Risk Scenarios for the US’s Strategic Pivot
Summary The United States (US) is shifting toward a more force-driven security strategy primarily relying on military operations and economic pressure to counter transnational criminal…
Category: VendorResearch
Building with AI: Here’s What No Briefing Will Tell You
I’ve spent the last three months building with AI. Not reading about it. Not sitting through vendor demos. Not nodding along to board presentations with…
What’s new, updated, or recently released in Microsoft Security
New capabilities in Microsoft Agent 365; new Microsoft Defender and GitHub integration At Microsoft, security innovations are purpose-built to help every organization protect end-to-end with…
Lazarus Doesn’t Need AGI
Last week’s reporting on unauthorized access to Claude Mythos reads as an AI security story. It is also, structurally, a North Korea (DPRK) story. Even…
The Money Mule Solution: What Every Scam Has in Common
Scams have become one of the most damaging and difficult-to-detect ways for criminals to extract funds from victims and financial institutions alike. The Global Anti-Scam…
AI-powered honeypots: Turning the tables on malicious AI agents
Generative AI allows defenders to instantly create diverse honeypots, like Linux shells or Internet of Things (IoT) devices, using simple text prompts. This makes deploying complex, convincing deceptive…
Freight Hacker Wields Code-Signing Service to Evade Defenses
Prolific Threat Actor Focused on Using Malware to Facilitate Cargo Theft Mathew J. Schwartz (euroinfosec) • April 16, 2026 Image: NetVideo/Shutterstock Cybercriminals don’t…
From Overwhelmed to Autonomous: Rethinking Threat Intelligence in 2026
Key Takeaways The real challenge in cybersecurity isn’t intelligence or visibility, it’s speed. Attackers operate at machine speed, while most organizations are still constrained by…
Critical minerals and cyber operations
Summary Critical elements and rare earth elements REEs are no longer commodities; they are strategic dependencies. Chinaʼs dominance in processing and refining provides it with…
UAT-4356’s Targeting of Cisco Firepower Devices
Cisco Talos is aware of UAT-4356’s continued active targeting of Cisco Firepower devices’ Firepower eXtensible Operating System (FXOS). UAT-4356 exploited n-day vulnerabilities (CVE-2025-20333 and CVE-2025-20362)…
Today, trust is the superpower that makes innovation possible
The paradoxes of today’s digital world are well-known to anyone with a smartphone. Over the last decade, connectivity has expanded, yet the world has become…
AI Hype vs. Reality: Is AI Really Rewriting the Vulnerability Equation?
AI vulnerability research and discovery capabilities are improving, but they have not changed the fundamentals of vulnerability management. Instead, they are scaling up problems familiar…