Default Configurations, Dangerous Defaults, and ServiceNow's AI Agent Discovery
New research highlights the gap between how technology is designed to work and how it's actually safely operated.
Article
AI-Powered Espionage Disclosure: Industry Questions Value of Anthropic's Postmortem
Anthropic's disclosure lacked important elements, which explains the professional criticism that erupted despite the potmortem's potential significance. And while the post is marketing for Anthropic, it also provides strategic threat context for security executives.
The Real AI Threat and the Blurred Lines Between Actual Risk and Marketing Hype
AI-driven attacks are real, and they’re occurring. But to paraphrase cyberpunk writing pioneer William Gibson, “The future is already here – it's just not evenly distributed."
Forrester's 2026 Cybersecurity Predictions
2026 will bring CISOs and security professionals potential AI breaches, tight infrastructure regulation, a new European Union vulnerability database, quantum security growth, and merger and acquisition shifts.
F5 CEO Provides Update on Status of Nation-State Intrusion
The breach has triggered a reckoning with security blind spots that extend far beyond one company's network.
Cybersecurity's Talent Paradox: Why So Many Open Jobs Likely Coexist with Career Chaos
The field desperately needs people, but neither employers nor job seekers seem yet to fully align on what skills those people should possess in an AI-dominated future.
Top 10 Cybersecurity-Related Jobs with the Highest Projected Demand
We've examined the available cybersecurity job demand data and projected job growth based on our synthesis of authoritative sources.
HOU.SEC.CON.: Cyberwarfare Likely a Decisive Element in Potential Taiwan Conflict
In a potential hot conflict over Taiwan sovereignty, cyber operations would be at the forefront, and aimed at slowing the U.S. military response, targeting military logistics systems, cloud-based sustainment platforms, naval communications, and intelligence, surveillance, and reconnaissance systems.
Cloud Security Alliance’s SSCF Framework Hopes to Set a SaaS Security Baseline
The SaaS Security Capability Framework, released by the CSA's SaaS Working Group provides an industry-standard set of baselines, customer-facing security controls for SaaS platforms.
How NIST's AI Control Overlays Interface with the Coalition for Secure AI
The National Institute of Standards and Technology's new Control Overlays for Securing AI Systems and the Coalition for Secure AI provide much-needed standardization for AI security across government and industry.
The Salesloft Drift Breach Expose Critical Flaws in OAuth Implementations
For enterprise security teams already struggling with SaaS sprawl and third-party risk management, the Drift breach is a reminder that OAuth tokens—designed to enhance security by eliminating password sharing—are high-value targets.
Successfully Managing Machine Identities in an AI-Driven World
Unlike human identities, which grow linearly as the workforce expands, machine identities proliferate exponentially as organizations embrace automation, microservices architectures, and AI-powered tools. This raises new identity governance challenges.
Analysis: How to Bulletproof a Security Program Against Vendor Consolidation
Most, eventually all, CISOs will be forced to endure the loss of a cherished vendor and promising roadmap due to an acquisition.
Bolster Defense-in-Depth Strategies as Collaboration Platforms Face Escalating Threats
It’s their necessity for such accessibility that makes secure configuration especially challenging—and when a zero-day vulnerability emerges, the damage can be swift.
The AI Security Job Boom? New Roles Emerge as Cyber Threats Evolve
Organizations are scrambling to fill specialized roles that blend AI expertise with traditional security knowledge, offering unprecedented opportunities for professionals willing to master this convergence.
AI Is Here: How Organizations Can Prepare for an AI-Driven Security Future
While the majority of organizations move to embrace AI in their security operations programs, not all will be successful.