Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

In this episode of This Week in NET, host João Tomé is joined by Matt Curry to break down Code Mode: a way to give AI agents access to the entire Cloudflare API (2,500+ endpoints) using two tools and roughly ~1,000 tokens of context. Instead of exposing thousands of individual tools (which quickly becomes expensive and brittle), Code Mode lets the model write JavaScript to search and execute against a compact API context. The result is massive compression, lower cost, and better performance.

Managing user authentication across multiple platforms can be a challenge. By integrating Keycloak with Jira using the miniOrange OAuth/OIDC SSO plugin, you can centralize your identity management and provide a secure, seamless login experience for your team. In this video, we walk you through the full configuration process: from setting up a new Client in your Keycloak Realm to finalizing the OAuth settings within Jira. You’ll see how to handle the Root URL, Valid Redirect URIs, and how to map the Client Secret to get your SSO running instantly.

We went live to break down insights from 661 real‑world incidents remediated by Sophos X‑Ops, as detailed in the Sophos Active Adversary Report 2026. Host Susie Evershed and Sophos Senior Incident Response Analyst Hilary Wood unpacked the key trends shaping today’s threat landscape, including the continued dominance of identity‑driven attacks and the prevention steps that still made the biggest difference.

Functionality vs. Aesthetics in AI Models.

Adversaries exploit MFA fatigue and identity gaps to gain access. Watch how FalconID delivers security-first, phishing-resistant MFA built on the FIDO2 standard, tying authentication to a user’s enrolled device and informed by real-time risk signals across the Falcon platform.

Attackers don’t break in, they log in—exploiting weak MFA with phishing and fatigue tactics. Watch how FalconID delivers security-first, phishing-resistant MFA built on FIDO2 standards and bound to the user’s trusted device.

In this episode of Building Cyber Resilience: A Healthcare Leader’s Guide, host Josh Howell speaks with John Riggi, National Advisor for Cybersecurity and Risk at the American Hospital Association. Drawing on nearly 30 years at the FBI and his current work advising more than 5,000 hospitals, Riggi explains why ransomware attacks on healthcare should be treated as threat-to-life events. He breaks down the real-world consequences of cyberattacks, from ambulance diversion to delayed cancer care, and outlines what leaders must do now to prepare for outages that last weeks, not hours.

AI Agents can touch your data, APIs, and systems. Without real-time governance, you're one mistake away from a security nightmare.

As AI adoption accelerates, a new security risk is emerging from inside organizations, driven not by attackers, but by well-intentioned employees. Across the business, teams are rapidly building AI-powered applications, workflows, and automations using low-code/no-code platforms, custom scripts, and MCP servers.

Most organizations have commitment issues. Like tracking all your customer obligations on sticky notes, Slack threads, email chains, screenshots, whiteboards, and spreadsheets. Why not save yourself the scavenger hunt and, you know, just use Vanta? Customer Commitments is a security intelligence layer that pulls critical SLAs out from legalese, and surfaces the commitments that actually matter with the Vanta AI Agent. Helping you centralize + operationalize every promise—so revenue and reputation aren’t on the line.