What makes Non-Human Identities safe for companies
Have You Ever Considered How Securing Non-Human Identities Could Transform Your Organization? Non-Human Identities (NHIs) security is increasingly crucial...
AndyC
Andy Curtis is an award-winning security consultant, researcher and public speaker. He has been working in the computer security industry since the early 1990s, having been employed by state and federal government, leading healthcare and banking providers across three continents. He has given talks about computer security for some of the world’s largest companies, worked with law enforcement agencies on investigations into hacking groups, and is a regular voice on TV and radio explaining IT security threats.
[un]prompted 2026 – The Hard Part Isn’t Building The Agent: Measuring Effectiveness
Author, Creator & Presenter: Joshua Saxe, Al Security Technical Lead, Meta Our thanks to prompted for publishing their Creators,...
The developer credential economy: Why exposure data is the new front line in the supply chain war
Recent supply chain attacks have highlighted an urgent need for organizations to shift from a reactive security posture to...
Everything I Learned About Harness Engineering and AI Factories in San Francisco (April 2026)
I spent the last week of March 2026 in San Francisco talking to CTOs, CPOs, and engineering leaders from...
North Korea–linked hackers drain $285M from Drift in sophisticated attack
North Korea–linked hackers drain $285M from Drift in sophisticated attack Pierluigi Paganini April 03, 2026 Drift lost $285M in a...
CrystalX RAT: new MaaS malware combines spyware, stealer, and remote access
CrystalX RAT: new MaaS malware combines spyware, stealer, and remote access Pierluigi Paganini April 03, 2026 CrystalX RAT, a new...
Randall Munroe’s XKCD ‘Amperage’
via the comic artistry and dry wit of Randall Munroe, creator of XKCD Permalink *** This is a Security...
Meet Vespasian. It Sees What Static Analysis Can’t.
Praetorian is excited to announce the release of Vespasian, a probabilistic API endpoint discovery, enumeration, and analysis tool. Vespasian...
A core infrastructure engineer pleads guilty to federal charges in insider attack
Critically, he argued that the use of various tools should be instantly flagged as concerning. “Instrument Task Scheduler, PsExec, PsPasswd,...
China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing
A China-aligned threat actor has set its sights on European government and diplomatic organizations since mid-2025, following a two-year period of minimal...
Microsoft Details Cookie-Controlled PHP Web Shells Persisting via Cron on Linux Servers
Ravie LakshmananApr 03, 2026Linux / Server Hardening Threat actors are increasingly using HTTP cookies as a control channel for PHP-based web...
AI Security Risks: Proofpoint CSO Ryan Kalember, Live at RSAC 2026
Watch the Fireside Below, or Click HERE:Tech Edge hosted a fireside chat on March 25 at RSA Conference 2026 in...
15 Top Cybersecurity CEOs On The Future Of AI Agents: RSAC 2026
CRN speaks with CEOs at leading cybersecurity vendors—including CrowdStrike, SentinelOne and Netskope—about where they see AI agents heading next and...