Let's Clear The Air
This week: HOU.SEC.CON is now CYBR.SEC.CON, Cyber Sunday is now CYBR.Signal, and Chris Wysopal is done waiting for the industry to fix itself.
This week: HOU.SEC.CON is now CYBR.SEC.CON, Cyber Sunday is now CYBR.Signal, and Chris Wysopal is done waiting for the industry to fix itself.
In this episode of CYBR.HAK.CAST, hosts Michael and Phil speak with Scott Deluke of Abnormal AI live from the inaugural CYBR.HAK.CON.!
In this episode of CYBR.SEC.CAST, hosts Michael and Sam sit down with Alastair Patterson, CEO of Harmonic Security, to discuss the rapid evolution of AI in the enterprise.
Security teams are caught between a rapidly expanding attack surface and accelerating adversarial use of AI. Thirty-two percent of security teams see automated, AI-fueled attacks as the single greatest driver reshaping their offensive security strategies.
This week: How AI is reshaping security vendor business models, disrupting cybersecurity procurement, exposing governance gaps, fueling new trust debates, and further complicating persistent threats like ransomware and Microsoft insecurity.
A trio of fresh flaws highlights the heightened vulnerability of the entire enterprise software stack, as the combination of automated scanning, the availability of exploit code, and patching delays is cited as a factor in the rise of vulnerability exploitation as a preferred entry point.
Also: The CYBR.SEC.CON call for papers has been extended to June 14. We hope to see you there!
AI security scanners promise to reduce AppSec workload, but Contrast Labs' testing shows they systematically multiply it, turning a $315 API fee into an estimated $128,000 triage burden, before fixing a single vulnerability.
In this week's CYBR.SEC.Media newsletter: preview of CYBR.HAK.CON, why traditional Level 1 SOC operations are breaking down under modern threat pressure, and where cybersecurity professionals can find mental health support built for the realities of the job.
Federal agencies and tech providers are accelerating AI security programs but organizations responsible for water systems, emergency services, and local government operations are struggling to keep pace. (Article includes an infographic to help security teams understand the operational challenges.)
Executives think their teams are fixing critical vulnerabilities. Their security practitioners disagree by 42 percentage points.
The hype over Anthropic Mythos and AI in general has been super-heated. The cybersecurity voices who calmly unpack the details are the ones to follow. Here are some examples.
A new Dbt Labs survey of 363 data practitioners finds 72% are sprinting into AI-assisted coding while fewer than one in four invest in the pipeline controls that keep those outputs secure — and the practitioners closest to the data are more worried about it than their bosses.
The AI-driven “vulnerability storm” isn’t just a technical problem—it’s a human breaking point, and the Mythos report’s authors are right to elevate burnout from a side issue to a frontline risk.
A coalition of cybersecurity heavyweights has issued an emergency playbook for surviving the AI-driven “vulnerability storm” — and it makes clear that speed, automation, and collective defense are now existential requirements.