Building a crypto-agile KMS: how CryptoBind KMS prepares you for post-quantum migration
The Quantum computing threat or time horizon is now an engineering time gone. In 2024, NIST […]
The NSA, ‘Mythos’ and the quiet emergence of AI cyber doctrine
For most of my career running security operations, the shape of cyber conflict has been defined […]
DSPM buyer’s guide: Top 10 data security posture management tools
Data security posture management (DSPM) explained Data security posture management (DSPM) tools help security teams examine […]
Microsoft previews automatic device isolation in Defender for Endpoint
Microsoft is previewing a new automatic device isolation capability in Defender for Endpoint’s auto attack disruption […]
Researchers Strip AI Guardrails From Google, Meta Models in Minutes
Researchers found open-weight AI models from Google and Meta could have guardrails removed in minutes, raising […]
GitHub Actions abused by Megalodon attack to slip malicious commits into 5,500 repos
A large-scale automated GitHub backdooring campaign was caught pushing thousands of malicious commits into public repositories […]
Anthropic’s Claude Mythos Flags 23K Potential Open-Source Security Flaws
Anthropic says Claude Mythos Preview flagged 23,019 potential open-source vulnerabilities as Project Glasswing exposes a growing […]
TrapDoor malware campaign puts developer workstations in CISO spotlight
A malicious package campaign across npm, PyPI, and Crates.io has put developer workstations back under scrutiny, […]
Stop treating AI governance as a review layer. Make it release infrastructure
I’ve spent years building compliance into security products. FedRAMP and Department of War Impact Level authorizations, […]
Vulnerabilities have become cyber attackers’ No. 1 door to the enterprise
Patching practices are coming under intense pressure of late, as time-to-exploit windows accelerate — a new […]