The Visibility Crisis Behind FortiBleed, AI, and Modern Cyber Risk
FortiBleed shows why visibility matters. Also this week: CISA rewrites vulnerability management rules, enterprises struggle to understand AI usage, cybersec comms luminary Lucy Millington tackles communications overload, and more.
Related
FortiBleed Is Bigger Than A Fortinet Password Leak
Fresh analysis suggests FortiBleed is not merely a Fortinet credential exposure event but a large-scale identity compromise campaign that turns perimeter devices into launchpads for deeper attacks against Active Directory, LDAP, and internal enterprise infrastructure.
Remembering Dr. Eric Cole, ShinyHunters Exposes Identity-to-SaaS Gap, and Why Community is Our Last Defense Against Deepfakes
Also: The CYBR.SEC.CON call for papers has been extended to June 14. We hope to see you there!
Agentic AI Is Pushing Zero Trust Into Its Next Phase
Zero Trust was designed to control people and machines. The rise of autonomous AI agents is forcing security teams to extend those same principles to software capable of making decisions and taking action on its own. (Includes infographic)
After the Vishing Call: What Enterprises, SaaS Providers, and Salesforce Need to Do Differently
Salesforce knew its platform was being systematically exploited. Charter's customers are paying the price. The gaps that enabled these intrusions are largely the same. Here's what enterprises and platform providers should have done and still need to do.
Latest
More Noise, More Risk: Reframing Internal Comms Overload
If you work in SecOps more noise equals more risk. The more alerts you have, the harder it is to find the ones that need immediate action. Yet in my experience, this idea of more noise being detrimental to understanding, does not stretch beyond the SOC into business communications.
FortiBleed Is Bigger Than A Fortinet Password Leak
Fresh analysis suggests FortiBleed is not merely a Fortinet credential exposure event but a large-scale identity compromise campaign that turns perimeter devices into launchpads for deeper attacks against Active Directory, LDAP, and internal enterprise infrastructure.
Securing Enterprise AI Usage Goes Far Beyond Chatbots
Chatbots created data leakage concerns. Agentic AI introduces autonomous action, persistent context, and delegated decision-making, creating a new category of security and governance challenges that most organizations are only beginning to understand. (Sponsored by Harmonic Security)
You Don't Control AI Because You Barely See It: Why Usage Intelligence Is Becoming the Next Enterprise Security Battleground
Security teams can't govern AI they can't see. As employees adopt hundreds of AI tools, agents, and assistants, a new challenge is emerging: understanding how AI is being used inside the enterprise. (Sponsored by Harmonic Security)