Home - Security Buzz

Wednesday, April 29, 2026

dripping honey effect

Cybersecurity News

View More

AI agents non-human identities https://www.pexels.com/photo/white-jigsaw-puzzle-illustration-262488/

Why AI Agents Are Outrunning Enterprise Security Controls

The AI boom and other ongoing developments in recent years have led to a fundamental shift in the identity landscape. Keeper Security’s recent AI and Non-Human Identities Are Outpacing Security Controls report details a continuing…

UNC6783 social engineering cybersecurity https://www.pexels.com/photo/close-up-of-hands-typing-on-laptop-keyboard-indoors-36175215/

UNC6783 Is Turning Enterprise Support Channels into Extortion Entry Points

Google Threat Intelligence Group (GTIG) says a financially motivated threat cluster it tracks as UNC6783 is targeting business process outsourcers, help desks, and other enterprise support teams as an entry point into larger organizations. The…

Glasswing Claude Mythos https://www.pexels.com/photo/pink-white-black-purple-blue-textile-web-scripts-97077/

What Mythos and Glasswing Should Signal to Every Security Leader

The recent announcement of the Claude Mythos Preview and Project Glasswing represents a step forward in AI-empowered security initiatives. The fact that the Mythos model is being withheld from public release is an implicit acknowledgment…

Modbus OT operational technology critical infrastructure https://www.pexels.com/photo/high-voltage-power-lines-at-sunset-28912010/

How a 40-Year-Old Protocol Is Leaving Critical Infrastructure Exposed

A decades-old industrial communications protocol still used to connect controllers, sensors, and monitoring equipment is leaving some critical infrastructure systems exposed online. Researchers at Comparitech said they identified 179 likely real industrial control system devices…

Ivanti vulnerability exploit https://www.pexels.com/photo/black-metal-padlock-706500/

Ivanti Exploitation Underscores the Fragility of Mobile Infrastructures

The active exploitation (CVE-2026-1340) of the Ivanti Endpoint Manager Mobile solution lays bare an uncomfortable irony at the heart of enterprise security: The platforms organizations deploy to govern and protect mobile devices have become high-value…

Axios code software supply chain https://www.pexels.com/search/software%20code%20supply%20chain/?orientation=landscape&people_count=0

The Axios Supply Chain Attack and What It Reveals About Open Source's Invisible Risk

In modern cybersecurity, open-source tools can often provide the perfect avenue for attackers due to widespread access and dependencies. The Axios promise-based HTTP client is present in around 80% of cloud and code environments, making…

DPRK LNK files North Korea https://pixabay.com/illustrations/north-korea-dprk-korea-juche-asia-1151137/

How North Korean Hackers Turned GitHub Into a Spy Network Hiding in Plain Sight

Attackers are constantly looking to develop their tactics and technologies for increased success, requiring ongoing intelligence and advancement in security to account for the evolution of risk. Recently, threat actors linked to the DPRK have…

Citirx CISA

CISA Flags Actively Exploited Citrix NetScaler Vulnerability

CISA has elevated Citrix CVE-2026-3055 from a vendor advisory to an active response issue. On March 30, the agency added the NetScaler flaw to its Known Exploited Vulnerabilities catalog and directed federal civilian agencies to…

permissions least privilege access report

Why Enterprise Permissions Are AI's Most Dangerous Inheritance

Broken access control has led the OWASP Top 10 for six straight years, affecting 100% of tested applications in 2025. However, nobody had ever measured actual permission usage in production to answer the question of…

Industry News

View More

CyberEdge 2026 Cyberthreat Defense Report

CyberEdge’s 2026 Cyberthreat Defense Report Signals AI-Driven Upheaval for Security Teams

The newly released 2026 Cyberthreat Defense Report from CyberEdge Group paints a clear picture: artificial intelligence is no longer just a tool in cybersecurity—it’s a disruptive force reshaping both the threat landscape and the workforce…

Cisco Galileo AI observability agentic visibility https://unsplash.com/photos/a-large-group-of-colorful-balls-floating-in-the-air-AXNZb4FEkh8

Cisco's Acquisition of Galileo and the Rise of Agentic Observability

The AI boom continues to bring new developments and shows no sign of stopping anytime soon. Agentic AI systems are now embedded in software development, content creation, and customer support workflows in an effort to…

Fortra Zero-Point Security training https://unsplash.com/photos/code-displayed-on-computer-screens-v-jFS1AsHXo

How Fortra's Acquisition of Zero-Point Security Is Redefining Offensive Security Education

The dangerous gap between tool sophistication and operator readiness continues to widen, creating security risks that compound over time. Red team platforms like Cobalt Strike have outpaced available education, making it difficult to adequately conduct…

AppViewX Eos

AppViewX Acquires Eos to Secure the AI Agent Identity Frontier

The rapid proliferation of AI agents inside enterprise environments has been a major development in recent years of the AI boom. Their autonomous, privileged nature makes them fundamentally different from any identity category that came…

OpenAI Promptfoo

OpenAI Bets on AI Security With Promptfoo Acquisition

The AI explosion of the past several years, marked by the booming popularity of generative AI for personal and professional functions, has been largely focused on ensuring performance and quality of these tools. Agentic AI…

Booz Allen Defy Security

Booz Allen’s Cybersecurity Pivot Signals a New Battle for the Enterprise Security Market

Booz Allen Hamilton is a company with over 100 years of history, today known primarily for specialization in digital transformation and artificial intelligence services. The company has a legacy in government consulting and national security,…

Arctic Wolf Sevco

Arctic Wolf Expands Beyond MDR with Sevco Deal to Tackle the Exposure Management Gap

Cybersecurity vendor Arctic Wolf has a foundation in managed detection and response (MDR), offering solutions, expertise, and resources for security coverage at scale. In recent years, there has been a mounting market pressure to move…

Pexels Pavel Danilyuk 5520322

Proofpoint Bets on the Agentic Future with Acuvity Acquisition

On February 12, 2026, cybersecurity and compliance leader Proofpoint announced the acquisition of AI security and governance firm Acuvity. This deal is a significant step in securing the agentic workspace, an increasingly common enterprise environment…

Zscaler SquareX zero-trust

Zscaler’s SquareX Acquisition Signals a New Era in Zero Trust Cybersecurity

February 20, 2026

In the traditional castle-and-moat model of security, legacy Virtual Private Networks (VPNs) act as “digital drawbridges,” a measure that is no longer effective in protecting a castle without walls like the modern distributed enterprise. As…

Subscribe for the Latest News

Webinars

Wednesday, Apr. 29 1pm ET / 10am PT

Banking on Identity with Practical Playbooks for Resilience

Wednesday, Apr. 29 1pm ET / 10am PT

From Ticket to Threat: Preserving Context Across Security Teams

Tuesday, May. 12 1pm ET / 10am PT

Scaling Code Security for Builders Beyond Developer-First