Stephen Pritchard

London

Broadcaster, (video) journalist, producer. Contributor at @ComputerWeekly @DailySwig and @threatpost. Editor of @SyInsights podcast and @avpromag

Articles

#Infosec2025: Cybersecurity Lessons From Maersk’s Former CISO

3 weeks ago | infosecurity-magazine.com | Stephen Pritchard

The 2017 ransomware attack on shipping company A P Moller Maersk marked a turning point for the cybersecurity industry, according to its former CISO Adam Banks. The attack is estimated to have cost Maersk $700m, excluding any revenue losses. Following the attack, it was three months before the business was fully back online, Banks told an audience at Infosecurity Europe 2025. But, he said, it could well have been worse. The $700m figure was, Banks said, the cost of the attack and the recovery.
#Infosec2025: Defenders and Attackers are Locked in an AI Arms Race

3 weeks ago | infosecurity-magazine.com | Stephen Pritchard

Malicious actors are using AI tools to fine-tune cyber-attacks, even as governments race to encourage AI investment. National programs to bolster AI expertise and R&D should be seen in the context of the growing use of AI tools by criminal hackers, advised Brett Taylor, UK sales engineering director at SentinelOne, in his talk at Infosecurity Europe 2025.
#Infosec2025: Securing Endpoints is Still Vital Amid Changing Threats

3 weeks ago | infosecurity-magazine.com | Stephen Pritchard

Endpoint devices, including PCs, mobile phones and connected IoT equipment continue to pose security risks, even as malicious actors ramp up their attacks on other areas of enterprise technology. Endpoint security might be less of a focus for CISOs struggling with a growing attack surface and increasingly sophisticated malicious actors harnessing AI tools and weaknesses in supply chain security.
#Infosec2025 Cloud-Native Technology Prompts New Security Approaches

3 weeks ago | infosecurity-magazine.com | Stephen Pritchard

A move to cloud-native technologies is changing the way enterprises develop their applications and manage their security. According to speakers at Infosecurity Europe 2025, modern architectures are allowing businesses to operate without physical infrastructure and with smaller IT and security teams. At the same time, cloud-native technology has made the businesses more flexible and better able to attract and retain skilled developers.
#Infosec2025: Concern Grows Over Agentic AI Security Risks

3 weeks ago | infosecurity-magazine.com | Stephen Pritchard

Agentic AI and AI tools that connect to each other without human oversight pose increasing security risks according to experts at Infosecurity Europe. Agentic AI, or AI agents, operate with a high degree of autonomy. An agentic system might choose the AI model it uses, pass data or results to another AI tool, or even take a decision without human approval.
#Infosec2025: Startups Focus on Visibility and Governance, not AI

3 weeks ago | infosecurity-magazine.com | Stephen Pritchard

Startups and fast-growing security vendors are avoiding labelling their products as using AI, as they look to attract both enterprise customers and investors. Instead, newly founded businesses are focusing on filling gaps in CISOs’ existing security measures. These include giving security teams better insights into their operations; governance, risk and compliance (GRC); and attack surface management (ASM).
#Infosec2025: Channel Bridges Security Skills Gap

3 weeks ago | infosecurity-magazine.com | Stephen Pritchard

A growing channel and reseller marketplace is helping cybersecurity teams plug gaps in their operations and compensate for skills shortages in critical areas. At the same time, channel partners are helping security vendors enter new markets, as well as providing specialist industry expertise. The worldwide cybersecurity technology market is now worth over US$21 billion, according to analysts Canalys.
AI and compliance: Staying on the right side of law and regulation

1 month ago | computerweekly.com | Stephen Pritchard

AI laws and governance AI is governed by a host of sometimes overlapping laws and regulations. These include data privacy and security laws, and guidelines and frameworks which set standards around AI use where they may be not backed by legal sanctions. “AI regulatory frameworks like the EU AI Act are based on the assessment of risks, specifically the risk these new technologies can impose on people,” says Efrain Ruh, continental chief technology officer for Europe at Digitate.
AI and compliance: What are the risks?

1 month ago | computerweekly.com | Stephen Pritchard

Confidential data AI tools have also leaked confidential data, either directly or because employees have uploaded confidential documents to an AI tool. Then there is bias. The latest AI algorithms, especially in LLMs, are highly complex. This makes it difficult to understand exactly how an AI system has come to its conclusions. For an enterprise, this in turn makes it hard to explain or even justify what an AI tool, such as a chatbot, has done.
Zurich eyes "agentic" hackathon as data boss shares AI wins

1 month ago | thestack.technology | Stephen Pritchard

Get the story, a weekly newsletter (you can turn that off if you want) and support independent journalism. Subscribe today.