The wire transfer went through. The CFO on the video call looked right, sounded right, and gave the authorization — except there was no CFO on that call. Related: The industrializing of identity fraud Corporate deepfake attacks of that kind, … (more…) The post FIRESIDE CHAT: Deepfakes exploit human emotion, ... Read More

For the past two decades, enterprise security teams have gotten good at one thing: keeping sensitive data where it belongs. Related: Leaked secrets no. 1 exposure Production data stays in production. Test environments get masked or synthetic data. Access is … (more…) The post GUEST ESSAY: AI pipelines are shattering ... Read More

The first warning sign came on stage. Related: Carol Sturka declares her agency  I had turned to ChatGPT to help organize research notes for an upcoming keynote. I was pressed for time and wanted help spotting patterns I might have … (more…) The post GUEST ESSAY: AI can speed up ... Read More

ORLANDO — Companies are pulling AI agents into their daily operations through a dozen side doors. Related: SaaS and AI agents converge One of them was in focus at KB4-CON, KnowBe4’s annual customer conference at the Marriott World Center … (more…) The post MY TAKE: AI agents force a rethink ... Read More

By design. Two words that have done an awful lot of heavy lifting in the cybersecurity industry over the years. They tend to surface whenever a vendor wants to wave off a serious finding without fixing it. Related: The unending … (more…) The post LW ROUNDTABLE: Microsoft Edge normalizes credential ... Read More

The cyber insurance industry set out to manage financial risk. Along the way, it has quietly became the security operations provider for a significant share of American small businesses. An $11 billion acquisition agreement announced earlier this year suggests it … (more…) The post FIRESIDE CHAT: Cyber insurers deepen SMB ... Read More

As if keeping track of machine identities wasn’t hard enough. AI agents are now arriving by the thousands — and most enterprises are just handing them borrowed credentials and hoping for the best. Meanwhile, the cryptographic infrastructure asked to absorb … (more…) The post SHARED INTEL Q&A: PKI’s unfinished business—’digital ... Read More

Every major building in America has three things: a physical address, a legal owner, and an unmonitored attack surface. Related: Sam Altman’s quest to usurp the browswer That surface extends from the ground up through every floor, every facade, and … (more…) The post GUEST ESSAY: How augmented reality (AR) ... Read More

A consequential shift is underway in how enterprise breaches begin. The leaked credential — once treated as a hygiene problem — has become the primary on-ramp. Related: No easy fixes for AI risk Last August’s Salesloft campaign was the pattern … (more…) The post FIRESIDE CHAT: Leaked secrets are now ... Read More

Public key infrastructure — the authentication and encryption framework that has held digital commerce together through every chaotic leap forward in technology — is facing a double whammy. Related: Achieveing AI security won’t be easy Autonomous AI agents are flooding … (more…) The post Fireside Chat: PKI has carried digital ... Read More