Insights

The recent cyberattack targeting Canvas, the learning management system used by thousands of schools and universities worldwide, is another stark reminder that the education sector is one of the most attractive targets for cybercriminals. The attack, linked to the ShinyHunters extortion group, reportedly affected institutions across multiple countries and exposed potentially vast amounts of student and staff data.

Legacy Operational Technology (OT) and Industrial Control System (ICS) infrastructure continues to create major security challenges for industrial organisations. Many ageing systems were never designed for today’s connected environments, yet they still support critical operations across manufacturing, utilities, transport and energy.

The cybersecurity skills gap has long been a concern for organisations, and new data suggests the challenge is becoming more acute in 2026.

Every year on the first Thursday of May is World Password Day and it is often a bit depressing for security experts. Despite years of warnings, data breaches and cybersecurity awareness campaigns, many people still rely on weak, predictable and reused passwords.

As environments grow more complex and data volumes increase, traditional PCI DSS assessment methods are under pressure. Artificial intelligence offers a way to scale, automate, and enhance these processes, but it also introduces risks that must be carefully managed. The real challenge is not whether to use AI, but how to apply it without compromising the integrity of compliance.

Operational Technology (OT) environments have evolved rapidly, but many of the assumptions surrounding their security have not.

Industrial organisations have always had exposure points. In the past, these were just physical. Doors, gates, access points into facilities etc. These entry points still exist, but they have been joined by something far more complex and often far less visible. The digital attack surface.

Organisations invest heavily in strengthening their internal networks. Yet despite this, breaches continue to rise. Why? The answer is that attackers are no longer targeting the front door. They are walking in through trusted third parties.

Anthropic’s Claude Mythos Preview has triggered a wave of bold claims about the future AI and its role in cybersecurity. Reports of thousands of vulnerabilities discovered, including issues that have supposedly existed undetected for decades, position the model as a transformative force in both attack and defence. Alongside this, initiatives like Project Glasswing signal an industry effort to get ahead of the risks before they fully materialise.

In today’s digital landscape, organisations are operating across an increasingly complex mix of IT, cloud, SaaS, IoT, and OT environments. Each new asset, user, or connection expands the attack surface, often in ways that are difficult to track and even harder to secure. This growing complexity introduces significant cybersecurity risk, particularly when unknown or unmanaged assets become entry points for attackers. Managed Attack Surface Management (ASM) addresses this challenge directly by providing continuous visibility, prioritised risk reduction, and proactive remediation.

Managed Detection and Response (MDR) is undergoing a fundamental transformation. As threat actors evolve their techniques and leverage artificial intelligence at scale, MDR must shift from a reactive service into a proactive, intelligence-led capability. The traditional model of alert triage and incident response is no longer sufficient on its own. Instead, MDR in 2026 is defined by convergence, automation, and a deeper focus on exposures and attack paths.

For organisations aligning with ISO 27001 or PCI DSS, understanding where penetration testing is mandatory versus expected best practice is critical for both compliance and effective risk management.