As we close out 2025, the cybersecurity landscape continues to evolve rapidly—with new regulatory guidance, intensified phishing threats, and an increasing convergence between IT and operational technology (OT). Below is our bi-weekly summary of key developments impacting cybersecurity leaders, risk professionals, and compliance officers across industries.

The evolving threat landscape highlights the convergence of nation-state actors, AI-driven tools, and trusted platforms, all of which contribute to increased cyber risks for organizations. Security leaders should view these developments as opportunities to strengthen controls related to identity, endpoints, and third-party vendors.

This week’s developments reinforce the need for proactive risk management, robust incident response, and the continuous alignment of cybersecurity programs to emerging risks and regulatory requirements.

Explore the latest cyber threats and trends, from FCC telecom rule changes and AI-driven insurance risks to ransomware crew hacks and critical infrastructure challenges in the JANUS Associates Cyber Threat Report.

The cybersecurity landscape is evolving rapidly, with AI-driven social engineering, DDoS automation, and advanced threat collaboration dominating the headlines. JANUS Associates analyzes the top cybersecurity incidents and trends shaping Q4 2025; drawing from CISA, FBI joint advisories, and trusted cybersecurity intelligence agencies and other trusted public sources.

Critical Nvidia Security Flaw Exposes Cloud AI Systems to Host Takeover

A stark warning from researchers at Wiz after discovering a TOCTOU (Time-of-check Time-of-Use) vulnerability that exposes enterprise cloud environments to code execution, information disclosure and data tampering attacks. Read More