This month in security with Tony Anscombe – January 2026 edition
The year got off to a busy start, with January offering an early snapshot of the challenges that (not just)...
Month: January 2026
DynoWiper update: Technical analysis and attribution
In this blog post, we provide more technical details related to our previous DynoWiper publication. Key points of the report:...
We Keep Hearing the Same Question: Morpheus (AI SOC) vs. Traditional SOAR
In 2025, we spent a lot of time with enterprise SOC teams, CISOs, and large MSSPs. Discovery calls. Technical deep...
This Week in Scams: Dating App Breaches, TikTok Data, Grubhub Extortion
This week in scams, three headlines tell the same story: attackers are getting better at manipulating people, not just breaking into...
Bridging Compliance And Cybersecurity In Financial Reporting
Bridging Compliance And Cybersecurity In Financial Reporting Guest Article by Marcie Clark ,the Director of Regulatory Services for Donnelley Financial Solutions Although financial compliance...
How secure are secrets vaults in cloud environments
Are You Overlooking Non-Human Identities in Cloud Security? Machine identities have emerged as critical components that require immediate attention and...
What future trends will define Agentic AI governance
How Are Non-Human Identities Shaping Cloud Security? What does it take to bridge the gap between security and R&D teams...
NDSS 2025 – Silence False Alarms
Session 11A: Blockchain Security 2 Authors, Creators & Presenters: Qiyang Song (Institute of Information Engineering, Chinese Academy of Sciences; School...
Randall Munroe’s XKCD ‘Conic Sections’
via the comic artistry and dry wit of Randall Munroe, creator of XKCD Permalink *** This is a Security Bloggers...
After criticism, Microsoft promises big improvements for Windows 11
Windows developers are now focusing on improving the core experience in Windows 11, with Microsoft reportedly redirecting resources to address...
The Complete Guide to Authentication Implementation for Modern Applications
Authentication is the foundation of application security, yet it's one of the most frequently mishandled aspects of software development. With...
Agentic AI and Non‑Human Identities Demand a Paradigm Shift In Security: Lessons from NHIcon 2026
In the race to innovate, software has repeatedly reinvented how we define identity, trust, and access. In the 1990's, the...
Researchers Uncover Chrome Extensions Abusing Affiliate Links and Stealing ChatGPT Access
Cybersecurity researchers have discovered malicious Google Chrome extensions that come with capabilities to hijack affiliate links, steal data, and collect...
China-Linked UAT-8099 Targets IIS Servers in Asia with BadIIS SEO Malware
Cybersecurity researchers have discovered a new campaign attributed to a China-linked threat actor known as UAT-8099 that took place between...
SoundCloud Data Breach Exposes Nearly 30M User Accounts
Image: appshunter.io (Unsplash) If you’ve ever had a SoundCloud account, now might be a good time to double-check your security...
