All news with #data loss prevention tag

🔒 A Forrester-commissioned report for Capital One Software finds 72% of security professionals say data security is more critical than ever, yet investments in legacy network and perimeter tools are impeding adequate protection. The research, conducted in February 2026, highlights siloed solutions, limited vulnerability visibility and reduced AI readiness. Respondents report heavy use of network security (70%), IAM (65%) and vulnerability management (60%), while two-thirds do not use tokenization, an underused control the study singles out to reduce risk and enable safer data use.

🔒 Traditional DLP tools often miss significant risk that originates inside the web browser. The piece explains how users routinely copy, type, and upload sensitive data into web forms, AI prompts, and unsanctioned accounts—activities that endpoint, network, and cloud DLP commonly cannot inspect with the needed context. Browser-native DLP operates within the browsing session to detect clipboard events, form inputs, and uploads, understand which app and account are involved, and apply inline controls to block or warn on risky actions while preserving approved workflows.

🔒 Chrome Enterprise Premium extends the familiar Chrome browser with enterprise-grade security, management, and healthcare-focused integrations to help clinicians access EHRs and web apps securely. It highlights advanced DLP, real-time URL scanning, phishing and malware protections, and controls to block copy/paste, printing, or screen capture of sensitive records. Google announced partnerships with Epic, Imprivata, AuthX, and Citrix to optimize EHR performance, enable passwordless authentication, streamline identity, and unify virtualized workflows. Eligible organizations are offered an extended 6-month trial, no-charge seats for the trial, $5,000 in services funding upon conversion, and high-touch onboarding.

🔒 Enterprise SaaS products increasingly adopt Retrieval-Augmented Generation (RAG) to give AI agents access to customer-specific knowledge, but that bridge also creates severe security liabilities. The article reviews recent high-profile failures — from the EchoLeak zero-click exfiltration to vector database reconstructions, indirect prompt injections in IDEs and large-scale knowledge-base poisoning — and breaks down the typical three-phase RAG architecture: ingestion & embedding, vector storage & retrieval, and LLM generation. It advocates a defense-in-depth posture combining pre-ingest DLP, retrieval-time RBAC/ABAC, prompt isolation and output filtering, and highlights Google Cloud services like Cloud DLP, Vertex AI vector search, Vertex AI model armor and Security Command Center to operationalize those controls.

🔍 CISOs are scrambling to close visibility gaps as organizations rapidly adopt AI, confronting risks such as prompt injection, data poisoning, shadow AI, and agentic behaviors. Security leaders report limited insight into where AI is used and how models behave, forcing them to reposition existing tools, adopt new monitoring solutions, and formalize governance. While traditional controls like DLP and SIEM can mitigate many issues, experts warn no single solution is fully mature, so leaders must balance guardrails, emerging observability tools, and business velocity.

🔒 A new report from LayerX warns that AI browser extensions are an unmonitored consumption channel that bypasses DLP and SaaS logs, granting direct access to page content, inputs, cookies, and sessions. AI extensions are significantly more likely to contain CVEs and to request scripting, cookie, or tab-manipulation permissions, and they frequently expand privileges after installation. The report urges continuous extension inventories, behavior-based controls, and stricter trust criteria to reduce exposure without hindering productivity.

🔒 Ransomware increasingly targets home backups and personal NAS units, using automated scans, weak credentials, and social engineering to encrypt photos, documents, and synced cloud folders. Once inside, malware removes Windows shadow copies, encrypts connected external drives and mapped network shares, and corrupts cloud sync clients so remote copies mirror the damage. Follow the updated 3-2-1-1 rule: keep an offline copy, unplug external backups after each use, enable cloud versioning, enforce strong passwords and firmware updates, and back up authenticator data. Also enable features like System Watcher, avoid pirated installers, and test restore procedures regularly.

🔒 CrowdStrike introduces Falcon Data Security, a unified solution that discovers, classifies, and defends sensitive information across endpoints, browsers, SaaS, cloud services, and GenAI workflows. The offering uses a shared classification engine for consistent identification of PCI, PII, PHI, and other sensitive types, and applies AI to reduce manual tagging. Real-time visibility into data in motion — including egress context and runtime cloud flows via eBPF telemetry — lets teams stop risky transfers at the moment they occur. Natively integrated with the Falcon platform, it correlates data events with device, user, and adversary telemetry to prioritize and automate response.

🔒 At RSAC, Check Point outlined how enterprises can secure their AI transformation by protecting sensitive data, models, and communications from emerging attack vectors. The company emphasized integrated controls—data loss prevention, access governance, model protection and runtime threat detection—paired with unified visibility across cloud and on‑prem environments. Check Point shared practical steps for safe AI adoption, from discovery and policy enforcement to automated response, helping organizations reduce leakage and compliance risk while enabling productive AI use.

🔐 CISOs are updating data protection strategies as employees rapidly adopt AI tools that access and expose sensitive information. Leaders such as Scott Kopcha at Goodwin Procter and experts from SANS and Health-ISAC warn that traditional controls and many DLP tools are insufficient for the multiple ways AI can interact with data. Organizations are prioritizing data classification, identity and access management, continual monitoring, zero-trust, and ongoing vendor evaluations to close gaps and show due diligence.

🔒 Microsoft announced new Purview innovations for Fabric to help organizations discover sensitive data risks, prevent oversharing, and improve governance and data quality across their data estate. Updates include general availability of DLP policies for Fabric Warehouses and KQL/SQL DBs, Insider Risk Management for lakehouses, and preview capabilities for Copilots and Agents. The Unified Catalog also gains publication workflows and data quality checks for ungoverned assets to better prepare trusted data for AI.

🔒 Google Cloud’s Sensitive Data Protection (SDP) now applies advanced AI context classifiers and image object detectors to identify and redact sensitive content across text and images. It detects medical and financial contexts, faces, passports, credit cards, and other PII, and can generate redacted versions so organizations keep valuable training data while protecting privacy. SDP supports both Vertex AI tuning and live agent interactions and integrates with Model Armor, Security Command Center, and contact center solutions.

🛡️AI adoption has outpaced controls, creating widespread "shadow AI" risk that can expose sensitive data, distort decisions and create compliance gaps. The article recounts an incident where a product manager accidentally pasted production API keys into a public model, triggering outbound alerts. It presents a five-step program grounded in the NIST AI Risk Management Framework: inventory and discover AI use, standardize assessments, deploy layered defenses (DLP and AI monitoring), enforce human-in-the-loop checks, and tie risk reduction to business value.

📧 Amazon Connect now supports conversational analytics for email contacts, enabling automatic categorization, PII redaction, and generated contact summaries to streamline supervision and compliance. Administrators enable the capability by adding a Set recording, analytics and processing behavior block to contact flows and can specify which PII types to redact and whether redactions show specific or generic markers. Teams may store original and redacted versions in separate locations, enable contact summaries, and use analytics to create rules that trigger actions such as assigning categories, creating tasks, or updating cases. The capability is available across multiple AWS regions.

🔐 Cloudflare One reframes enterprise security around protecting sensitive data across networks, endpoints, SaaS, and AI interfaces. The post introduces new controls — clipboard restrictions for browser-based RDP, operation-level mapping surfaced in logs, on-device Endpoint DLP in the Cloudflare One Client, and Microsoft 365 Copilot scanning via API CASB. Together these features aim to give consistent visibility and enforcement so policy follows data rather than product boundaries.

🛡️ Cloudflare CASB now lets administrators remediate risky file-sharing directly from the Cloudflare One dashboard. The new Remediation feature supports one-click removal of public, organization-wide, and external shares in Microsoft 365 and Google Workspace, and can target files that match DLP profiles for sensitive content. Remediation only removes risky sharing settings — it does not delete files or change ownership — and every action is recorded in Admin logs for auditing and SIEM export. The system is built on Cloudflare Workers and Workflows for fast, durable execution at scale.

🔒 More than half of national security organizations still rely on manual processes to transfer sensitive data, the CYBER360 report warns. The article highlights how human-dependent transfers introduce delays, audit gaps, and exploitable seams that adversaries can weaponize. It urges adoption of automated, policy-driven controls—centered on Zero Trust, data-centric protection, and cross-domain solutions—to restore speed, accountability, and mission resilience.

🔒 Microsoft is extending Purview data loss prevention controls so the Microsoft 365 Copilot assistant cannot read or process sensitive Word, Excel, and PowerPoint files regardless of where they are stored. The change leverages the Office Augmentation Loop (AugLoop) component so Office clients can supply sensitivity labels for local files as well as for SharePoint and OneDrive. Microsoft will roll out the update between late March and late April 2026 and says it will be automatically enabled for tenants with DLP policies configured to block Copilot. The move follows a January bug that briefly allowed Copilot Chat to access and summarize protected emails.

⚠️Microsoft says a bug in Microsoft 365 Copilot has been summarizing confidential emails since late January, bypassing organizations' configured data loss prevention (DLP) safeguards. The flaw affected the Copilot 'work tab' chat and improperly read messages stored in Sent Items and Drafts, including those with sensitivity labels intended to block automated processing. Microsoft attributes the behavior to a code error, began rolling out a fix in early February, and is monitoring deployment while contacting a subset of impacted users. The company has not yet disclosed the full scope or number of affected organizations and has flagged the incident as an advisory.

🛡️ Organizations face escalating data-exfiltration and malicious-code risks as consumer GenAI tools proliferate. Legacy DLP solutions are costly and complex, while unmanaged GenAI enables staff to upload PII, PHI and proprietary IP to public models. The author outlines two practical paths: enterprise GenAI licenses with built-in controls or deploying XDR/MDR DLP to enforce detection and automated response at endpoints. For many firms, the latter is presented as a cost-effective, risk-aware option that balances innovation and protection.