Trivy Supply Chain Attack Targets CI/CD Secrets
Trivy Supply Chain Attack Targets CI/CD Secrets Summary A threat actor compromised components of the open-source Trivy scanner and its GitHub Actions to inject an infostealer into CI/CD pipelines. The…
CISOs Debate Human Role in AI-Powered Security
CISOs Debate Human Role in AI-Powered Security Summary A panel of security leaders at RSAC 2026 — representing Google Cloud, Vodafone and PayPal — argued over whether AI defences should…
FBI warns of Russian, Iranian cyber activity involving messaging platforms
FBI warns of Russian, Iranian cyber activity involving messaging platforms Summary The FBI and CISA issued separate alerts about two nation-state campaigns that exploit messaging apps to compromise targets. Russian…
Claude attacks were ‘Rorschach test’ for infosec community, scaring former NSA boss
Claude attacks were ‘Rorschach test’ for infosec community, scaring former NSA boss Summary At RSAC 2026, former NSA cyber chief Rob Joyce said the Anthropic report on Chinese actors using…
Lightning-fast exploits make it essential to patch fast, ask questions later
Lightning-fast exploits make it essential to patch fast, ask questions later Summary Cisco Talos’ 2025 year-in-review warns that attackers are weaponising newly disclosed vulnerabilities almost instantly, leaving defenders very little…
AI agents are ‘gullible’ and easy to turn into your minions
AI agents are ‘gullible’ and easy to turn into your minions Summary Zenity CTO Michael Bargury demonstrated at RSAC that many enterprise AI agents are trivially persuadable and vulnerable to…
Forget drones – the US Army just took delivery of a self-flying Black Hawk helicopter
Forget drones – the US Army just took delivery of a self-flying Black Hawk helicopter Summary The US Army has taken delivery of an optionally piloted UH-60Mx Black Hawk equipped…
How to measure a good life – tips for moving beyond GDP
How to measure a good life – tips for moving beyond GDP Summary The article argues that GDP is an incomplete guide to national wellbeing because it measures market production…
Education company Kaplan reports data breach impacting more than 230,000
Education company Kaplan reports data breach impacting more than 230,000 Summary Kaplan, the US-based educational services firm, notified state regulators that a cybersecurity incident in late 2025 exposed personal data…
Smart glasses as an enterprise risk: What CIOs should know
Smart glasses as an enterprise risk: What CIOs should know Summary Smart glasses have moved from niche gadget to mainstream accessory, and with that shift comes fresh enterprise risk. Modern…