Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

IT Service Management platforms like ServiceNow and Jira Service Management have fundamentally shaped how modern IT organizations operate. They bring structure to incident response, discipline to change management, and consistency to request fulfillment. For many enterprises, ITSM is the operational backbone that keeps digital services reliable, governed, and accountable.

WatchGuard Technologies has announced a new partnership with HaloPSA to help MSPs streamline security operations from alert to invoice. By integrating WatchGuard Cloud directly into HaloPSA, MSPs can automate ticketing, simplify provisioning, and improve billing accuracy—all within a single platform. The integration reduces manual effort, accelerates response times, and helps partners scale more efficiently while delivering stronger security services.

In preparation for launching CertKit last week, I browsed the websites of a lot of related cybersecurity services. I don’t really understand what any of them do, but apparently, “trust” is a thing that can be sold now.

Microsoft Sentinel gives security operations team visibility into activity across Microsoft environments. As those environments grow, many teams start looking for deeper behavioral context, more consistent investigations, and ways to reduce manual work without replacing what already works. That’s where the Exabeam Microsoft Sentinel Collector comes in.

KYC checks are a regulatory requirement, and they can help prevent fraudsters and other bad actors from accessing your platform. But they're not designed to catch every type of fraud. That’s why many fintechs add additional identity verification and fraud checks. However, some overlook link analysis, which is an increasingly important layer for detecting fraud rings and AI-driven attacks.

Artificial intelligence (AI) is changing the IT landscape in radical, unprecedented ways. Organizations are rewriting the rules of code generation, automating complex customer service interactions, and extracting deep data insights that were impossible to uncover just a few years ago. However, for technology specialists and IT leaders responsible for keeping the lights on, artificial intelligence represents a massive shift in infrastructure requirements.

Bug bounty has been a very hot topic lately. We’re seeing high-profile programs go offline or fundamentally change: the IBB (one of the most important programs for open-source programs) is pausing submissions, curl is removing payouts and Node.js is removing its bounty entirely. That’s not noise, that's signal.

Financial institutions rely heavily on third-party vendors like payment processors, banking platform providers and fintech integrations to maintain operational efficiency. In fact, according to Verizon’s 2025 Data Breach Investigations Report, 30% of data breaches involved a third party, including vendors with direct remote access to financial systems. As environments become more distributed and accommodate remote work, managing vendor access has become a modern security challenge.

Security maturity was the thread running through BSides MKE 2026, from clearer business language to role clarity, AI governance, and non-human identity risk.

The AI security market is crowded. Vendors are racing to protect prompts, harden models, detect jailbreaks, and scan for data leakage at the LLM layer. The investment is real. The intent is good. And most of it is missing the point. Here is the problem: agents do not just think. They act. They call APIs. They trigger workflows. They write to databases, send emails, move money, and modify production systems.