Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Pilots are running. Proof-of-concepts are live. But when does stablecoin activity at banks actually become a production revenue line? Stephen Richardson, Chief Strategy Officer at Fireblocks, lays out the three specific signals he is watching: large regional and GSIB banks enabling stablecoin acceptance as a corporate treasury product, banks initiating stablecoin payouts directly from DDA accounts, and the emergence of bank-to-bank stablecoin networks with compliant messaging infrastructure for cross-border settlement.

Stablecoins are moving from pilot projects into live bank infrastructure — but the path from proof-of-concept to production is anything but simple. Stephen Richardson, Chief Strategy Officer and Head of Banking at Fireblocks, joins John Lagman of Bloomberg at REDeFiNE Tomorrow 2026 to break down where banks actually stand with stablecoins: the infrastructure decisions they have to make, why most are still in early-stage evaluation, and what a scaled operating model looks like.

Most organizations have no idea how many MCP servers are running in their environment—and attackers are counting on that. In this clip, Adrian Culley breaks down the exact steps security teams need to take now: run the network scan, apply stringent code review to every MCP server project you find, and mandate authentication. Authorization may be optional in the MCP spec—but it doesn't have to be optional in your deployment.

Join us for this week's Defender Fridays as Carlo Anez, Founder & Lead Instructor at IgniteCyber Academy and DEFCON Training Instructor, breaks down how to build practical blue team skills using open-source labs, MITRE ATTACK, and real-world defender workflows, and where AI fits into the picture without replacing the analyst.

Read the full report here: https://www.gitguardian.com/state-of-secrets-sprawl-report-2026

In this week's Weekly Brief: The Driftnet Edition, Brandon Torio explains why internet scanning is a lot like modern healthcare. Just as blood tests help doctors identify hidden health risks before they become serious problems, internet scanning helps organizations uncover unseen cyber risks across their attack surface and third-party ecosystem. "The internet has evolved past any one person's understanding.".

Manage security alerts from multiple EDR customers automatically. See how Tines ingests, enriches, and responds to CrowdStrike and SentinelOne detections in one workflow. If you're managing EDR platforms for multiple customers, keeping on top of alerts across separate tenants is a nightmare. This story pulls alerts from CrowdStrike and SentinelOne, normalizes the data, and automatically opens a Tines Case all without hardcoding a single credential.

Is there an unlocked window in your code? A software vulnerability is more than just a "bug". It's a security gap that can lead to data breaches, system crashes, and lost customer trust. In this episode of EveryOps in 1 Minute, we break down: The definition of a software. Why they happen (from coding slips to complex architecture). Real-world examples like Log4j. How to "shift left" to catch flaws before they reach production.

How do CISOs feel about drift? Misconfigurations rarely look like incidents. A setting shifts, posture weakens, and nothing announces it until it already matters. That is a hard seat for whoever owns posture. Without a clear view of what changed, you are working secondhand, leaning on the team to tell you what moved and whether it hurt.

Our Red Team handed OpenClaw a penetration testing toolkit and pointed it at one of our own legacy Active Directory networks. 23 findings across 11 attack paths... But the findings aren't the interesting part. What's interesting is how it got there. Work that takes our human team three days took the agent three hours. Mid assessment it hit a wall, reasoned about its own limitations and proposed spinning up an EC2 GPU instance to crack a password hash. Nobody told it to.