Cybersecurity researchers have discovered two severe authentication bypass vulnerabilities in Wondershare RepairIt, an AI-powered data repair and photo editing application.

Source: LexisNexis

LexisNexis Risk Solutions, part of RELX, closed its acquisition of IDVerse, a provider of AI-powered document authentication and fraud detection solutions.

Source: FullCircl

FullCircl, a UK-based RegTech which is uniquely placed at the intersection where revenue meets regulation, has announced a new partnership with LSEG Risk Intelligence.

The Bank of England has fined UK payments operator Vocalink £11.9 million for failing to meet a February 2022 deadline to address weaknesses in its risk management and governance framework.

Source: Cytora

Cytora has announced the latest version of its digital risk processing platform. Cytora Platform 3.0 enhances the capabilities of the platform by harnessing agentic AI in a fully explainable way.

There exists a nuanced spectrum in orchestrating and nurturing bank-fintech collaborations. This complex landscape necessitates a keen understanding of pivotal factors and methodologies imperative for sustaining these relationships, irrespective of their objectives or frameworks.

Cryptocurrency may be nearing the point where it poses a systemic risk to the global financial system, according to Klaas Knot, outgoing chair of the Financial Stability Board (FSB). Speaking in Spain, Knot acknowledged that despite previous disruptions in the crypto space—including bankruptcies, liquidity issues, and fraud—the FSB had not considered the sector a systemic threat until now.

Despite increasing efforts to adopt artificial intelligence (AI), many firms remain in the early stages of implementation, hindered by significant gaps in workforce training and regulatory readiness.

Source: Rapid7

Rapid7, Inc. (NASDAQ: RPD), a leader in extended risk and threat detection, today announced it has signed a definitive agreement to acquire Noetic Cyber, an innovator and a leader in cyber asset attack surface management (CAASM).

A critical vulnerability, CVE-2025-31324, in SAP’s NetWeaver platform, specifically within the Visual Composer’s Metadata Uploader component, is under active exploitation.

Cybersecurity researchers have uncovered a new threat to software supply chains that spans multiple programming ecosystems, including PyPI, npm, Ruby Gems, NuGet, Dart Pub, and Rust Crates. These entry points, which are typically used by developers to execute specific commands or load plugins, can be exploited by attackers to introduce malicious code.

The Bank for International Settlements (BIS) and the Monetary Authority of Singapore (MAS) have developed a blueprint for a platform to integrate regulatory and climate data, aiding financial authorities in managing climate risks.