Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Copy Fail (CVE-2026-31431): What Linux administrators need to know now

Copy Fail, or CVE-2026-31431, is a Linux kernel local privilege escalation vulnerability that can let an unprivileged local user corrupt page-cache-backed file data under specific conditions and potentially escalate privileges. Exposure depends on the running vendor kernel and backported fixes. Installing a vendor-provided kernel fix is the primary remediation, with temporary mitigations available in some environments if patching is delayed.

Types of AI agents: From simple reflex to autonomous systems

AI agents fall into five foundational categories: simple reflex, model-based reflex, goal-based, utility-based, and learning agents. Each is defined by how much environmental awareness and decision-making complexity the system can handle, from fixed condition-action rules to feedback-driven self-improvement.

The Adversary's Speed Just Changed - What Mythos Means for Your Security Posture

The cybersecurity threat landscape just changed — and most organizations don't know it yet. In this conversation, Tanium's Pedro (CRO) and Mark Liu (VP of Solution Engineering) break down what Anthropic's Mythos really is, why security leaders everywhere are asking about it, and what organizations need to do right now. No marketing pitch — just a straight conversation about a consequential shift that's already underway.

How CDW + Tanium Are Securing Hospitals and Cutting IT Costs by 30-50%

Healthcare IT is at an inflection point — rising costs, thousands of unmanaged devices, and ever-growing cyber threats are putting pressure on hospitals to act. In this video, CDW's healthcare team explores how their partnership with Tanium is helping health systems take control. Learn how the CDW + Tanium solution can help hospitals manage 20,000+ devices across a facility, protect against cyberattacks, reduce IT costs by 30–50%, and free up nurses and clinicians to focus on what matters most: patient care.

Patch management best practices: An enterprise guide

Effective patch management requires a structured process of inventorying assets, prioritizing vulnerabilities by risk, testing fixes before broad deployment, and automating rollout: steps that collectively help narrow the window between a vendor's patch release and active exploitation across enterprise systems.

Customer zero: ServiceNow's autonomous IT journey with Tanium

What does it look like to be customer zero for enterprise IT and security? In this video, Glen Taylor, VP of Digital Technology Systems & Services; Sankha Nagchoudhury, SVP of Digital Technology; and Madhuri Manikonda, Sr. Director of Digital Technology & AI Operations at ServiceNow, share how ServiceNow operates at massive scale—supporting 30,000 employees while defending against constant cyber threats—and how Tanium plays a critical role in making that possible.

VibeScamming: Why AI-built scams are changing phishing risk

VibeScamming refers to AI-assisted phishing operations where attackers use natural-language tools to rapidly generate and modify phishing content and web pages, lowering (but not eliminating) the technical skill required. One of the primary enterprise impacts is faster phishing iteration and reconstitution after blocks or takedowns, with identity compromise remaining a major risk alongside malware and other payload-based attacks.

Vercel security incident: What the breach reveals about OAuth trust, supply chain risk, and response speed

Public reporting suggests the incident involved abuse of a third-party application that had been granted OAuth access to a Vercel employee account, enabling unauthorized access to some internal resources. Certain customer‑related tokens, environment variables, or other access artifacts may have been exposed, though Vercel has not stated that password theft was part of the initial access path.