Security Bulletin

A proof-of-concept (PoC) attack vector exploits two Azure authentication tokens from within a browser, giving threat actors persistent access to key cloud services, including Microsoft 365 applications.

Agentic AI's appeal is growing as organizations seek more autonomous and hands-off approaches to their security protocols.

The incident should serve as a critical wake-up call. The stakes are simply too high to treat AI security as an afterthought — especially when the Dark Web stands ready to capitalize on every vulnerability.

CEO Amiram Shachar noted that these tools help identify anomalies in API traffic and build baselines that allow organizations to customize security policies.

Traditional methods fall short in environments where providers like AWS, Azure, and GCP collectively support tens of thousands of unique actions—each representing a potential risk.

These tools address long-standing barriers posed by legacy cloud environments, enabling secure, region-agnostic compute workloads while maintaining access to existing infrastructure.

Designed to boost threat visibility and response efficiency, the solution empowers SOC teams and analysts by mapping out all connections, classifying traffic, and identifying lateral movement of potential attacks.

A strategic and proactive approach to cloud security begins with aligning the security architecture to business goals using structured frameworks like NIST and SABSA, ensuring security becomes part of the core business fabric.

Kenzo Security, a California-based security operations startup, has obtained $4.5 million in seed funding as it launched from stealth, with the newly secured investment to be allocated toward bolstering its platform and expanding its engineering and...

Major Canadian e-commerce platform Shopify can face legal action in California over its collection of buyers' personal information following a San Francisco appeals court decision, according to Reuters.

Increasingly sophisticated and prevalent artificial intelligence-powered cybersecurity threats have prompted Oklahoma to unleash agentic AI for its security operations, which state Chief Information Security Officer Michael Toland said has multiplied...

Popular open-source machine learning framework PyTorch has been impacted by a critical security flaw, tracked as CVE-2025-32434, which could be exploited to facilitate arbitrary code execution on artificial intelligence model-loading systems, The...