before

Why East-West Visibility Matters for Grid Security

AndyC 18 March 2026

Electric power infrastructure is becoming more connected than ever before. Organizations responsible for operating the Bulk Electric System (BES) are...

Russia-linked APT28 exploited MSHTML zero-day CVE-2026-21513 before patch

AndyC 3 March 2026

Russia-linked APT28 exploited MSHTML zero-day CVE-2026-21513 before patch Pierluigi Paganini March 02, 2026 Russia-linked APT28 reportedly exploited MSHTML zero-day CVE-2026-21513...

Beyond the CLI: 5 Governance Questions Every CISO Must Ask Before Deploying Claude Code

AndyC 27 February 2026

Beyond the CLI: 5 Governance Questions Every CISO Must Ask Before Deploying Claude Code As CISOs, we’ve spent the last...

Using threat modeling and prompt injection to audit Comet

AndyC 21 February 2026

Before launching their Comet browser, Perplexity hired us to test the security of their AI-powered browsing features. Using adversarial...

From Exposure to Exploitation: How AI Collapses Your Response Window

AndyC 20 February 2026

We’ve all seen this before: a developer deploys a new cloud workload and grants overly broad permissions just to keep...

February’s Patch Tuesday release fixes 59 flaws, including 6 being exploited

Microsoft’s Patch Tuesday updates: Keeping up with the latest fixes

AndyC 14 February 2026

Long before Taco Tuesday became part of the pop-culture vernacular, Tuesdays were synonymous with security — and for anyone in...

Reynolds ransomware uses BYOVD to disable security before encryption

AndyC 12 February 2026

Reynolds ransomware uses BYOVD to disable security before encryption Pierluigi Paganini February 11, 2026 Researchers discovered Reynolds ransomware, which uses...

Hackers abused React Native CLI flaw to deploy Rust malware before public disclosure

AndyC 4 February 2026

Hackers abused React Native CLI flaw to deploy Rust malware before public disclosure Pierluigi Paganini February 03, 2026 Hackers exploit...

Restrictive H‑1B policies drive tech talent back to India, reshaping global IT

He Who Controls the Key Controls the World – Microsoft “Often” Provides BitLocker Keys to Law Enforcement

AndyC 28 January 2026

Before heading off to battle, King Arthur gives Lancelot the key to Guinevere’s chastity belt with solemn instructions: If Arthur...

NDSS 2025 – Rethinking Trust In Forge-Based Git Security

We’ve Reached the “Customers Want Security” Stage, and AI Is Listening

AndyC 23 January 2026

I’ve seen this movie before. That’s why a recent LinkedIn post by Ilya Kabanov stopped me mid-doomscroll. Kabanov described how...

before

Why East-West Visibility Matters for Grid Security

Russia-linked APT28 exploited MSHTML zero-day CVE-2026-21513 before patch

Beyond the CLI: 5 Governance Questions Every CISO Must Ask Before Deploying Claude Code

Using threat modeling and prompt injection to audit Comet

Microsoft’s Patch Tuesday updates: Keeping up with the latest fixes

Reynolds ransomware uses BYOVD to disable security before encryption

Hackers abused React Native CLI flaw to deploy Rust malware before public disclosure

Face value: What it takes to fool facial recognition

Cyber fallout from the Iran war: What to have on your radar

Sednit reloaded: Back in the trenches

What cybersecurity actually does for your business

How SMBs use threat research and MDR to build a defensive edge

Protecting education: How MDR can tip the balance in favor of schools

Donate Bitcoin to this address

Donate Ethereum to this address

Is Wix Secure Enough? Understanding the Next Layer of Protection for Growing Websites

6 ways Gemini supercharges Google Sheets

Your new on-demand Android memo machine

Exposed Ollama Servers: Security Risks of Publicly Accessible LLM Infrastructure

News alert: Orchid Security brings Zero-Trust to AI Agent identities, earns Gartner recognition

Donate Bitcoin to this address

Donate Ethereum to this address

You may have missed