Biztonsági szemle

XM Cyber Inc. announced an expansion of its platform with new capabilities designed to help enterprises enforce least-privilege access across Active Directory, Microsoft Entra, and multicloud environments.

The flaw, tracked as CVE-2026-48710, arises from the framework's handling of malformed Host headers.

The updated platform introduces Xage Agent Sentry and Xage Resource Gateway, which aim to secure AI agents and the resources they access at multiple levels, including network interactions, local events, and operating system calls.

Doppel Email Security utilizes autonomous agents and its Doppel 360 Threat Graph to investigate threats within the inbox.

SRG actors initiate attacks by posing as IT support staff, contacting victims via phone calls or phishing emails to solicit a remote desktop session.

Most Akira write-ups focus on the ransom note or the encryption routine. By the time those show up the interesting forensic work is over. The questions that matter to defenders sit earlier. How did they get in. When did they get domain admin. What...

The FBI warned that the extortion gang Silent Ransom Group is targeting law firms and socially engineering its way into servers and databases.

CISA warns of exploited LiteSpeed flaw putting shared hosting at risk.

As enterprises move toward AI-driven operations, identity modernization becomes essential.

Cisco's participation in Project Glasswing and Daybreak provide the deep insights necessary to navigate AI-threats. As we continuously mature our operating model, we will continue to share our learnings and best practices for customer security ops.

Because AI agents are neither human nor traditional machines, they must be treated as a third class of identity.