[DigitalToday reporter Chi-gyu Hwang (황치규)] As various security companies publish cyber intrusion threat trends, 2 reports stand out this week. They are reports released by Rapid7 and Grip Security.

The Rapid7 report describes a situation in which it is becoming increasingly difficult for defenders to stop the speed at which attackers exploit vulnerabilities. It said attackers weaponise vulnerabilities within days of disclosure, leaving vendors little time to release patches and defenders little time to install them. Christian Beek (크리스티안 비크), vice president of cyber intelligence at Rapid7, said, "The attackers' level or intent has not suddenly changed." He said, "What has changed is the speed of weaponising and exploiting vulnerabilities."

ㆍRapid7 "Attackers' speed outpaces defenders' predictions...we must shift from prediction to pre-emptive security"

The Grip Security report warned of risks from AI being embedded in SaaS. Grip Security analysed 23,000 software-as-a-service (SaaS) application environments and warned of risks from shadow AI outside corporate control. The company said a breach of a single AI-enabled app could spread damage across all other AI-enabled environments within an organisation. It could also spread to other organisations.

ㆍCompanies operate an average of 140 AI-enabled SaaS apps...Grip Security warns of shadow AI risks

The government is speeding up incentives to drive adoption of the National Network Security Framework (N²SF) by public institutions. The government appears to be trying to encourage institutions that have so far stayed on the sidelines to adopt N2SF more actively by creating bonus points in management evaluations, switching items in cybersecurity status evaluations, and running a 4.5 billion won adoption support programme.

ㆍGovernment pushes N2SF incentives...will adoption accelerate?

Other moves by companies in Korea and overseas related to AI were also summarised.

Moves in the security industry to strengthen AI also appear to be accelerating. Igloo Corporation, an AI-based security operations and analytics platform company, launched PLOT ARENA, a hands-on cyber offence-and-defence training solution. Naru Security set up a threat response centre and an AI centre, hired experts in each field and is stepping up efforts to advance its "next-generation threat management service". Naru Security recruited Jae-kwang Lee (이재광) as head of the threat response centre, with on-site incident analysis capabilities, and Su-gon Cho (조수곤) as head of the AI centre to lead AI technology. At the security exhibition eGISEC 2026 (e-Government Information Security Solution Fair), WithNetworks presented a plan to build a data security governance system based on WithVTM, an integrated asset and vulnerability management solution, and WithREX, a threat exposure diagnostic service. Nota showcased a demo of its "Nota Vision Agent (NVA)" security monitoring solution based on a vision language model (VLM) at SECON 2026.

ㆍIgloo Corporation launches PLOT ARENA...adds momentum to expanding AI-based offensive security ㆍNaru Security establishes Threat Response Center and AI Center...aims to advance with AI threat management services ㆍWithNetworks showcases an "AI-based integrated asset and vulnerability management" framework ㆍNota attends SECON 2026...showcases VLM security monitoring solution

Cybersecurity startup Scanner raised $22 million in a Series A funding round led by Sequence Capital. Founded in 20222, Scanner helps companies build a cloud-native security data lake to conduct threat hunting and continuous detection and response.

ㆍScanner raises $22 million...threat detection with a cloud-native security data lake

Jiranjigyo Security will supply SaniTOX SDK, a content disarm and reconstruction (CDR) engine, to AhnLab's intelligent threat response solution, AhnLab MDS. Suprema signed a three-way memorandum of understanding with Hyundai Motor and Kia Robotics Lab and Hyundai Engineering & Construction for cooperation to advance residential complexes based on service robots.

ㆍJiranjigyo Security supplies SaniTOX CDR engine to AhnLab MDS ㆍSuprema signs MOU with Hyundai Motor and Kia Robotics Lab and Hyundai E&C on cooperation to advance service robot-based residential complexes

LG Uplus will offer free USIM replacement and resetting for all customers. It is a supplementary measure in response to recent security concerns.

ㆍIMSI security concerns for customers...LG Uplus to offer free USIM replacement and resetting

The U.S. agency overseeing cybersecurity operations, CISA, urged companies to strengthen security for device management systems after an incident in which pro-Iran hackers infiltrated the system of medical device company Stryker and remotely wiped tens of thousands of employee devices.

ㆍU.S. CISA "Strengthen security for device management systems"...follow-up after Stryker hacking incident

Microsoft's Xbox One console, which has been seen as difficult to hack since its release in 2013, has raised the possibility of a security vulnerability after a hardware hacking technique using voltage fluctuations was disclosed. At Meta, there was news of a security incident in which AI agents went out of control and provided incorrect guidance, exposing large amounts of sensitive internal information and user data to employees without authorisation. Apple's HomeKit Secure Video, a security camera video recording and management platform, suffered a performance outage for more than 24 hours, causing inconvenience to consumers. Signs were also detected that hackers suspected of being linked to the Russian government used new hacking tools targeting iPhone users in Ukraine. They were found to have carried out cyber attacks targeting not only personal information but also cryptocurrency.

ㆍXbox One security collapses...'unhackable' myth crumbles ㆍMeta exposes confidential data after AI agents run out of control...security concerns spread ㆍApple's HomeKit Secure Video down for 24 hours...concerns spread ㆍ"Just connecting gets you hacked"...Dark Sword attack targets iPhones, suspected Russian involvement