%term

Is your vendor data a source of insight-or just more noise?

Feb 4, 2026 By Bitsight In BitSight

For many risk and compliance leaders, the reality of Third-Party Risk Management (TPRM) is a mountain of disorganized spreadsheets, overflowing inboxes, and endless PDFs. When an audit is seven days away or the Board asks for a risk posture update, documentation overload becomes a liability. In this video, we explore the transition from vendor chaos to risk clarity. The Challenge.

View Video

BitSight

Read more about Is your vendor data a source of insight-or just more noise?

Cyber Risk in 2026: From Today's Pressures to Tomorrow's Threats

Feb 3, 2026 By Stephen Boyer In BitSight

As we enter 2026, security and risk leaders are navigating a landscape that is both increasingly complex and strikingly familiar. At Bitsight, we have spent the last year listening to our customers, synthesizing insights from the field, and preparing for what lies ahead. In a recent webinar with my colleague Vanessa Jankowski, we explored the forces shaping cyber risk in the year to come.

Read Post

BitSight

Read more about Cyber Risk in 2026: From Today's Pressures to Tomorrow's Threats

Critical Vulnerability Alert: CVE-2025-40551 in SolarWinds Web Help Desk

Feb 3, 2026 By Emma Stevens In BitSight

A critical vulnerability (CVE-2025-40551) has been identified in SolarWinds Web Help Desk, a widely used IT service management platform deployed across enterprise and public sector environments to manage support tickets, assets, and internal workflows. Successful exploitation could allow an unauthenticated attacker to execute arbitrary commands on the underlying host system.

Read Post

BitSight

Read more about Critical Vulnerability Alert: CVE-2025-40551 in SolarWinds Web Help Desk

Security Control Management: The New Mandate for Risk-Driven Security

Feb 3, 2026 By CP Morey In Reach Security

Article updated and refreshed February 3rd, 2026. Because the tools you’ve deployed aren’t the same as the ones you’re using. Security teams today aren’t short on tools. Most environments are packed with security controls—spanning email, identity, network, endpoint, and cloud. But despite this abundance, risk remains stubbornly high. Attacks continue to land. Exposure persists. The problem isn’t the absence of controls. It’s the lack of control over the controls.

Read Post

Reach Security

Read more about Security Control Management: The New Mandate for Risk-Driven Security

What Are Moltbot and Moltbook? Why the Agentic AI Frenzy Is a Security Trap

Feb 3, 2026 By SecurityScorecard In SecurityScorecard

AI agents aren’t taking over. But agentic AI without security is a real problem. Over the last few days, Moltbot and its social platform Moltbook have surged across headlines and social media. Some are calling it a glimpse of artificial general intelligence. Others say AI agents are organizing themselves. That’s not what’s happening. In this video, SecurityScorecard’s Jeremy Turner, VP of Threat Intelligence & Research, breaks down what Moltbot actually is, why this isn’t AGI, and where the real danger lives.

View Video

SecurityScorecard

Read more about What Are Moltbot and Moltbook? Why the Agentic AI Frenzy Is a Security Trap

What Physical Site Safety Can Teach Cybersecurity Teams About Risk Management

Feb 3, 2026 By SecuritySenses In SecuritySenses

Cybersecurity is often treated as a purely digital challenge, focused on networks, applications, and protecting sensitive data. However, many of the most effective risk management principles used by cyber security teams already exist in physical environments such as construction sites, industrial facilities, and critical infrastructure.

Read Post

SecuritySenses

Read more about What Physical Site Safety Can Teach Cybersecurity Teams About Risk Management

Manic Monday: A Day in the Life of Threat Hunting

Feb 2, 2026 By Shir David In BitSight

John, a Cyber Threat Intelligence (CTI) analyst, turns to look at his CISO. He seems a bit rattled. John responds, “Yeah. Huge story.” “Massive. The board is worried and wants to know if this puts us at risk. We’re secure, right?” John hesitates.“Let me get back to you on that.” The CISO walks away. John races to his desk.

Read Post

BitSight

Read more about Manic Monday: A Day in the Life of Threat Hunting

Context-Driven Security - AI is Collapsing Exploit Timelines

Feb 2, 2026 By Nucleus Security In Nucleus

In a joint webinar with leaders from Nucleus, Cycode, and HackerOne, HackerOne product manager Kyle Mativier explains how advancing AI capabilities are collapsing how long it takes attackers to exploit seemingly low to medium severity vulnerabilities.

View Video

Nucleus

Read more about Context-Driven Security - AI is Collapsing Exploit Timelines

Productivity at a Price: The Rising Cost of AI Convenience

Jan 28, 2026 By Shane Moosa In UpGuard

Humans have always sought to streamline productivity through the most convenient solutions available, prioritizing speed to stay ahead and gain an edge over the competition. From the assembly line to the cloud, the goal remains the same: do more with less friction. Today, that convenience is synonymous with AI. While these tools have revolutionized how we work, the reality remains that rapid innovation always comes with a hidden cost.

Read Post

UpGuard

Read more about Productivity at a Price: The Rising Cost of AI Convenience

Cyber Risk in 2026: Top Threats, AI Risks & What Security Leaders Must Do Next

Jan 28, 2026 By Bitsight In BitSight

Cyber risk is evolving fast—and 2026 will demand more from security leaders than ever before. In this forward-looking webinar, Bitsight Co-Founder Stephen Boyer and SVP Vanessa Jankowski break down the biggest cyber threats shaping the year ahead, from AI-driven attacks and expanding attack surfaces to third-party and cloud risk.

View Video