Patrick Spencer

State of AI Cybersecurity in 2026: What the Data Tells Us About What’s Coming Next

by Patrick Spencer February 25, 2026February 25, 2026 | Cybersecurity Risk Management

AI didn’t just change the cybersecurity conversation in 2025. It torched the old playbook and started writing a new one — in real time. Here’s what 1,800+ security professionals say...

Compliance Teams Are Drowning in AI Pressure—and Most Organizations Aren’t Ready to Throw Them a Lifeline

by Patrick Spencer February 24, 2026February 24, 2026 | Regulatory Compliance

The mandate came from the top. Get on board with AI. Boost efficiency. Stay competitive. But nobody asked the compliance team if they were ready. A new survey from Compliance...

New Privacy Playbook: What Cisco’s 2026 Data and Privacy Benchmark Study Reveals About AI-Driven Governance

by Patrick Spencer February 24, 2026February 24, 2026 | Cybersecurity Risk Management

Privacy spending has exploded. Organizations aren’t just checking compliance boxes anymore—they’re building entire governance ecosystems around artificial intelligence, and the numbers tell a remarkable story. Cisco’s newly released 2026 Data...

Your Vendors Are Getting Hacked Once a Month. Here’s What That Means for Your Business.

by Patrick Spencer February 24, 2026February 24, 2026 | Third Party Risk

Let’s start with a number that should make every executive pause: the average organization experienced 12 third-party breaches last year. That’s one breach per month, coming not from your own...

Latin America Is Now the World’s Most Dangerous Place for Cyberattacks—And It’s Getting Worse

by Patrick Spencer February 24, 2026February 24, 2026 | Cybersecurity Risk Management

The numbers are staggering. Organizations across Latin America and the Caribbean now face an average of 3,065 cyberattacks every single week—a 26% surge from the previous year. That’s roughly 40%...

Agentic AI Governance Lags Adoption in the UK: What the Salesforce 2026 Connectivity Benchmark Report Means for Enterprise Compliance

by Patrick Spencer February 24, 2026February 24, 2026 | Cybersecurity Risk Management

You can deploy a dozen AI agents across your enterprise. You can project 67% growth over two years. You can call it a digital transformation initiative and put it in...

Microsoft Copilot Read Your Confidential Emails for Weeks. Here’s What Broke and How to Fix It.

by Patrick Spencer February 23, 2026February 23, 2026 | Cybersecurity Risk Management

For weeks, Microsoft 365 Copilot was quietly reading, summarizing, and surfacing emails that organizations had explicitly marked as confidential. Legal memos. Business agreements. Government correspondence. Protected health information. All processed...

Brazil’s Self-Taught AI Workforce: Enthusiasm Outpaces Governance

by Patrick Spencer February 19, 2026February 19, 2026 | Cybersecurity Risk Management

Brazil’s public servants didn’t wait for permission. They didn’t wait for training programmes. They didn’t wait for enterprise licences or IT helpdesk approvals. They taught themselves AI, started using it...

Saudi Arabia’s AI Leadership: Securing Public Sector Innovation

by Patrick Spencer February 19, 2026February 19, 2026 | Cybersecurity Risk Management

Every other country in this index is trying to get its public servants to use AI. Saudi Arabia has a different problem: making sure the AI use that’s already happening...

TridentLocker Ransomware Exposes WTC Health Program Data Breach

by Patrick Spencer February 18, 2026February 18, 2026 | Secure File Transfer

Some data breaches expose credit card numbers. Some expose email addresses. This one exposed the medical records, Social Security numbers, and completed health program forms of people enrolled in the...

How European Enterprises Can Maintain Microsoft 365 Productivity While Protecting Sensitive Data With Sovereignty

by Patrick Spencer February 18, 2026February 18, 2026 | GDPR Compliance

Microsoft 365 is deeply embedded in European enterprise operations. Teams drives daily communication. SharePoint hosts document libraries spanning departments and partners. OneDrive underpins hybrid work. Outlook connects employees to customers...

Shadow AI Crisis: Solving Government’s Hidden Security Risk

by Patrick Spencer February 13, 2026 | Cybersecurity Risk Management

The United States is home to the most advanced AI ecosystem on the planet. American companies are building the frontier models. American researchers are publishing the breakthrough papers. American venture...

Mexican Government Data Breach: Legacy Systems and Vendor Risks

by Patrick Spencer February 11, 2026February 11, 2026 | Cybersecurity Risk Management

A hacktivist group recently claimed responsibility for one of the largest government data leaks in Latin American history. The target was the Mexican government, and the alleged haul was staggering:...

Quantum Encryption Threat: Google’s Urgent Warning on SNDL Attacks

by Patrick Spencer February 10, 2026 | Cybersecurity Risk Management

Google issued what might be the most consequential cybersecurity warning of the year. Kent Walker, President of Global Affairs at Alphabet and Google, didn’t mince words: Current encryption systems are...

Moltbook Is a Ticking Time Bomb for Enterprise Data. Here’s How to Defuse It.

by Patrick Spencer February 3, 2026 | Cybersecurity Risk Management

Last week, over 150,000 AI agents joined a social network where humans aren’t allowed to post. They created their own religion. They discussed how to hide their conversations from people...

Security and Compliance Blog

Learn security strategies, compare vendors, and implement best practices to prevent breaches and compliance violations from risky third party communications.

Posts by Patrick Spencer

Your Vendors Are Getting Hacked Once a Month. Here’s What That Means for Your Business.

Microsoft Copilot Read Your Confidential Emails for Weeks. Here’s What Broke and How to Fix It.

Saudi Arabia’s AI Leadership: Securing Public Sector Innovation

TridentLocker Ransomware Exposes WTC Health Program Data Breach

Shadow AI Crisis: Solving Government’s Hidden Security Risk

Quantum Encryption Threat: Google’s Urgent Warning on SNDL Attacks

Moltbook Is a Ticking Time Bomb for Enterprise Data. Here’s How to Defuse It.

Get started.