4 Best Free VPNs
In a world of targeted ads and intrusive malware, virtual private networks (VPNs) are one of the best ways to...
Year: 2026
Coding Agents Widen Your Supply Chain Attack Surface
The software supply chain attack has been one of the most studied threat vectors in enterprise security. However, most of the defensive architecture built around it was designed with a specific attacker model in mind — one where, for instance, the entity making decisions inside the build pipeline was an actual engineer following a process. Think of a malicious actor looking for a weak point in the dependency chain such as a compromised package,...
Which Came First: The System Prompt, or the RCE?
During a recent penetration test, we came across an AI-powered desktop application that acted as a bridge between Claude...
Cloud workload security: Mind the gaps
Business Security As IT infrastructure expands, visibility and control often lag behind – until an incident forces a reckoning Tomáš...
Quantum-Hardened Granular Resource Authorization Policies
The big shift from Apple ID to Apple Account Ever wonder why that little button on your screen suddenly...
Mandiant Global Median Dwell Time Deteriorates from 11 to 14 Days
Oh snap. My single most important cybersecurity metric deteriorated again. In the M-Trends report for calendar year 2024, Mandiant’s global median...
Data breach at Dutch Ministry of Finance impacts staff following cyberattack
Data breach at Dutch Ministry of Finance impacts staff following cyberattack Pierluigi Paganini March 24, 2026 Dutch Ministry of Finance...
Why trust in Agentic AI security is essential?
How Can Organizations Build Trust in Agentic AI Security Systems? Can the management of Non-Human Identities (NHIs) enhance the...
How do Non-Human Identities manage access?
Are You Overlooking the Crucial Role of Non-Human Identities in Access Management? Managing Non-Human Identities (NHIs) is no longer...
TeamPCP Backdoors LiteLLM Versions 1.82.7–1.82.8 Likely via Trivy CI/CD Compromise
TeamPCP, the threat actor behind the recent compromises of Trivy and KICS, has now compromised a popular Python package named...
US Bans New Foreign-Made Routers, Citing ‘Unacceptable’ Security Risks
Image: Stephen Phillips/Unsplash Your Wi-Fi router just became the latest battlefield in a growing war over cybersecurity and national control....
Sumo Logic Expands Dojo AI With SOC Analyst Agent That Recommends Actions, Not Just Alerts
Sumo Logic is pushing its Dojo AI platform further into decision territory at RSAC 2026, announcing expanded AI agent...
Compromised litellm PyPI Package Delivers Multi-Stage Credential Stealer
This morning, the widely used Python package litellm, a popular abstraction layer for interacting with large language models (LLMs),...
Training effective models without the annotation budget
The problem: human annotation is expensive Ever since BERT, NLP practitioners have enjoyed a golden age of text classification...
The Trivy Supply Chain Compromise: What Happened and Playbooks to Respond
The Trivy Supply Chain Compromise: What Happened and Playbooks to Respond On March 19, 2026, a threat actor known...
