Security and AI news from the week beginning December 1st 2025

Last week saw more high-profile breaches, stolen data and AI announcements. Security vendors have also been making announcements as Black Hat Europe approaches next week. As the last show of the year, it’s a last chance to get attention from customers.

Among the security incidents, St Bart’s Hospital in London provided more details about an attack earlier this year by Cl0p. Data was stolen from its Oracle E-Business Suite through a vulnerability. The data contained names and addresses of individuals who had to pay for treatment or services at the hospital over several years.

Cloudflare has had yet another major outage due to a configuration change to the Web Application Firewall’s body parsing logic. The change was meant to address a known vulnerability, but instead it took down several sites for several hours.

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added critical vulnerability CVE-2025-55182 to its KEV catalogue. The addition comes as reports circulate of active exploitation in the wild.

In case you missed it

Thomson Reuters has announced a 5-year partnership with Imperial College London to create the new Frontier AI Research Lab at the University. While the funding provided by Thomson Reuters for this endeavour was not made public, it is clearly substantial. The funding will enable the recruitment of at least 12 PhD students who will work alongside Thomson Reuters’ foundational research scientists and Imperial academics.

At AWS re:Invent, Datadog has announced a new strategic collaboration with the cloud giant and a raft of new products. The company already has over 100 integrations specific to AWS. These sixteen new solutions deepen that relationship. The products span the breadth of AWS services from AI to observability and security. It is the biggest set of new announcements for AWS that Datadog has announced.

Zahra Bahrololoumi, Salesforce UK & Ireland CEO, delivered the keynote address at Salesforce World Tour event at London’s Excel Centre. Bahrololoumi talked about the launch of Agentforce 360, which she described as a new platform that connects customers, employees, operations, and agents in a seamless way.

Salesforce has reported multiple contract successes with Workdry, Simplyhealth, and Nexo for its Agentforce platform. Workdry is utilising Agentforce to enhance operational safety and efficiency across its UK, European, and North American networks.

Research by Gong Labs found that companies that have embedded AI into revenue processes are 65% more likely to increase win rates. The Second Annual State of Revenue AI report examines how AI is impacting revenue organisations. The report found that those teams leveraging AI have generated 77% more revenue per representative. It is no wonder that 96% of respondents believe their teams will be using AI by 2026.

Richard Evans joined WSO2 earlier this year and took over as Country Manager in May. Enterprise Times talked to him back then about his goals and ambitions for WSO2. At Oxygenate UK, we caught up with him again to see how he was doing and where WSO2 is heading.

Datadog has announced the general availability of Bits AI SRE after its soft launch in June at DASH. The release comes after 2,000 customers have tested and used Bits AI SRE in production for almost six months. The results of that testing show that customers have seen troubleshooting times plummet. Customers now report that what used to take hours of manual troubleshooting is now resolved in just minutes.

In Other News

FBI

The Federal Bureau of Investigation (FBI) warns the public about criminals altering photos found on social media or other publicly available sites to use as fake proof of life photos in virtual kidnapping for ransom scams. The criminal actors pose as kidnappers and provide seemingly real photos or videos of victims along with demands for ransom payments.

Intigriti

Intigriti has issued a blog explaining how it uses AI. It says, “At Intigriti, we believe AI is a powerful ally to, not a replacement of, our community of security researchers. We will use AI to empower our researchers to hunt for bugs smarter, faster, and more efficiently, while recognizing the value of human creativity and ingenuity that machines cannot replicate.

“By creating AI-powered tools informed by researcher and customer insights, and built on a foundation of trust and consent, we enable researchers to focus on what matters most: uncovering critical vulnerabilities faster and securing the digital world.”

National Cyber Security Centre

The NCSC has written a blog describing the success of its Share and Defend service. It was developed by experts at NCSC, and works to disrupt online crime by sharing near-real-time data on known fraudulent and malicious websites with internet service providers, which can then prevent customers from clicking through.

Online content such as fake shops, phishing sites and malicious links, including those from emails reported to the NCSC by the public, are being blocked automatically, providing better protection at scale.

noyb

noyb has reported that users want an alternative to Pay or Okay systems, which are on the rise in Europe. Instead of giving users a choice to either accept or reject ad tracking, Pay or Okay systems require a payment if you want to refuse to give your “consent”. This nudges 99.9% of users to consent, even if they actually don’t want to do so.

Reach Security

Reach Security announced its acceptance into the Microsoft for Startups Pegasus Program. Through the Pegasus Program, Reach will collaborate with Microsoft to help enterprise customers optimise their use of Microsoft E3 and E5 security suites by addressing configuration, visibility, and operational gaps through agentic AI.

ThreatQuotient

A new ThreatQuotient blog looks at how Threat Intelligence builds shared intelligence into cybersecurity.The blog says that by surfacing relevant TTPs, attack vectors, and sector-specific risks, intelligence provides the context employees need. Instead of vague warnings to “stay vigilant,” staff can be briefed on the latest phishing campaigns targeting their industry, shown what to watch for, and given clear escalation paths.

US Department of Justice

Two Virginia men were arrested for their roles in a conspiracy to destroy government databases hosted by a federal government contractor, among other crimes. Acting Assistant Attorney General Matthew R. Galeotti of the Justice Department’s Criminal Division, said, “These defendants abused their positions as federal contractors to attack government databases and steal sensitive government information.

“Their actions jeopardized the security of government systems and disrupted agencies’ ability to serve the American people. The Criminal Division remains committed to investigating and prosecuting those who compromise sensitive information and threaten the integrity of government operations.”

Xalient

A new blog by Xalient talks about the need for a new control plane for AI agents. It comments that every AI agent is, in effect, a new type of identity. It reads data, touches systems, and triggers workflows. That means it carries privileges. It carries entitlements. And if those permissions are not governed with clarity and precision, their blast radius will expand quietly in the background.

Security and AI news from the week beginning 24 November 2025

The post Security and AI news from the week beginning December 1st 2025 appeared first on Enterprise Times.