Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

RBI. SEBI. IRDAI. CERT-In. These are just some of the regulatory frameworks a modern enterprise must comply with today. When companies operate under multiple regulators, overlapping mandates often create more confusion than clarity, with different reporting timelines, expectations, and audit pressures.

AI is changing how malware is built, and how it’s caught. In this episode, Caleb Tolin is joined by Amit Malik, Staff Security Researcher at Rubrik Zero Labs, to unpack how large language models are transforming malware analysis, enabling defenders to sift through thousands of samples and surface truly novel threats. From Chameleon malware abusing WSL to AI-generated attack code, this conversation explores what real data resilience looks like in an AI-driven threat landscape.

This is what crypto options infrastructure looks like at scale. Deribit needed to onboard custodians and expand collateral support without months of technical integration for each new relationship. Luuk Strijers, CEO of Deribit, knew they needed a partner with the security, flexibility, and network to scale faster without compromise. That partner was Fireblocks. Full wallet infrastructure across hot, warm, and cold storage Seamless expansion of collateral and coin support Frictionless custodian onboarding through Off Exchange.

Mend.io, formerly known as Whitesource, has over a decade of experience helping global organizations build world-class AppSec programs that reduce risk and accelerate development -– using tools built into the technologies that software and security teams already love. Our automated technology protects organizations from supply chain and malicious package attacks, vulnerabilities in open source and custom code, and open-source license risks.

This week’s briefing covers: Dive deeper.

Think your screen is safe in public? Think again. Sneaky shoulder surfers can grab passwords, PINS, and personal details in seconds. Use these tips to protect yourself.

The term "AI Agent" is failing us. In Prediction, Ev warns that our vocabulary is lagging behind the technology. Calling everything an "AI Agent" is like calling everything "software." It’s too broad to be useful. A browser plugin has a completely different architecture than a microservice or a factory robot. They have different identities, different risks, and different security needs. You can't secure what you can't specifically identify.

In this episode of Masters of Data, we tackle why cybersecurity professionals burn out, and it's not just long hours. We explore how repetitive tasks, limited growth, and work that feels invisible drain security teams who face constant vigilance with few wins and no finish line. We discuss how high-stakes environments and rigid SLAs prevent real breaks, then share solutions: celebrate small victories, recognize contributions, prioritize physical health, and protect work-life balance. The key? Clear communication, realistic expectations, and making security's invisible impact visible.

A new Chinese cybersecurity law just changed the global threat landscape. In this clip, Tova Dvorin and Adrian Culley break down what went into effect on January 20, 2026—and why it’s unprecedented. Under the updated law, vulnerabilities discovered by Chinese citizens or companies must be reported to the state within 48 hours and cannot be disclosed to vendors until approved. The result? A government-first window to exploit zero-days before they’re patched—at global scale.