News for today:
- Verified brand identities in email. New research from DigiCert finds that consumers appreciate the presence of verified brand identities in email, and are more likely to engage in pre-transaction behaviors as a consequence. With 86% of consumers saying they feel safer when verified logos appear in their inbox, the findings underscore a growing need for organizations to strengthen their email authentication practices. Doing so not only helps protect shoppers from phishing during the busiest online shopping week of the year, but also preserve brand integrity as AI rapidly increases the volume, frequency, and sophistication of phishing emails. DigiCert
- CrowdStrike and AWS on SIEM and cloud security. CrowdStrike introduced a streamlined deployment model for both Falcon Next-Gen SIEM and Falcon Cloud Security via the AWS Marketplace. The enhanced onboarding experience for Falcon Next-Gen SIEM in AWS Marketplace delivers a single location, guided setup that connects directly to core AWS security services – including AWS CloudTrail, AWS Security Hub, and Amazon GuardDuty. This simplified workflow automatically discovers active data sources and begins ingesting telemetry within minutes, eliminating manual configuration and accelerating time-to-value. By streamlining how customers connect their AWS environments to CrowdStrike, organizations can unify data from endpoints, cloud workloads, and identities with AWS telemetry to deliver comprehensive, cross-domain threat detection and response. CrowdStrike
- IT governance predictions for 2026. Omada Identity says identity is a key concern for 2026, with four related predictions: pay better attention to non-human identities, machine identities lack the natural rightsizing opportunities of human identities, getting non-human identities wrong is very costly, and beware black-box autonomous AI agents. On the second: SaaS scale is what makes this extremely challenging:NHIs are managed ad hoc by different teams like DevOps, IT, and data science without clear security accountability. Nobody owns these identities. The developer who created it left two years ago. The project moved teams three times. When you try to right-size permissions, nobody can tell you what it actually needs versus what it has. A primary obstacle in managing non-human identities is the difficulty in identifying their status accurately due to ambiguous ownership. Digital Journal
- Security landscape predictions for 2026. CyXcel forecasts two major changes in the security landscape in 2026: cyber warfare (via the further weaponization of cyberspace in state conflicts) and greater accessibility of AI-generated malware. On the latter, the prospect of malicious insider activity is of high concern. Insiders, such as employees, contractors or partners who already have legitimate access to systems, become a far greater concern. They may not need specialised knowledge or external support to cause serious damage. A disgruntled employee, someone under financial pressure or even an insider manipulated through social engineering could leverage AI-generated malware to sabotage operations, steal data or cripple critical infrastructure from within. SecurityBrief
- Use AI = learn less. New research suggests that relying on AI summaries results in shallower learning compared to using Google Search, the latter of which requires the individual to correlate and synthesize the information they find. ChatGPT users reported less deep knowledge and a lower sense of personal ownership over the knowledge they gained from their search. Additionally, they thought their search yielded less comprehensive information about the topic. Researchers say learning through web search requires engaging in trial-and-error navigation among result links, as well as interpreting and synthesizing the different pieces of information. This may result in better learning outcomes because encountering friction in learning leads to devoting more cognitive resources to overcoming it. Cybernews