Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Your CNAPP flags a misconfigured service account. Your CSPM warns about an overly permissive IAM role. Your container scanner reports vulnerabilities in a model-serving image. But none of these tools can tell you that an AI agent just called an internal admin API it has never touched before — or that a prompt injection caused your LLM to leak customer data through a RAG connector.

Dropbox was one of the first cloud storage companies to provide online storage, backups, and sharing for people looking to store their files online. It has since grown its product to include more features, and offers cloud storage for personal to enterprise use. However, Dropbox has a past of security breaches, data leaks, password leaks, and sharing data without user consent. We go into details about these incidents and the following topics within this article.

Last month, the Mexican government was hacked. 150GB of government data was stolen, including 195 million taxpayer records. This attack exploited a couple of dozen vulnerabilities across ten institutions. In the past, this would have likely taken a skilled team months to crack. But of course, we’re living in a new age. This attack was executed by one person and their Claude Code assistant.

A simple guide for understanding how ASM actually supports your security program. We often hear organizations ask.

Let’s catch up on the more interesting vulnerability disclosures and cyber security news gathered from articles across the web this week. This is what we have been reading about on our coffee break! At what point did they think the changes were good before moving to production? While I’m not blown away by AI, blaming it for process failure muddies the issue.

Implementing cloud security policies and technologies has seen sustained growth in recent years. However, despite the widespread adoption of cloud security services, many companies have yet to fully recognize the critical importance of cloud security or still find themselves wondering: what is cloud security and why should it matter to their business? Migrating to the cloud provides organizations with the ability to move faster and more efficiently.

CVE-2026-21262 is an elevation of privilege vulnerability affecting Microsoft SQL Server. The issue is caused by improper access control within SQL Server components, allowing an authenticated attacker to elevate privileges over a network.

GDPR compliance cost in 2026 ranges from $25,000 for a lean startup to over $2,000,000 a year for a global enterprise. That is a wide range — and the wrong guess in either direction is expensive. Under-budget and you face enforcement gaps. Over-budget and you bleed cash on controls you never needed. This guide cuts through the noise.

Over the past year, AI-generated code has moved from novelty to normal. Developers are shipping faster, prototyping faster, refactoring faster… sometimes without fully understanding what they just merged. From the outside, it looks like a productivity renaissance. From the inside, it feels like something else: a new kind of operational risk that doesn’t behave like the old kind.

Enterprise data environments have fundamentally outpaced the security architectures designed to protect them. Sensitive data now exists across endpoints, cloud infrastructure, SaaS platforms, and AI workflows simultaneously, often replicated in fragments that carry no labels and trigger no file-based controls.