CFOtech Canada - Technology news for CFOs & financial decision-makers
Canada
Canadian Edition · 2026

The Ultimate Guide to Zero Trust Security

A curated Canadian edition of TechDay news, analysis, interviews, reviews, job moves, and related resources for Zero Trust Security.

What to know about Zero Trust Security

Zero Trust Security represents a modern approach to cybersecurity that assumes no inherent trust exists within or outside an organisation's network. Every access request must be verified continuously, ensuring strict identity verification and least-privilege access to protect data and infrastructure.

The latest developments in Zero Trust Security show its expanding role across multiple technologies, including identity and access management, privileged access controls, endpoint protection, and cloud security platforms. Organisations are adopting Zero Trust frameworks to address challenges like remote work vulnerabilities, ransomware threats, and complex hybrid IT environments.

By exploring the stories tagged with Zero Trust Security, readers can understand how this security model integrates innovations like multi-factor authentication, AI-powered threat detection, and secure access service edge (SASE) solutions. These insights are valuable for IT professionals, security leaders, and businesses aiming to enhance resilience against evolving cyber threats in a digital-first world.

Canadian Zero Trust Security News

Regional stories with direct local relevance

Analyst Insights

Research and market analysis connected to Zero Trust Security

Expert Columns

Interviews

Interviews and video coverage from the network

Recent Zero Trust Security News

AI-fuelled cyberattacks put Canadian businesses at risk
Cloud Services

AI-fuelled cyberattacks put Canadian businesses at risk

AI-powered cyberattacks are rising sharply, leaving Canadian businesses exposed as legacy systems meet rapid AI adoption and automated threats.

Fri, 27th Feb 2026

Bell Cyber & Radware launch AI-driven cloud security
Firewalls

Bell Cyber & Radware launch AI-driven cloud security

Bell Cyber and Radware have unveiled an AI-driven, fully managed cloud security service to shield apps, APIs and sites from automated attacks.

Thu, 19th Feb 2026

Cisco unveils Duo IAM to strengthen identity-based security
Breach Prevention

Cisco unveils Duo IAM to strengthen identity-based security

Cisco launches Duo IAM, a new identity and access management tool designed to combat AI-driven cyber threats with stronger, passwordless security features.

Thu, 29th May 2025

Tracebit says context bombs can derail AI cyber attacks
AI Security

Tracebit says context bombs can derail AI cyber attacks

Tests on five models found a planted text string sharply reduced successful AI-led intrusions, cutting full compromise to 1% in an AWS range.

Yesterday

Phishing toolkits target Microsoft 365 MFA in surge
Security Operations Centres

Phishing toolkits target Microsoft 365 MFA in surge

Account takeovers are becoming harder to stop as attackers use real-time code theft and fake login pages to bypass Microsoft 365 MFA.

Yesterday

Proofpoint spots Entra ID spoofing attack technique
Threat intelligence

Proofpoint spots Entra ID spoofing attack technique

Attackers can now probe Entra ID accounts and passwords at scale without a real app, leaving defenders with little sign-in telemetry.

Yesterday

Fortinet adds AI oversight & data controls to FortiEndpoint
Digital Transformation

Fortinet adds AI oversight & data controls to FortiEndpoint

Security teams gain tighter endpoint oversight of shadow AI and sensitive data, as Fortinet folds new controls into FortiEndpoint from the third quarter.

Yesterday

WatchGuard warns of shadow AI & weak security habits
Virtual Private Networks

WatchGuard warns of shadow AI & weak security habits

Persistent gaps in basic cyber hygiene are leaving small businesses exposed, with most staff reusing passwords and many using unauthorised AI tools.

Yesterday

Microsoft makes passkeys default for Entra ID logins
Threat intelligence

Microsoft makes passkeys default for Entra ID logins

Users relying on SMS or voice for sign-ins will be nudged to passkeys as Microsoft phases out weaker multifactor methods in Entra ID.

Yesterday

Google warns public sector on 22-second cyber hand-off
Threat intelligence

Google warns public sector on 22-second cyber hand-off

Public agencies risk ransomware within seconds as attackers exploit identities, cloud tools and virtualisation layers, Google warns.

2 days ago

Keeper adds AI agent governance to endpoint manager
IT Department

Keeper adds AI agent governance to endpoint manager

Businesses using autonomous AI on endpoints face new oversight gaps, as Keeper extends its privilege controls to agent actions and approvals.

3 days ago

Cloudflare launches Precursor to spot bots in sessions
Threat detection

Cloudflare launches Precursor to spot bots in sessions

With automated traffic now overtaking human visits online, the tool is designed to catch bots that slip past login and checkout checks.

3 days ago

Financial services faces most cyberattacks per device
Virtual Private Networks

Financial services faces most cyberattacks per device

Legacy systems and slow patching are leaving banks exposed, with financial services hit by more than double the average cyberattacks per device.

3 days ago

OpenAI requires hardware-backed passkeys for cyber access
ICT sector

OpenAI requires hardware-backed passkeys for cyber access

Users who miss the deadline will lose access to OpenAI's most advanced cyber models, as the firm tightens defences against phishing.

3 days ago

Keeper Security hits USD $225 million ARR on AI identity
Digital Transformation

Keeper Security hits USD $225 million ARR on AI identity

Growing demand for unified controls over human and machine credentials has lifted the cyber security group past USD $225 million in annual recurring revenue.

Last week

Google Cloud puts Cloud Run sandboxes into preview
Serverless architecture

Google Cloud puts Cloud Run sandboxes into preview

Developers can now isolate AI-generated code and user scripts inside Cloud Run, reducing the risk of exposing credentials or host data.

Last week

BeyondTrust launches NHI governance for machine identities
Enterprise security

BeyondTrust launches NHI governance for machine identities

Security teams can now tighten oversight of service accounts, API keys and AI agents as machine identities outnumber staff in many enterprises.

Last week

Quorum Cyber revamps AI security services for businesses
Managed Security Services Provider

Quorum Cyber revamps AI security services for businesses

Businesses are being urged to tighten controls as AI tools spread faster than governance, with Quorum Cyber updating assessments to cut cyber risk.

Last week

Blackpoint launches AI tool to halt identity attacks
Managed Security Services Provider

Blackpoint launches AI tool to halt identity attacks

Credential misuse is pushing defenders to automate faster containment, as Blackpoint's new tool can freeze cloud account attacks in under two minutes.

Last week

Helix data extortion group linked to BlackFile, ShinyHunters
Threat intelligence

Helix data extortion group linked to BlackFile, ShinyHunters

Businesses face a fresh wave of identity theft-driven extortion as Helix is linked to BlackFile and ShinyHunters through shared infrastructure.

Last week