As AI accelerates product development and cybersecurity categories blur together, security leaders face a growing challenge: figuring out who actually does what anymore. (Sponsored by Crush Security.)
Featured
Security leaders have spent years optimizing detection and response while relying on spreadsheets, tribal knowledge, and reseller relationships to make million-dollar technology decisions. A new generation of AI-powered platforms aims to change that. (Sponsored by Crush Security.)
The normalization of ransomware in industrial systems, along with an operating culture that treats downtime as unacceptable, is an uncomfortable tension that's not likely to go away soon.
Sponsored
Community Corner
See allFrom the CYBR.SEC.Community
Trust Is Not a Cloud Service: What Cybersecurity Can Learn from Local AI Stewards
The people on the ground often know whether that event is ordinary, suspicious, urgent, harmless, political, embarrassing, dangerous, or simply the latest chapter in a long operational story.
In Appreciation: Dr. Eric Cole
Dr. Eric Cole's cybersecurity accomplishments are legendary, but his willingness to speak openly about burnout is something that particularly resonated with me, as it is something many of us struggle to avoid.
He Wasn't a Hacker. But He Was One of Us.
Thirty years after Sean Marley died, I realize that my focus on mental health in cybersecurity started with him. This is a belated thank you to him for helping me strive for something better. He wasn't a hacker. But he sure as hell was one of us.
CYBR.SEC.Media 2.0: How CYBR.SEC.Community Is Building a More Human Cybersecurity Media Platform
The new version of CYBR.SEC.Media puts community voices, practitioner insight, podcasts, videos, and visual storytelling front and center.
The Vulnpocalypse Isn’t Your Problem
But it might be your company’s problem.
Latest Articles
See all
Microsoft Security
Four YouTube Influencers Decode Microsoft's 'Nightmare Eclipse' Dumpster Fire
This week, we recognize four cybersecurity influencers on YouTube who skillfully unpacked the war between Microsoft and "Nightmare Eclipse."
Identity SecuritySaaSAI Security
Remembering Dr. Eric Cole, ShinyHunters Exposes Identity-to-SaaS Gap, and Why Community is Our Last Defense Against Deepfakes
Also: The CYBR.SEC.CON call for papers has been extended to June 14. We hope to see you there!
zero trustAgentic AIIdentity Security
Agentic AI Is Pushing Zero Trust Into Its Next Phase
Zero Trust was designed to control people and machines. The rise of autonomous AI agents is forcing security teams to extend those same principles to software capable of making decisions and taking action on its own. (Includes infographic)
Identity SecuritySaaS
After the Vishing Call: What Enterprises, SaaS Providers, and Salesforce Need to Do Differently
Salesforce knew its platform was being systematically exploited. Charter's customers are paying the price. The gaps that enabled these intrusions are largely the same. Here's what enterprises and platform providers should have done and still need to do.
Agentic AIPenetration Testing
Building Hackbots: Jason Haddix on Why AI Won't Replace Pentesters, But It Will Change How They Work
At CYBR.HAK.CON, Jason Haddix showed how AI-powered "hackbots" are helping offensive security teams scale reconnaissance, analyze complex applications, and uncover real vulnerabilities, while proving that human expertise remains the deciding factor.
Deepfakes
Trust in the Age of AI: Why Community May Be Our Last Line of Defense
AI may be making deception easier, but Dustin "Wirefall" Dykes argues that human connection -- not technology -- is the most effective defense against a future where reality itself becomes increasingly difficult to verify.
Identity SecuritySaaS
ShinyHunters' Charter Breach Exposes the Identity-to-SaaS Gap
A voice phishing call compromised one identity. Millions of records followed. The Charter breach is the latest evidence that the gap between identity security and SaaS governance isn't a gap enterprises can afford to keep ignoring.
Podcasts & Video
See all
Podcast
CYBR.SEC.CAST Episode 69: Crush Security
We are joined by Crush Security co-founders Joshua Jones and Josh Johnson, plus CISO John Barrow. They discuss navigating an increasingly complex vendor ecosystem where tool sprawl, contract complexity, reseller incentives, and budget pressure make buying harder. (Sponsored by Crush Security)
Podcast
CYBR.HAK.CAST Episode 14: Tim Medin
In this episode, hosts Michael Farnum and Phillip Wylie sit down with penetration tester and Red Siege founder Tim Medin to talk about turning attacker tactics into practical defensive wins.
Video
OT Resilience in Action: A Framework for Utilities
Podcast
CYBR.HAK.CAST Episode 13: Winn Schwartau
Winn Schwartau argues that the biggest threat facing defenders isn’t just technical, but cognitive: overwhelming information flows that push humans into “mental DDoS.” He has introduced the concept of “critical ignoring” as a prerequisite to critical thinking.
Video
Enhancing OT Cybersecurity in Maritime Environments
Video
The Executive Imperative: Acting Decisively When You Need to Defend OT
Video
Agentic AI in OT: The Ultimate Insider Threat
Sponsored
Sponsored