Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Cyber attacks on the software supply chain are soaring, putting your applications and your business at unprecedented risk. But what if you could fortify your defenses, accelerate innovation securely, and stay ahead of every threat? Veracode Supply Chain Security helps you protect your organization from supply chain attacks with a powerful, unified approach to protecting your supply chain.

In the cloud, everything moves fast, especially your security and development teams. But oftentimes, they're moving in different directions. And when priorities don't align, teams end up settling for good enough. But when your reputation is on the line, good enough doesn't cut it. When securing every second matters, choose Sysdig. Choose cloud security the right way. Learn more on sysdig.com.

Staying Ahead of AI Threats: A CISO's Perspective In this insightful discussion, A10 Networks' security leaders —Jamison Utter, Madhav Aggarwal, and Diptanshu Purwar —delve into the critical security challenges emerging with the widespread adoption of AI and Large Language Models (LLMs).

This week’s briefing covers: Dive deeper: Playlist of Kroll's Weekly Cyber Threat Intelligence Briefings: Cyber Threat Intelligence Briefings.

Call spoofing allows scammers to disguise their phone number to make it look like it’s from someone you trust. Watch this short video to learn how spoofing works, how to recognize scam calls and how to protect yourself from becoming a victim.

In this video, I explore OpenAI’s Codex CLI tool to see how powerful it really is for coding with AI. But things quickly go off the rails… what started as a simple test ended with a surprise identity verification request. Apparently, to continue using the tool, I need to submit a government-issued ID and a photo of myself—something I didn’t expect at all. I talk through the process, show the error I ran into, and share my honest thoughts on this level of access and how invasive it feels for a developer tool.

Mend.io, formerly known as Whitesource, has over a decade of experience helping global organizations build world-class AppSec programs that reduce risk and accelerate development -– using tools built into the technologies that software and security teams already love. Our automated technology protects organizations from supply chain and malicious package attacks, vulnerabilities in open source and custom code, and open-source license risks.

Cisco Network Visibility Module Analytics (NVM): A new analytic story leveraging Cisco NVM telemetry to detect suspicious endpoint network behavior. This release includes 14 new analytics and mapped existing detections covering threats such as insecure curl usage, typosquatted Python packages, abuse of native Windows tools like rundll32 and mshta, and anomalous network connections from uncommon or argument-less processes.

Join security experts Adam White, Chas Clawson, and Seth Williams as they explore how AI-first development is reshaping the way cybersecurity teams build, test, and deploy solutions. Traditional development cycles often leave critical ideas trapped in backlogs, but with Gen-AI and language models, security teams can now move from concept to prototype in hours, not months.

Sumo Logic’s 2025 Security Operations Insights report surveyed 500 IT and security leaders from enterprise organizations to uncover what’s really happening inside today’s SOCs. Join security experts Adam White, David Girvin, and Zoe Hawkins as they break down the top findings from the report and shed light on what every analyst and CISO has felt for years: the system needs a reset.