely used cryptographic systems \u2014 has ceased being a distant hypothetical.\n\u201cAs a result of the shrinking strategic horizon, what was once a theoretical, deep-tech risk is instead now being operationalized into present-day procurement decisions, product roadmaps and compliance mandates,\u201d that report said.\n\r\n\r\nThe post The Cyber Insecurity List: Why Hackers Are Logging in, Not Breaking In appeared first on PYMNTS.com.", "date_published": "2026-04-20T11:24:15-04:00", "date_modified": "2026-04-20T11:24:15-04:00", "authors": [ { "name": "PYMNTS", "url": "https://www.pymnts.com/author/pymnts/", "avatar": "https://secure.gravatar.com/avatar/679fcf5c2ed5358e99e8e23b22e3b5d761e37bdb76fa7b0e13d8ecd9ff01bf88?s=512&d=blank&r=g" } ], "author": { "name": "PYMNTS", "url": "https://www.pymnts.com/author/pymnts/", "avatar": "https://secure.gravatar.com/avatar/679fcf5c2ed5358e99e8e23b22e3b5d761e37bdb76fa7b0e13d8ecd9ff01bf88?s=512&d=blank&r=g" }, "image": "https://www.pymnts.com/wp-content/uploads/2024/08/cyberattacks-hackers-cybersecurity.jpg", "tags": [ "cyberattacks", "Cybersecurity", "Hackers", "News", "PYMNTS News", "SaaS", "software" ] }, { "id": "https://www.pymnts.com/?p=3665147", "url": "https://www.pymnts.com/cybersecurity/2026/banks-up-defenses-as-ai-drives-76percent-of-cyberattacks/", "title": "Banks Firm Up Defenses as AI Drives 76% of Cyberattacks", "content_html": "Banks are reportedly increasing their efforts to defend themselves against cyberattacks amid new technological breakthroughs.
The post Banks Firm Up Defenses as AI Drives 76% of Cyberattacks appeared first on PYMNTS.com.
\n", "content_text": "Banks are reportedly increasing their efforts to defend themselves against cyberattacks amid new technological breakthroughs.\r\n\t\r\n\t\t\r\n\t\r\n\r\n\r\n\t\nAs the Financial Times (FT) reported Monday (April 20), banks including\u00a0JPMorgan Chase,\u00a0Lloyds\u00a0and\u00a0Santander\u00a0are taking steps to protect their systems against these threats.\n\u201cMore is changing now and faster than we have seen in a long time, the time to find and exploit vulnerabilities is drastically decreasing,\u201d\u00a0Patrick Opet, chief information security officer at JPMorgan, told the FT.\nThe report cites the\u00a0IBM\u00a0X-Force 2025 Threat Intelligence Index, which showed that the finance and insurance industries made up 27% of\u00a0cyberattacks\u00a0last year, the second largest share among all sectors.\nAs the FT notes, the role of financial institutions at the core of modern economies has made them an obvious target for cybercriminals who hope to take advantage of both their financial reserves and large stores of customer data.\n\u201cIt is the ability to get paid in a\u00a0ransomware\u00a0scenario [which motivates hackers],\u201d said\u00a0Katherine Kearns, head of proactive cyber services at cyber security consultancy\u00a0S-RM, adding that this has turned financial services firms into attractive targets.\nIt\u2019s why banks are often early adopters of new cybersecurity technology such as multi-factor authentication and increased supply chain safeguards, the FT added.\nStill, experts have begun to caution that rapid AI adoption has provided cybercriminals with new methods of attack. The FT cites research commissioned by financial and risk advisory company Kroll that show 76% of companies have experienced a\u00a0security incident\u00a0involving AI applications or models in the last two years.\nAnd as covered here last week, the\u00a0newest models\u00a0from artificial intelligence giants like\u00a0OpenAI\u00a0and\u00a0Anthropic\u00a0could mark a critical inflection point in the cybersecurity space.\n\u201cAI is\u00a0no longer just a tool\u00a0in the hands of an attacker; it is beginning to replicate aspects of the attacker itself,\u201d that report said.\nFor both finance chiefs and information security executives, the implication is increasingly stark, the report continued, with cyber risk shifting from a targeted phenomenon to something more akin to ambient exposure.\n\u201cOrganizations are not just selected; they are continuously scanned, probed and tested by systems operating at scale,\u201d PYMNTS added.\n\u201cThe median enterprise, the one with uneven patching, over-permissioned accounts, and inconsistent configuration management, is now more accessible to multistep intrusion attempts that can be executed, or at least orchestrated,\u00a0by AI systems.\u201d\n\r\n\r\nThe post Banks Firm Up Defenses as AI Drives 76% of Cyberattacks appeared first on PYMNTS.com.", "date_published": "2026-04-20T08:52:55-04:00", "date_modified": "2026-04-20T21:25:25-04:00", "authors": [ { "name": "PYMNTS", "url": "https://www.pymnts.com/author/pymnts/", "avatar": "https://secure.gravatar.com/avatar/679fcf5c2ed5358e99e8e23b22e3b5d761e37bdb76fa7b0e13d8ecd9ff01bf88?s=512&d=blank&r=g" } ], "author": { "name": "PYMNTS", "url": "https://www.pymnts.com/author/pymnts/", "avatar": "https://secure.gravatar.com/avatar/679fcf5c2ed5358e99e8e23b22e3b5d761e37bdb76fa7b0e13d8ecd9ff01bf88?s=512&d=blank&r=g" }, "image": "https://www.pymnts.com/wp-content/uploads/2024/07/cyberattacks-fraud-cybersecurity.jpg", "tags": [ "banking", "Banks", "cyberattacks", "Cybersecurity", "JPMorgan Chase", "News", "PYMNTS News", "What's Hot" ] }, { "id": "https://www.pymnts.com/?p=3660363", "url": "https://www.pymnts.com/cybersecurity/2026/global-finance-chiefs-call-for-mythos-information-sharing/", "title": "Global Finance Chiefs Call for Mythos Information Sharing", "content_html": "Government officials and bankers outside the United States are concerned that they may not receive the same information-sharing as their American counterparts when it comes to\u00a0Anthropic\u2019s Mythos artificial intelligence (AI) model, Bloomberg\u00a0reported Thursday (April 16).
The post Global Finance Chiefs Call for Mythos Information Sharing appeared first on PYMNTS.com.
\n", "content_text": "Government officials and bankers outside the United States are concerned that they may not receive the same information-sharing as their American counterparts when it comes to\u00a0Anthropic\u2019s Mythos artificial intelligence (AI) model, Bloomberg\u00a0reported Thursday (April 16).\r\n\t\r\n\t\t\r\n\t\r\n\r\n\r\n\t\nIt is not known how much detail Anthropic is sharing about the unreleased AI model with people outside the U.S., according to the report.\nOne American leader of a European bank told Bloomberg that they had been promised a briefing on Mythos.\nCanada\u2019s Finance Minister\u00a0Francois-Philippe Champagne told Bloomberg Wednesday (April 15) that he wants to raise the issue of Mythos with his counterparts and that: \u201cWe have a common interest to ensure the resiliency of our financial system.\u201d\nTwo unnamed sources told Bloomberg that at a Wednesday meeting of\u00a0Group of Seven (G7) finance chiefs, officials discussed the need for an international institutional framework for the governance of AI, though the next steps are unclear.\nSeveral European officials said they are encouraging their U.S. peers to share information, per the report.\nSweden\u2019s Finance Minister\u00a0Elisabeth Svantesson\u00a0told Bloomberg that AI will be a topic at an \u201cearly-warning meeting\u201d that is bringing together center bankers and ministers Thursday.\nEuropean Central Bank\u00a0President\u00a0Christine Lagarde\u00a0told Bloomberg Television Tuesday (April 14), speaking of Mythos: \u201cIf it falls in the wrong hands, it could be really bad.\u201d\nIt was reported April 7 that Anthropic unveiled a program called Project Glasswing that will allow select partners to gain early access to \u201cClaude Mythos Preview\u201d so that they can identify\u00a0vulnerabilities\u00a0and strengthen systems before threats can be exploited.\nWhen announcing the initiative, the company said it has also been in discussions with U.S. government officials about the AI model and its cyber capabilities.\n\u201cWe are hopeful the Project Glasswing can seed a larger effort across industry and the private sector, with all parties helping to address the biggest questions around the impact of powerful models on security,\u201d Anthropic said in the announcement.\nIt was reported Thursday that Anthropic is ready to expand Project Glasswing by beginning to offer Mythos to British banks so that they can test the\u00a0AI model ahead of its release.\n\r\n\r\nThe post Global Finance Chiefs Call for Mythos Information Sharing appeared first on PYMNTS.com.", "date_published": "2026-04-16T20:05:05-04:00", "date_modified": "2026-04-16T20:05:05-04:00", "authors": [ { "name": "PYMNTS", "url": "https://www.pymnts.com/author/pymnts/", "avatar": "https://secure.gravatar.com/avatar/679fcf5c2ed5358e99e8e23b22e3b5d761e37bdb76fa7b0e13d8ecd9ff01bf88?s=512&d=blank&r=g" } ], "author": { "name": "PYMNTS", "url": "https://www.pymnts.com/author/pymnts/", "avatar": "https://secure.gravatar.com/avatar/679fcf5c2ed5358e99e8e23b22e3b5d761e37bdb76fa7b0e13d8ecd9ff01bf88?s=512&d=blank&r=g" }, "image": "https://www.pymnts.com/wp-content/uploads/2026/04/Anthropic-Claude-Mythos-banks.jpg", "tags": [ "Anthropic", "banking", "Mythos", "News", "PYMNTS News", "What's Hot", "Cybersecurity" ] }, { "id": "https://www.pymnts.com/?p=3656040", "url": "https://www.pymnts.com/cybersecurity/2026/anthropic-and-openai-just-rewrote-the-cybersecurity-playbook/", "title": "Faster AI Hacks Spark OpenAI-Anthropic Rift", "content_html": "The debate about what artificial intelligence (AI) can do is over. This week, Anthropic and OpenAI each answered the question. The answers landed very differently.
The post Faster AI Hacks Spark OpenAI-Anthropic Rift appeared first on PYMNTS.com.
\n", "content_text": "The debate about what artificial intelligence (AI) can do is over. This week, Anthropic and OpenAI each answered the question. The answers landed very differently.\r\n\t\r\n\t\t\r\n\t\r\n\r\n\r\n\t\nAnthropic introduced Claude Mythos last week through Project Glasswing, a restricted program capped at roughly 40 organizations, including Amazon, Apple, Microsoft and JPMorgan Chase.\nOpenAI followed on Tuesday (April 14) with GPT-5.4-Cyber, deploying its system to thousands of verified defenders through its Trusted Access for Cyber program. Both models can find and exploit software vulnerabilities at a scale no human team can match. What divides them is a fundamental disagreement about what to do with that power.\nA Model Built to Work Without Supervision\nAnthropic\u2019s Mythos doesn\u2019t assist security teams. It works independently. Given a target and a prompt asking it to find a vulnerability, the model reads code, forms hypotheses, tests them against a running environment and produces a complete exploit without further human input.\nAnthropic confirmed that these capabilities weren\u2019t explicitly trained into the model. They emerged as a downstream consequence of general improvements in code, reasoning and autonomy. The same improvements that make the model more effective at patching vulnerabilities also make it more effective at exploiting them.\nMythos was able to find serious security weaknesses that had been hiding in widely used software for years. Some of these flaws had gone unnoticed for over a decade, despite being reviewed many times by experts and existing tools. What stands out is that the AI model found them on its own after a simple prompt, without any ongoing human help.\nVentureBeat noted that Anthropic engineers with no formal security training asked Mythos to find remote code execution vulnerabilities overnight and woke up to a complete working exploit by morning.\nOn a standardized security test built around real vulnerabilities in Mozilla Firefox, Mythos successfully turned known weaknesses into working exploits 181 times, compared to just two successful attempts by the earlier model. That\u2019s a dramatic leap in its ability to both find and act on software flaws. According to Anthropic, that gap drove Anthropic\u2019s decision to keep the model out of general circulation.\nReuters found that the model\u2019s coding ability has given it a potentially unprecedented capacity to identify vulnerabilities and devise ways to exploit them, with the timeline for finding and fixing flaws collapsing from months to seconds.\nPYMNTS reported that Project Glasswing\u2019s partners include cybersecurity firms and infrastructure players, giving them a head start to rewrite insecure legacy code before criminals can act.\nWhere OpenAI\u2019s Design Differs\nGPT-5.4-Cyber is built around a different premise. Rather than autonomous operation, it\u2019s designed to remove the friction that security professionals hit when using standard AI tools.\nAxios reported that OpenAI designed the model after some cyber partners said earlier GPT models sometimes refused dual-use security queries outright. The model lets analysts examine compiled software for weaknesses without access to the underlying source code, work that previously required specialized researchers.\nIt\u2019s a bet on a different theory of control. SiliconAngle noted that OpenAI shifted away from restricting what models can do and toward verifying who gets access to the most sensitive capabilities. The Trusted Access for Cyber program launched in February alongside a $10 million cybersecurity grant program and now carries tiered verification levels, with higher tiers unlocking more capable tools.\nThe Hacker News detailed that OpenAI expanded access to thousands of authenticated individual defenders and hundreds of teams responsible for securing critical software. Its Codex Security product contributed to fixes on more than 3,000 critical and high-severity vulnerabilities since launch.\nAI Arms Race\nThe two positions reflect a strategic disagreement. Anthropic concluded Mythos was too capable to distribute widely, regardless of who was asking. OpenAI concluded that wider access to properly verified defenders produces better outcomes than scarcity.\nFinancial institutions face a real test. Reuters found that banks are particularly exposed because they run technology stacks spanning both new and decades-old systems, house undiscovered vulnerabilities and are closely interconnected.\nCostin Raiu, co-founder of cybersecurity firm TLPBLACK, told Reuters that a model like Mythos would have \u201ca field day\u201d finding exploits in certain IBM systems, pointing to legacy technologies powering the financial industry as a prime example.\nFor all PYMNTS AI and digital transformation coverage, subscribe to the daily\u00a0AI and Digital Transformation Newsletters.\n\r\n\r\nThe post Faster AI Hacks Spark OpenAI-Anthropic Rift appeared first on PYMNTS.com.", "date_published": "2026-04-15T13:49:45-04:00", "date_modified": "2026-04-15T22:33:38-04:00", "authors": [ { "name": "PYMNTS", "url": "https://www.pymnts.com/author/pymnts/", "avatar": "https://secure.gravatar.com/avatar/679fcf5c2ed5358e99e8e23b22e3b5d761e37bdb76fa7b0e13d8ecd9ff01bf88?s=512&d=blank&r=g" } ], "author": { "name": "PYMNTS", "url": "https://www.pymnts.com/author/pymnts/", "avatar": "https://secure.gravatar.com/avatar/679fcf5c2ed5358e99e8e23b22e3b5d761e37bdb76fa7b0e13d8ecd9ff01bf88?s=512&d=blank&r=g" }, "image": "https://www.pymnts.com/wp-content/uploads/2026/04/OpenAI-Anthropic-rift-1.jpg", "tags": [ "Anthropic", "Cybersecurity", "digital transformation", "Featured News", "Hackers", "News", "OpenAI", "PYMNTS News" ] }, { "id": "https://www.pymnts.com/?p=3655701", "url": "https://www.pymnts.com/cybersecurity/2026/fiverr-denies-report-of-data-leak/", "title": "Fiverr Denies Report of Data Leak", "content_html": "Freelance services marketplace Fiverr denied a media report that it leaked sensitive data.
The post Fiverr Denies Report of Data Leak appeared first on PYMNTS.com.
\n", "content_text": "Freelance services marketplace Fiverr denied a media report that it leaked sensitive data.\r\n\t\r\n\t\t\r\n\t\r\n\r\n\r\n\t\nThe company made the denial in a reply to a Cybernews post on X that invited readers to \u201cLearn what sensitive documents are leaked.\u201d\nIn the article to which its post linked, Cybernews reported that an anonymous security researcher with the alias \u201cmorpheuskafka\u201d said in a post on Hacker News that a publicly exposed instance of storage service Cloudinary that likely belonged to Fiverr was leaking Fiverr users\u2019 invoices, tax return forms, driver\u2019s licenses, credentials and other sensitive documents.\nThe Cloudinary platform, which is used for uploading and storing files, has support for signed/expiring URLs, but Fiverr uses public URLs for communication between clients and workers, according to the report.\nCybernews reported that it confirmed that many of the documents had been indexed by Google and that search results from affected web servers returned sensitive information with personally identifiable information (PII). The report added that users on the Hacker News forum shared links to such documents.\n\u201cThis is a major security lapse by Fiverr, due to the links being publicly accessible and indexable, a lot of resources are already being indexed by Google,\u201d Aras Nazarovas, information security researcher at Cybernews, said in the report. \u201cEssentially all files that were shared between service buyers and sellers, including personal identity documents, sensitive contracts, passwords, and API keys shared with contractors, finished and work-in-progress deliverables.\u201d\nWhile individual files are exposed and publicly accessible, listing them requires the account\u2019s API key, so the impact of the incident is limited to what the search engines have indexed, per the report.\nIn its reply to Cybernews’ post on X, Fiverr said: \u201cTo be clear, this is not a cyber incident. Fiverr does not proactively expose users\u2019 private information. The content in question was shared by users in the normal course of marketplace activity to showcase work samples, under agreements and approvals between buyers and sellers. This type of content requires the buyer\u2019s consent before it can be uploaded. As always, any request to remove content is handled promptly by our team.\u201d\nCloudinary did not immediately reply to PYMNTS\u2019 request for comment.\n\r\n\r\nThe post Fiverr Denies Report of Data Leak appeared first on PYMNTS.com.", "date_published": "2026-04-15T12:05:55-04:00", "date_modified": "2026-04-15T12:05:55-04:00", "authors": [ { "name": "PYMNTS", "url": "https://www.pymnts.com/author/pymnts/", "avatar": "https://secure.gravatar.com/avatar/679fcf5c2ed5358e99e8e23b22e3b5d761e37bdb76fa7b0e13d8ecd9ff01bf88?s=512&d=blank&r=g" } ], "author": { "name": "PYMNTS", "url": "https://www.pymnts.com/author/pymnts/", "avatar": "https://secure.gravatar.com/avatar/679fcf5c2ed5358e99e8e23b22e3b5d761e37bdb76fa7b0e13d8ecd9ff01bf88?s=512&d=blank&r=g" }, "image": "https://www.pymnts.com/wp-content/uploads/2023/02/Fiverr.jpg", "tags": [ "Cybersecurity", "Data Breach", "Fiverr", "News", "PYMNTS News", "Security", "What's Hot" ] } ] }