Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

How AI Is Changing What Security Teams Can Actually Do | Nancy Phillips, Ensemble Health Partners

Threat actors used to need days or weeks to exploit a vulnerability. Now AI lets them do it in seconds. Most security teams are already buried. Too many tools, too many alerts, manual processes that can't keep pace, and break-glass changes that get made and forgotten. Keeping everything configured and optimized correctly is a full-time job on its own. Nancy Phillips, Chief Information Security Officer at Ensemble Health Partners: "I want my teams doing the innovative stuff. Not the mundane, repeatable stuff.".

Businesses have NO IDEA how bad AI attacks can be

There are two types of companies: those who have been compromised and those who will be. Mid and small businesses are walking into this reality without understanding what AI has changed. On The Cybersecurity Defenders Podcast, David Chernitzky, CEO and co-founder of Armour Cybersecurity, explains why the gap between how large organizations understand AI-driven threats and how smaller ones do is widening fast.

From PentestGPT to production: The state of AI-assisted offensive security with Charles Grandjean

Join us for this week's Defender Fridays as Charles Grandjean, CTO and Co-founder at Hexiagon AI, breaks down where AI-assisted pen testing actually stands today and what it means for both red teams and defenders. At Defender Fridays, we delve into the dynamic world of information security, exploring its defensive side with seasoned professionals from across the industry. Our aim is simple yet ambitious: to foster a collaborative space where ideas flow freely, experiences are shared, and knowledge expands.

Just vibe code it...

Sometimes unlimited tokens and rippin' guitar riffs can't solve every problem. The best builders know what NOT to build. Vibe coding might cut down on time, but that's only a fraction (20%) of the total software lifecycle cost. The other 70–80%? Maintenance, security patches, compliance updates. The slow grind of keeping it alive in production. When it comes to something as complex and critical as keeping your security airtight, depth wins over speed every time.

New in ggshield 1.51: Codex Hooks, MCP Discovery, and SLSA Provenance

ggshield 1.51 is here with better support for AI-powered development and browser-less environments. This release adds Codex hook support, MCP server detection across Claude and Cursor, and `ggshield auth login --method oob` for SSH sessions and headless servers. It also strengthens trust in the ggshield supply chain with GitHub Artifact Attestations for release binaries, improves plugin management through your authenticated GitGuardian instance, adds a `vscode` alias for Copilot hook installation, and shows workspace ID in `ggshield api-status`.

Charlotte AI AgentWorks: Build Your Security Workforce Demo

Today’s adversaries move at the speed of AI, so defenders need to reason, decide, and act faster across every stage of security operations. Meet Charlotte AI AgentWorks, a no-code agent builder that enables teams to create mission-ready AI agents directly inside the CrowdStrike Falcon platform.

Falcon Shield: Securing GitHub Enterprise

Learn how CrowdStrike Falcon Shield helps organizations harden their GitHub Enterprise environments against state-sponsored adversaries like FAMOUS CHOLLIMA. A DPRK-nexus threat actor actively targeting developer environments in 2026. This demo showcases how Falcon Shield continuously monitors GitHub Enterprise for misconfigurations, exposed CI/CD secrets, over-permissioned tokens, and other security risks that adversaries exploit to launch supply chain attacks.