Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

This week’s briefing covers: Dive deeper.

What if nothing ever looks malicious on its own? Most advanced attacks don’t start with obvious malware or clear signatures. They begin with activity that looks normal, until behavior over time reveals something more. In this demo, we show how Cato Dynamic Prevention stops threats by understanding behavior, not just inspecting isolated events.

Secure access is broken. Hybrid work, unmanaged devices, and cloud apps have outgrown VPNs, leaving gaps in security and increasing operational complexity. This video shows how Cato Universal ZTNA replaces fragmented access with a single, consistent policy across all users, devices, and applications while improving performance and control. You’ll see how continuous, risk-based access and application-level connectivity can reduce exposure while simplifying operations.

Mend.io, formerly known as Whitesource, has over a decade of experience helping global organizations build world-class AppSec programs that reduce risk and accelerate development -– using tools built into the technologies that software and security teams already love. Our automated technology protects organizations from supply chain and malicious package attacks, vulnerabilities in open source and custom code, and open-source license risks.

This episode explores why CTEM matters in a world of vibe coding, AI agents and rapidly expanding attack surfaces. It covers prompt injection, hidden threats, deepfakes, weak governance and the growing fear that businesses are deploying AI far faster than security teams can understand or control it.

It’s a huge concern, and Syteca's philosophy is 'Security Made Practical'. We launched a first-to-market real-time (data masking) feature. While records the session for security, it automatically obscures personal passwords, credit card numbers, and SSNs during the live recording. You get the forensic evidence you need for compliance like or without ever actually seeing the user's. It builds trust because the monitoring is focused on the risk, not the person.

Follow Joel Duffield while he talks about why some systems just don’t want to be logged. Whether it’s your backup tool that only sends email alerts, your budget IoT device that wasn’t built for enterprises, or that one SaaS app stuck on the free tier—there’s no clean way to get their messages into your SIEM.

Are you ready to take control of your AI agents with Rubrik Agent Cloud? Traditional keyword filters aren't enough when agents are acting autonomously. You need a true AI governance engine to manage them effectively! SAGE is our semantic AI governance engine that allows you to define custom policies using natural language and block risky tools in real time. Ready to secure your autonomous agents? Dive into SAGE and learn more by checking out our website.

Sophos enhances the Microsoft environments your customers already trust — helping you deliver stronger outcomes, clearer value, and a more defensible service offering. If you’re ready to build a more profitable and scalable Microsoft security practice, let’s talk.

AI agents just became production-ready overnight. With NVIDIA’s new NeMo Guardrails / NemoClaw-style agent control systems, AI agents can now operate in controlled environments with policies, sandboxing, and guardrails. Sounds safe… but there’s a catch. Agent safety protects what the AI does. But it doesn’t secure what the AI knows. And that’s where the real enterprise risk appears. In this video we break down the difference between.