M365 Copilot SearchLeak: Your prompt injection attack surface just got bigger
A recent proof-of-concept attack against Microsoft’s M365 Copilot Enterprise highlights what could be a much broader […]
Oracle releases 245 new security patches, all rated ‘high-priority security’
The Oracle Critical Security Patch update (CSPU) released this week contains 245 newly-announced fixes for supported […]
Attackers abuse Google Ads, GitLab, and Claude to deliver malware
Threat actors are abusing trusted platforms, including Google Ads, GitLab pages, and Claude’s shared chat feature, […]
FortiBleed campaign exposes 75,000 Fortinet firewalls worldwide
A massive credential-compromise campaign dubbed “Fortibleed” has been found to expose tens of thousands of Fortinet […]
New CISO appointments 2026
The upper ranks of corporate security are seeing a high rate of change as companies try […]
5 new security operations roles the AI-SOC will create
For years we’ve heard the frightening prediction that AI will take jobs away from people. It […]
Cybersecurity was built for predictable systems. AI changes the rules
Every major technology shift changes cybersecurity. I’ve spent much of my career working through major technology […]
Estonia plans government IDs giving AI agents rights and responsibilities
There’s no shortage of agentic AI tools out there that offer to perform online tasks on […]
Google’s Vertex AI SDK could allow RCE through bucket squatting
A design flaw in the Vertex AI software development kit (SDK) for Python, Google Cloud’s managed […]
5 AI risk management frameworks for shoring up key gaps
Organizations racing to embed AI into business operations are realizing that the risk management frameworks they’ve […]