ACME ARI support and 6-day certificates
Two new features this week, both pushing in the same direction: make certificate lifetimes someone else’s problem.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Signature Verification Bypass in Authlib (CVE-2026-28802): What Cloud Security Teams Need to Know
OAuth and OpenID Connect are the backbone of modern cloud-native identity and access management. From SaaS platforms and internal APIs to Kubernetes microservices, these protocols are responsible for verifying who is allowed to access what. When a vulnerability appears in a widely used authentication library, the impact can cascade across entire application ecosystems.
Introducing System Prompt Hardening: production-ready protection for system prompts
Today, we’re launching System Prompt Hardening, Mend.io’s new capability that defends the hidden instructions that control how your AI systems behave. Unlike user-facing prompts, system prompts live behind the scenes, and when attackers manipulate them, the result can be data leaks, policy bypasses, or unsafe model behavior. System prompt hardening stops those attacks at the source and gives security, engineering, and risk teams a practical, auditable way to secure AI in production.
AI Impact on Cybersecurity: The Gap | Teleport x The Cyber Hut
The complexity of computing has always grown faster than business itself. AI is accelerating that divergence — and smaller organizations are feeling it now. Ev Kontsevoy and Simon Moffatt (The Cyber Hut) on the security gap, the cascading identity problem, and why this used to be a hyperscaler issue.
Best AI Intrusion Detection for Kubernetes: Top 7 Tools in 2026
Why do traditional intrusion detection systems fail in Kubernetes? Legacy IDS tools were built for static servers with fixed IPs and clear network perimeters—Kubernetes breaks all of those assumptions. Ephemeral pods, east-west traffic, encrypted service mesh communication, and dynamic IP addresses make perimeter-focused, signature-based detection effectively blind inside clusters.
Top Vulnerability Prioritization Tools Compared: 2026 Edition
Why do 3,000 CVEs not mean 3,000 real problems? Most vulnerability scanners flag every CVE in your container images without checking whether the vulnerable code is actually loaded and executed at runtime. Only 2–5% of alerts typically require action, which means your team is likely spending days triaging theoretical risks while genuinely exploitable vulnerabilities stay buried.
The Risk of Rapid AI Evolution - Why Security Frameworks Can't Stand Still #cybersecurity
AI labs keep shipping. Production keeps surfacing blind spots.
Teleport Session Recording Summaries: AI-Powered Security Auditing Explained
In this video, we explore Teleport AI Session Summaries, a powerful capability that automatically analyzes session recordings to help security teams detect suspicious activity faster.
How to verify certificate renewal actually worked
On May 21, 2019, LinkedIn’s URL shortener went down. The certificate had expired. Millions of people cried out in terror when they couldn’t click on AI link bait. The interesting part: LinkedIn had renewed the certificate ten days earlier. The renewal succeeded. The certificate just never made it to the server. The renewed cert existed somewhere, but the server still served the old one. Most certificate automation is built to prevent the “I forgot to renew” problem.
Top Open Source Cloud Security Tools for 2026
Do open source tools give you full Kubernetes attack coverage? Kubescape, Trivy, and Falco each excel in their lane—posture, vulnerabilities, and runtime—but none of them builds a complete attack narrative on its own. Deploying all three still leaves you with evidence fragments rather than a connected incident story. Why can’t siloed alerts keep up with real attacks?