Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Agentic AI security protects autonomous AI systems that independently plan, reason, and execute multi-step actions across enterprise environments without continuous human oversight.

Risk-based vulnerability management (RBVM) is a cybersecurity methodology that prioritizes vulnerabilities based on actual business risk rather than technical severity scores in isolation. RBVM combines vulnerability severity, exploitation likelihood, threat intelligence, and asset criticality to focus remediation on the exposures most likely to be weaponized against your specific environment.

Platform engineering is the practice of building and maintaining a centralized internal developer platform (IDP), a curated set of tools, workflows, and self-service capabilities that application teams consume rather than configure on their own. It's a structural response to how DevOps practices evolve at scale, particularly when "you build it, you run it" introduces more cognitive load than individual development teams can sustainably manage.

A practitioner's guide to the capability shifts, framework changes, and regulatory developments reshaping how enterprise IT and cybersecurity teams govern, deploy, and defend against autonomous agents.

A critical, unauthenticated remote code execution vulnerability in Windows Netlogon (CVE-2026-41089, CVSS 9.8) lets a remote attacker run code as SYSTEM on a domain controller. Patch all domain controllers in the same maintenance window with the May 2026 security updates.

Automated vulnerability remediation uses policy-driven workflows to execute approved remediation actions, including patch deployment, software updates, and configuration changes, consistently across managed assets. Within a broader vulnerability management program, it helps teams close the gap between identifying an exposure and safely resolving it at scale.

Vulnerability remediation is the process of fixing and validating security flaws in systems, applications, or infrastructure using patches, configuration changes, or compensating controls after they are identified and prioritized.

Leaders from across the federal government gathered to better understand IT and cybersecurity challenges in the AI age.

Continuous threat exposure management, or CTEM, is a five-stage program framework for continuously reducing real-world security exposure. It builds on vulnerability scanning by adding risk-informed prioritization, validation of exposure conditions and control effectiveness, and cross-team mobilization to drive remediation.

On May 20, 2026, GitHub disclosed that an employee device was compromised through a malicious VS Code extension, with attackers claiming to have exfiltrated roughly 3,800 internal repositories.