Archive
🚨 60K Cloud Servers Compromised + The AI Governance Illusion
This week: Critical vulnerabilities under active exploitation, cloud-native worm TeamPCP compromises 60K+ servers across AWS/Azure/GCP, and AI security adoption strategies from Harmonic Security's CTO on building developer-friendly governance that actually works.
🚨 Palo Alto's $3.35B Observability Bet Why Palo Alto’s $3.35B Observability Bet Signals the End of Vulnerability Management
This week's newsletter explores the strategic shift from siloed vulnerability management to unified exposure management, featuring insights from Brad Hibbert (COO & Chief Strategy Officer at Brinqa) on how enterprises can reduce risk at scale, plus analysis of major security acquisitions that signal the future of platform consolidation and AI-driven security operations.
🚨 Google Cloud Phishing Bypasses Email Security: Lessons from Anthropic's MCP Security Response
This week's newsletter examines sophisticated attacks exploiting legitimate cloud services—from Google Cloud's email features to AI agent tooling—and explores how enterprises like Anthropic are building secure-by-design systems. We feature insights from Caleb Sima and Ashish Rajan on implementing defense-in-depth architectures that assume breach and verify continuously.
🚨 Gemini Prompt Injection + Copilot Reprompt: Why LLMs Can’t Tell Instructions from Data
This week's newsletter examines critical prompt injection vulnerabilities across Microsoft Copilot, Google Gemini, and GitHub Copilot, alongside AWS CodeBuild's supply-chain risks. Learn from Ramp's Principal Security Engineer Antoinette Stevens about building engineering-led detection programs that scale with AI while maintaining human oversight, managing false positives, and balancing build-versus-buy decisions in 2026's threat landscape.
VMware ESXi Zero-Days Exploited for Year: Lessons from Dayforce's AI-FirstVulnerability Management Strategy
This week's newsletter covers critical enterprise vulnerabilities including year-long VMware ESXi exploitation by Chinese threat actors, HPE OneView's maximum-severity RCE flaw, and CrowdStrike's $740M identity security acquisition. Plus, Dayforce's Sapna Paul shares how AI is transforming vulnerability management from scan and patch workflows to continuous observation, detection, and model retraining.
🚨IDEsaster: AI IDE Vulnerabilities Turn Developer Tools into an Enterprise Attack Surface
This week covers a new class of AI supply chain attacks targeting developer workflows. Security researchers disclosed 24 CVE-assigned vulnerabilities across popular AI-enhanced IDEs, where prompt injection enables remote code execution, data exfiltration, and credential theft directly from developer machines.We also unpack ServiceNow’s reported $7B Armis acquisition as a signal of asset visibility convergence and why Rubrik’s Matt Castriotta argues identity backup is now non-negotiable for real cyber resilience.
🚨 Zero-Day Exploited in Hours + AI Agent Risk Lessons from CISO of Sendbird
This week's newsletter covers critical React Server Components vulnerability (CVE-2025-55182) under active exploitation by Chinese APT groups, record-breaking DDoS attacks, and exclusive insights from Sendbird CSO Yash Kosaraju on securing AI agents through multi-layered trust frameworks, enterprise LLM safeguards, and cultural transformation in the age of autonomous systems
🚨 ServiceNow Acquires Veza for $1B* as Identity Becomes Critical Attack Vector: Lessons from Building Cloud-Native Data Lakes at Scale
This week covers ServiceNow's strategic $1B* acquisition of identity security firm Veza, the Oracle E-Business Suite zero-day campaign affecting 100+ organizations, and Claude AI plugins shown deploying ransomware. Security expert Cliff Crosford shares hard-won lessons from building security data lakes at scale, addressing SIEM cost challenges, and implementing AI-driven detection pipelines for enterprise cloud security teams.
🚨 Sha1-Hulud Worm Exposes 25K+ Repos: Lessons from Building Trustworthy AI SOCs For Regulated Environments
This week: Supply chain attacks compromise enterprise CI/CD pipelines as 600+ npm packages fall to self-replicating malware. Former Mandiant SOC leader Grant Oviatt reveals how Prophet Security achieves 99.3% investigation accuracy with AI agents in regulated environments completing triage in 4 minutes versus traditional teams' multi-hour cycles. Learn the architecture requirements for explainability, traceability, and data sovereignty that regulators demand from AI-driven security operations.
🚨 Cloudflare Outage & $3.35B Palo Alto Deal: Lessons from Swiss Insurance’s Multi-Cloud Migration
This week’s Cloud Security Newsletter covers the $3.35B Palo Alto–Chronosphere acquisition, Cloudflare’s global outage, record-breaking Azure DDoS attacks, UK’s new cyber bill, and rising AI prompt injection threats. Insights from Swiss Insurance’s cloud architect Matthias Mertens reveal enterprise-tested strategies for multi-cloud migration, Terraform automation at scale, and serverless modernization
🚨 Container Escape + AI Agent Risk: Lessons from Box’s Security Lead
This week's newsletter examines critical runC container escape vulnerabilities affecting all major cloud providers, the evolving threat landscape of AI agent exploitation, and practical security controls for agentic AI systems. Learn from Box's Mohan Kumar, Production Security Lead with 14 years in cybersecurity about memory poisoning attacks, tool misuse patterns, and the three-layer security evolution needed for AI agent production deployments. Plus: Active Cisco firewall zero-day exploitation, China-linked Congressional Budget Office breach, and Google Cloud's 2026 forecast predicting surge in prompt injection attacks.
🚨 DOJ clears Google Wiz Purchase: How Bloomberg Navigate AI-Powered Security at Scale
This week we explore breaking vulnerabilities in Microsoft Teams enabling message manipulation and caller ID forgery, AI-powered malware with self-modifying capabilities discovered by Google, and exclusive insights from Bloomberg's application security leader and cloud security architects on breaking down silos between AppSec and CloudSec teams as AI transforms the enterprise security landscape.