%term

From Plaintext, to BLESS, to Identity: The Evolution of Secure Remote Access

Apr 9, 2026 By Leon Fong In Teleport

My first introduction to UNIX remote access was via telnet and rsh protocols in college, which was the standard method at the time. But I soon started reading articles about how easy it was for someone to sniff the network and capture passwords since they were being transmitted in plaintext. On the shared network segments common to university campuses and early enterprise environments, the tools to intercept traffic were freely available, well-documented, and required very little skill to use.

Read Post

Teleport

Read more about From Plaintext, to BLESS, to Identity: The Evolution of Secure Remote Access

Anthropic's Project Glasswing: What It Means for AppSec

Apr 9, 2026 By Shannon Davis In Mend

An AI just found critical vulnerabilities that survived decades of human review. If your security program isn’t built for this moment, it’s already behind. Surprise! An AI just did what your security team couldn’t.

Read Post

Mend

Read more about Anthropic's Project Glasswing: What It Means for AppSec

Secret Scanning For AI Coding Tools With ggshield

Apr 8, 2026 By GitGuardian In GitGuardian

Introducing ggshield AI hooks from GitGuardian to help stop AI coding assistants from leaking secrets. See how ggshield can scan prompts, tool calls, file reads, MCP calls, and tool output inside AI coding tools like Cursor, Claude Code, and VS Code with GitHub Copilot. When a secret is detected, ggshield can block the action before sensitive data is sent or exposed. You will also see how simple the setup is, with flexible install options for local or global use. This adds practical guardrails to AI-assisted development and helps teams move fast without increasing secret sprawl.

View Video

GitGuardian

Read more about Secret Scanning For AI Coding Tools With ggshield

How To Build Your DevOps Toolchain Effectively

Apr 8, 2026 By Daria Kulikova In GitProtect

What can bring together development and operation teams better than DevOps, a prevalent agile methodology? It involves new management principles, cultural change, and technology tools that boost the team’s development, collaboration, and productivity while they cooperate on software development.

Read Post

GitProtect

Read more about How To Build Your DevOps Toolchain Effectively

A CISO's Guide to Deploying AI Agents in Production Safely

Apr 8, 2026 By ARMO In ARMO

Your CNAPP shows green across every posture check—hardened clusters, compliant configurations, no critical CVEs—but when your board asks "Are our AI agents safe in production?", you cannot answer with confidence because your tools see the infrastructure, not what the agents actually do at runtime.

Read Post

ARMO

Read more about A CISO's Guide to Deploying AI Agents in Production Safely

NIST 800-171 and Agentic AI: What Autonomous Systems Mean for CUI Protection

Apr 8, 2026 By Matthew Smith In Teleport

NIST Special Publication 800-171 defines a precise set of security requirements for organizations that handle Controlled Unclassified Information (CUI) outside of federal systems. For defense contractors, subcontractors, and their engineering teams, these controls are non-negotiable with the advent of the Cybersecurity Maturity Model Certification (CMMC) program, which dictates how CUI must be accessed, logged, transmitted, and protected across every system in scope. That scope is shifting.

Read Post

Teleport

Read more about NIST 800-171 and Agentic AI: What Autonomous Systems Mean for CUI Protection

CI/CD security: How to secure your GitHub ecosystem

Apr 8, 2026 By Juvenal Araujo In Datadog

In Part 1 of this series, we discussed the CI/CD security boundary, mapped out potential attack vectors with a CI/CD threat matrix, and introduced a simple threat model focused on ideating detection workflows. In this post, we’ll apply these principles to a real-world source code management (SCM) tool example that every developer is familiar with: GitHub. In addition to threat modeling, we’ll also be taking a closer look at historical attacks on GitHub and GitHub Actions ecosystems.

Read Post

Datadog

Read more about CI/CD security: How to secure your GitHub ecosystem

Stop Drowning in Container CVE Alerts: Reachable Risk & Docker VEX with Mend.io

Apr 8, 2026 By Mend In Mend

Developers are often overwhelmed by thousands of container CVE alerts, most of which are unfixable base image noise. This walk-through covers how to use reachable risk factors and Docker VEX statements within the Mend.io platform to streamline your vulnerability management.

View Video

Mend

Read more about Stop Drowning in Container CVE Alerts: Reachable Risk & Docker VEX with Mend.io

Teleport Named to Citizens Securities' 2026 Cyber 66 List of the Hottest Privately Held Cybersecurity Companies

Apr 7, 2026 By Teleport In Teleport

Recognition highlights Teleport's Infrastructure Identity platform as a critical foundation for securing AI agents and non-human identities at enterprise scale.

Read Post

Teleport

Read more about Teleport Named to Citizens Securities' 2026 Cyber 66 List of the Hottest Privately Held Cybersecurity Companies

CertKit is out of beta

Apr 7, 2026 By Todd H. Gardner In CertKit

CertKit is officially out of beta. We started building CertKit a year ago, and since then over 600 people signed up, issued certificates, and deployed to their infrastructure. Several are running it as their production certificate management platform right now. We built a lot during the beta. Some of it we planned: SSO, team management, alerting. Other things, users had to beat into us. The Keystore came from enterprise security requirements to keep private keys in house.

Read Post

CertKit

Read more about CertKit is out of beta

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

From Plaintext, to BLESS, to Identity: The Evolution of Secure Remote Access

Anthropic's Project Glasswing: What It Means for AppSec

Secret Scanning For AI Coding Tools With ggshield

How To Build Your DevOps Toolchain Effectively

A CISO's Guide to Deploying AI Agents in Production Safely

NIST 800-171 and Agentic AI: What Autonomous Systems Mean for CUI Protection

CI/CD security: How to secure your GitHub ecosystem

Stop Drowning in Container CVE Alerts: Reachable Risk & Docker VEX with Mend.io

Teleport Named to Citizens Securities' 2026 Cyber 66 List of the Hottest Privately Held Cybersecurity Companies

CertKit is out of beta

Monthly Archive

Follow Us