When cyber incidents come to mind, the focus often falls on attacks from outside—hackers breaching networks, or malware slipping through defences. However, risks from within an organisation can be just as damaging, and often harder to uncover. These threats arise from people with legitimate access—employees, contractors, or business partners—who can

Quantum computing will create limitless potential for society, solving problems in minutes that would take conventional supercomputers thousands of years to crack. But that power could also be used by malicious actors to break the encryption protecting financial transactions, government communications and other sensitive data. If we are to safeguard

Artificial intelligence (AI) has reshaped industries and redefines customer service. AI has also been weaponized in more insidious ways—most notably, by ransomware operators. A new and deeply-troubling trend has emerged: cybercriminal groups now use AI-powered chatbots, virtual assistants, and automated live chats to conduct negotiations with their victims. By mimicking

When people picture cyberattacks, they often imagine a lone hacker smashing the system like a burglar breaking down a door. In reality, however, modern breaches tend to unfold more like a series of minor blunders piling up. A single forgotten software update, a misconfigured account or a tool left unchecked

There is constant pressure on security leaders to decide which controls deserve the most attention and budget. A new study offers evidence on which measures are most closely linked to lower breach risk and how organizations should think about deploying them. Marsh McLennan’s Cyber Risk Intelligence Center (CRIC) analyzed thousands