July 13, 2026
The Missing Layer in Your 2026 Cyber Strategy - InfoSecurity Europe 2026
After attending conferences, I like to take notes and share the talks that stood out to me. This one was from InfoSecurity Europe 2026 by…

By Meera Tamboli
1 min read
After attending conferences, I like to take notes and share the talks that stood out to me. This one was from InfoSecurity Europe 2026 by the CEO & Co-founder of Spikerz. One of the sessions at InfoSecurity Europe 2026 focused on a topic that doesn't get enough attention: digital marketing security.
The speaker explained that digital marketing assets are the face of every modern brand, yet they're one of the most public assets an organisation has. Despite that, they're constantly under attack.
Some of the biggest issues highlighted included impersonators damaging a brand's image, governance issues such as former employees retaining access, phishing attacks, and hacking attempts.
To illustrate the impact, the speaker shared the example of Dior, which has over 50 million followers. Hackers compromised Dior's official Instagram account, promoted a cryptocurrency coin, and reportedly stole £1.7 million.
One question from the session really stood out:
Which security tool do we have to prevent employees from getting hacked on their personal accounts?
The speaker's view was that digital marketing security is broken.
Another key takeaway was that marketing and security teams need to collaborate much more closely. According to the speaker, AI is only accelerating the problem. Fake login pages can now be created with a single prompt and used to steal credentials. Impersonator profiles can be built using automation and used to deceive customers. Any Instagram or social media account can simply be created using a brand's name alongside "customer support."
The speaker summed up the challenge with a simple observation:
Security doesn't know. Marketing doesn't care.
To help reduce these risks, the speaker recommended removing access to external marketing platforms, such as Facebook Pages and Meta Ads, when someone leaves the organisation. They also stressed the importance of monitoring for external pages impersonating a brand or scamming potential customers.
I'd never really thought a lot about digital marketing as part of an organisation's attack surface until this session. Do you think marketing security is still an overlooked area in cybersecurity?