Rethinking the balance between AI oversight and innovation
The new CIO mandate is clear: facilitate AI adoption across the enterprise at speed. According to […]
GRC is broken. FedRAMP 20x might fix it
We are auditing a curated version of history. I’ve worked in security long enough now to […]
Be on the lookout for Mistic, a new backdoor used by ransomware broker
Researchers have identified a new backdoor program that has been used in enterprise intrusions since April […]
Scattered Spider duo convicted over $38M Transport for London attack
Two members of the Scattered Spider cybercrime collective have admitted launching a cyberattack against Transport for […]
Anthropic AI Shutdown Puts China’s Zhipu AI in the Spotlight
Anthropic’s Fable 5 shutdown is putting China’s Zhipu AI and GLM-5.2 in the spotlight as developers […]
Attackers exploit Cisco Unified CM flaw weeks after patch release
A critical Cisco Unified CM vulnerability is now under active exploitation, weeks after the company issued […]
How a malicious AI agent skill passed security checks and reached 26,000 users
A fake AI agent skill that passed security checks reached over 26,000 users through Instagram, highlighting […]
Kahneman, ‘Where’s Waldo’ and the Nexus pass: A CISO’s mental model for the AI era
Security awareness training as a defense against phishing is dead. It has been dead for a […]
AI-SPM buyer’s guide: 14 tools to secure your AI infrastructure
Widespread enterprise adoption of AI has created a pressing need for security solutions — a tall […]
Meta pauses employee monitoring program after data protections fail
An extensive program at Meta to gather a wide range of data from employees to train […]