Why Phishing Still Works in the Age of AI
Phishing is evolving, not disappearing. Allison Wikoff explains why the human element remains the most consistent target for threat actors. Watch the full video on our channel.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Commercial vs Open Source AI Attack Detection Tools: A Buyer's Guide
If you’re weighing open source against commercial tools for detecting attacks on your AI agents, you’re probably trying to answer a single question. Can we build this ourselves, or should we buy it? It’s a fair question, and the existing content on it isn’t much help. Most comparisons line up tools side by side and tally features. That tells you which tool is better at one slice of the problem. It doesn’t tell you whether you have a working detection program.
Detecting AI Agent Lateral Movement in Kubernetes
An AI agent moving laterally through a Kubernetes cluster does not look like an intrusion. There is no foreign process, no exploit, no dropped binary — just the agent using the identity, network routes, and tools it was handed at deployment to reach targets it was technically allowed to touch. That is the entire problem. The controls you run were built to catch an outsider pivoting from host to host.
Salt Cloud Connect for Databricks
Secure your Agentic Action Layer and see where your Databricks MCP servers are communicating with detailed descriptions of what they do.
Introducing Agentic Exposure Validation
Check Point Agentic Exposure Validation (AEV) uses AI agents to reason like an attacker across your external footprint. It correlates your assets with live threat intelligence, exploit research, and attacker behavior, and tells you, in minutes, what's actually exploitable and what isn't. No assumptions. No noise. Evidence-backed findings your team can act on immediately.
The unmanaged stack: Governing SaaS apps and AI tools outside SSO
Note: This blog is a recap of 1Password’s recent webinar, “The unmanaged stack: Governing SaaS apps and AI tools outside SSO.” Head here to watch the complete webinar recording.
Cosine Similarity Is Math, Not Magic
Cosine similarity is pure math. No magic. No understanding. Once you accept that, a lot of the confusion goes away. We talk to a lot of customers, and even seasoned engineers, who treat cosine similarity like magic that solves everything. Engineers talk about embeddings like they are definitive. Product teams trust similarity scores like they are facts. Vendors sell “semantic understanding” like the model actually understands. Truth is, it does not.
AI Agent Governance Part 2 - What Good Looks Like: Governing AI Agents in Practice
If AI agents are becoming organizational actors, then governance needs to move beyond principles and into operational structure. In Camille Stewart Gloster’s upcoming book The Insider You Build, she explains that governance is not defined by policies or structures, but by whether it can actually influence system behavior at runtime. In an agentic environment, governance only exists where it can shape, constrain, and intervene in decisions as they happen.
What is AI Usage Control?
AI usage control is the security and governance framework that enterprises use to monitor, regulate, and secure how employees interact with artificial intelligence tools. As Generative AI becomes deeply embedded in everyday workflows, organizations face a high-stakes balancing act: capturing massive productivity gains while preventing catastrophic data leaks, compliance violations, and intellectual property exposure.
AI Security: Lateral Movement & MCP Protocol Risks #shorts
Lateral movement is the top AI threat. MCP protocol allows agents to communicate freely via HTTPS, posing major risks for unsecured environments. Network segmentation is crucial to control inter-agent communication and prevent data exfiltration.