Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

As organizations increasingly rely on Microsoft Teams for internal and external collaboration, the platform’s chat and file-sharing capabilities have become central to daily operations. However, speed and flexibility come with risk. User-managed collaboration tools can create challenges in maintaining control over data access and enforcing compliance with organizational sharing and usage policies.

Two new features this week, both pushing in the same direction: make certificate lifetimes someone else’s problem.

SCA tools often generate multiple CVEs for the same dependency, creating unnecessary tickets and slowing remediation. Aggregating those findings into a single fix helps AppSec teams reduce ticket sprawl and align security work with how developers actually resolve vulnerabilities.

Cloudflare’s AI Security for Apps detects and mitigates threats to AI-powered applications. Today, we're announcing that it is generally available. We’re shipping with new capabilities like detection for custom topics, and we're making AI endpoint discovery free for every Cloudflare customer—including those on Free, Pro, and Business plans—to give everyone visibility into where AI is deployed across their Internet-facing apps.

Storyboard sections are here! Have you ever built a Tines story and thought, “How am I going to explain this so that anyone can understand it right away?” We are excited to introduce the following ways to instantly bring visual clarity to your workflows.

SaaS uptime doesn’t guarantee you can recover fast or restore the collaboration context you need. The Shared Responsibility model/Limited Liability model gap shows up as money lost through rework, downtime, compliance drag, and trust friction. It’s usually driven by short retention, missing metadata after exports or migrations, untested restores and recovery copies that are not separated from production admins.

When an NHI is compromised, who do you call? GitGuardian NHI ownership eliminates the guessing game with automatic accountability.

Phone scams are nothing new, but a recent report from National Trading Standards highlights a shift in how they work.

Most organizations need both a cyber-focused TPRM platform and a compliance-focused TPRM platform, but it can be difficult to see where one tool ends and the other begins. If you're currently evaluating TPRM platforms, this guide clarifies the differences between the two.

There’s no way to stop the clock in cybersecurity for InfoSec teams, but you can find ways to manufacture a better way to spend their time. Tiering does just that, prioritizing your team’s most finite resource. But to start, you need better data, and most importantly, better logic to redefine how you work.