Latest
NIST Declares “Inbox Zero,” Pulls Back on CVE Enrichment. Now Enterprise Security Teams Must Fill the Gap
An analysis of the National Vulnerability Database's shift to risk-based triage and what it actually means for the people patching systems (first of a two-part analysis)
Vercel Breach Raises Supply-Chain Risk: What Security Teams Must Do Now
Vercel confirmed unauthorized access to internal systems and is investigating with incident response support, and despite limited details, security teams should assume credential exposure and act immediately.
#FollowFriday: Authors Who Entered the AI Storm And Chose Reason Over FUD
The hype over Anthropic Mythos and AI in general has been super-heated. The cybersecurity voices who calmly unpack the details are the ones to follow. Here are some examples.
CYBR.SEC.MEDIA Newsletter Goes Weekly, Mythos Creates Chaos and Cybersecurity Does Wrong By The Kids
There's a lot going on in cybersecurity. Too much to cram into a bi-weekly newsletter. So we're raising the frequency.
Poltergeists in the Pipeline: They're Heeere — In Your Ungoverned AI Outputs
A new Dbt Labs survey of 363 data practitioners finds 72% are sprinting into AI-assisted coding while fewer than one in four invest in the pipeline controls that keep those outputs secure — and the practitioners closest to the data are more worried about it than their bosses.
The Kids Would Be Alright -- If Cybersecurity Would Stop Failing Them
Fergus Hay argues that cybersecurity isn’t facing a talent shortage: it’s failing to recognize that the next generation of hackers is already here, hiding in plain sight inside gaming culture.
Gaming Isn’t a Distraction. It’s Cybersecurity Training in Disguise
From Minecraft servers to cryptographic puzzles, Fergus Hay explains why gaming is one of the most powerful—and misunderstood—training grounds for the next generation of cybersecurity talent.
CYBR.HAK.CAST Episode 12: Fergus Hay of The Hacking Games
Phil Wylie and Michael Farnum talk with Fergus Hay about how the cybersecurity industry is missing a huge opportunity by overlooking gamers and young, neurodiverse problem-solvers who already have the mindset to become the next generation of ethical hackers.