New Research: Hackers Are Using AI-Written Code to Spread Malware
McAfee Labs has uncovered a widespread malware campaign hiding inside fake downloads for things like game mods, AI tools, drivers,...
AndyC
Andy Curtis is an award-winning security consultant, researcher and public speaker. He has been working in the computer security industry since the early 1990s, having been employed by state and federal government, leading healthcare and banking providers across three continents. He has given talks about computer security for some of the world’s largest companies, worked with law enforcement agencies on investigations into hacking groups, and is a regular voice on TV and radio explaining IT security threats.
AI Wrote This Malware: Dissecting the Insides of a Vibe-Coded Malware Campaign
Authored by Aayush Tyagi Background The term ‘Vibe coding,’ first coined back in February of 2025 by OpenAI researchers, has...
How to Become a CISO in 2026: The Complete Career Roadmap
How to Become a CISO in 2026: The Complete Career Roadmap The definitive guide from someone who has done it...
U.S. CISA adds Microsoft SharePoint and Zimbra flaws to its Known Exploited Vulnerabilities catalog
U.S. CISA adds Microsoft SharePoint and Zimbra flaws to its Known Exploited Vulnerabilities catalog Pierluigi Paganini March 18, 2026 U.S....
Smashing Security podcast #459: This clever scam nearly hijacked a tech CEO’s Apple ID
In episode 459 of Smashing Security, we dive into a chillingly clever account takeover attempt targeting WordPress co-founder Matt Mullenweg...
Colorado Moves to Revise Its Landmark AI Law After Industry Pushback
Colorado lawmakers are preparing to revise one of the first comprehensive artificial intelligence laws in the United States, following...
How do NHIs drive innovation in cybersecurity
Are machine identities key to advancing cybersecurity measures? Organizations are increasingly turning to advanced technologies to bolster their defense...
Proofpoint Pursues FedRAMP High Authorization Process for Collaboration Security
Milestone to expand Proofpoint’s existing FedRAMP Moderate authorization and commitment to protecting mission-critical federal and defense environments SUNNYVALE, Calif. – March 18, 2026 – Proofpoint, Inc., a leading cybersecurity and compliance...
The SOAR Ceiling: Why Playbook Automation Has Hit Its Structural Limits
For over a decade, the SOAR model has been straightforward: hire specialized architects, build playbooks for every alert type,...
What Golden Dome Requires from Federal DevSecOps Teams
The threat environment facing the United States is growing more complex and interconnected. Executive Order 14186 identifies the threat...
Researchers warn of unpatched, critical Telnetd flaw affecting all versions
Researchers warn of unpatched, critical Telnetd flaw affecting all versions Pierluigi Paganini March 18, 2026 CVE-2026-32746 is a critical flaw...
Menlo Security Adds Platform to Secure AI Agents
Menlo Security today launched a platform to secure artificial intelligence (AI) agents running in a browser that accesses a...
Randall Munroe’s XKCD ‘SNEWS’
via the comic artistry and dry wit of Randall Munroe, creator of XKCD Permalink *** This is a Security...
How to Implement Just-in-Time (JIT) User Provisioning with SSO and SCIM
Just-in-Time (JIT) provisioning creates users automatically during SSO login. SCIM provisioning creates and manages users using standardized APIs before...
Everyone Is Deploying AI Agents. Almost Nobody Knows What They’re Doing.
One constant I hear from CISOs I speak with is that AI agents are not coming. They are already...
