News

Upcoming Events

Runtime Security & SecOps with Isovalent + Splunk workshop
2026-06-24 13:00 | 2026-06-24 16:00
Cisco Penn 1 Office - Kernel-level observability powered by eBPF We will showcase the benefits across security observability and response, offering tools for proactive threat detection, incident investigation and compliance monitoring.
...Read more

Women in Federal Lounge
2026-06-30 0900 | 2026-06-30 1600
AWS Summit DC. Women in Federal Technology events will bring forward important community discussions and create an engaging and organic networking environment.
...Read more

Prevent AI-Driven Attacks with Agentic Endpoint Security
2026-07-16 12:00 | 2026-07-16 13:00
Join this session and live demo to discover how Agentic Endpoint Security (AES), built on Koi technology, secures the agentic ecosystem, neutralizes stealthy behavior in real time and breaks the attack lifecycle of the most advanced AI-driven threats.
...Read more

Black Hat USA 2026
2026-08-01 | 2026-08-06
Mandalay Bay / Las Vegas
...Read more

All times are Eastern Time (GMT/UTC -4h)

Cyber Insurance Rates Are Dropping, but Exclusions Widen
Some policies may not provide coverage for social engineering attacks like ClickFix....Read more

Coding Gaffe Exposes Microsoft 365 Accounts to Widespread Takeover
A disabled security setting meant to protect authentication paved the way for attackers to steal logins and data...Read more

One-Click GitHub Dev Attack Lets Attackers Steal Full GitHub OAuth Tokens
Researchers disclosed a one-click attack via Microsoft VS Code that makes it possible to steal a user's GitHub token....Read more

The Intersection of Encryption and AI
Bruce Schneier contributed a column on June 20, 2010, warning about cryptography’s inability to secure modern networks...Read more

AI Agents at Work 2026: Securing the agentic enterprise
stark divide between exec confidence in AI agents and how employees actually use them creating a concerning security gap...Read more

PAN-OS GlobalProtect Authentication Bypass (CVE-2026-0257) Under Active Exploitation
recently disclosed medium-severity security flaw impacting PAN-OS and Prisma Access has come under active exploitation...Read more

OpenAI Codex Authentication Tokens Stolen in codexui-android npm Supply Chain Attack
new malicious supply chain campaign targeting developers using OpenAI Codex through a legitimate-looking remote web UI...Read more

145 AI laws passed in 2025 and privacy teams aren’t catching a break
AI risk management requires visibility into how AI is used and what data it processes....Read more

Why IAM Matters: Benefits, Challenges, and Common Pitfall
Organizations choosing comprehensive IAM reduce security incident response time and improve audit readiness....Read more

Outlook has an image problem
Microsoft says classic client may lose embedded pictures thanks to wrapping bug...Read more

AI-generated reporting: Lessons learned from Cisco Talos Incident Response
Talos IR identified four ways this probabilistic nature manifests itself during report content generation...Read more

Cisco used AI to write security incident reports, with mixed results
You’ll need a lot of detailed prompts to get solid output - and even then it may have errors and typos...Read more

Microsoft 365 users targeted by new phishing threat that bypasses MFA
Microsoft 365 access tokens are being targeted by an emerging Phishing-as-a-Service (PhaaS) platform called Kali365...Read more

FBI warns Kali365 phishing kit is stealing Microsoft OAuth tokens at scale
MFA? No problem, says crimeware that tricks users into handing attackers the keys to M365...Read more