BYOK, HYOK, and BYOE explained: choosing the right key control model for your cloud strategy
In the fast-growing environment of cloud adoption, one question often comes into the Board’s mind, who […]
Building a crypto-agile KMS: how CryptoBind KMS prepares you for post-quantum migration
The Quantum computing threat or time horizon is now an engineering time gone. In 2024, NIST […]
The NSA, ‘Mythos’ and the quiet emergence of AI cyber doctrine
For most of my career running security operations, the shape of cyber conflict has been defined […]
DSPM buyer’s guide: Top 10 data security posture management tools
Data security posture management (DSPM) explained Data security posture management (DSPM) tools help security teams examine […]
Microsoft previews automatic device isolation in Defender for Endpoint
Microsoft is previewing a new automatic device isolation capability in Defender for Endpoint’s auto attack disruption […]
Researchers Strip AI Guardrails From Google, Meta Models in Minutes
Researchers were able to bypass the guardrails of open-source AI models in minutes using tools specifically […]
GitHub Actions abused by Megalodon attack to slip malicious commits into 5,500 repos
A large-scale automated GitHub backdooring campaign was caught pushing thousands of malicious commits into public repositories […]
Anthropic’s Claude Mythos Flags 23K Potential Open-Source Security Flaws
Anthropic’s latest Project Glasswing update carries a warning for the software world. Claude Mythos Preview flagged […]
TrapDoor malware campaign puts developer workstations in CISO spotlight
A malicious package campaign across npm, PyPI, and Crates.io has put developer workstations back under scrutiny, […]
Stop treating AI governance as a review layer. Make it release infrastructure
I’ve spent years building compliance into security products. FedRAMP and Department of War Impact Level authorizations, […]