Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Read the full report here: https://www.gitguardian.com/state-of-secrets-sprawl-report-2026

AI coding assistants like Claude Code and Cursor are helping developers write more code faster, but that also means more chances for secrets to slip into prompts, files, commits, and tool outputs. GitGuardian’s new open-source **agent-skills** repository teaches AI agents how to use **ggshield** directly inside the developer workflow: when to scan, how to read findings, and how to guide remediation for leaked credentials.

The corporate firewall is dead. With cloud, remote work, and state-sponsored attacks reshaping the threat landscape, identity is now the security perimeter, and boards are paying attention to the price tag. One Identity CEO, Praerit Garg, shows CISOs how to ditch the technical jargon and make the case for identity security in the only language the boardroom understands: money, risk, and ROI.

In this video, you will learn why static domain-blocking strategies fail against the modern Shadow AI ecosystem, how Generative AI wrappers, browser extensions, and personal accounts bypass corporate firewalls without triggering an alert, and why network-layer inspection cannot distinguish proprietary code from public Stack Overflow snippets. We break down the limitations of traditional DLP at the clipboard layer, explain how data lineage replaces application allow-lists, and show how the "Glass House" model lets enterprises enable AI productivity while strictly gating sensitive data movement.

The attack lifecycle is compressing. Frontier AI models like Anthropic’s Mythos and OpenAI’s GPT-5.5-Cyber can help bad actors research vulnerabilities, test approaches, adapt code, and change delivery methods at machine speed and scale. That reduces the time, skill, and coordination needed to move from vulnerability discovery to active attack. When attacks behave this way, security needs to operate in real time with full visibility and context across the attack path.

To ensure a company can continue to operate and make a profit, its intellectual property must be kept safe. It’s not uncommon, however, for employees to unintentionally put IP in harm’s way – and it’s the job of security to prevent accidental disclosure or loss with the right support. Renasas’ focus on preventing accidental data leaks and protecting IP aligns with Netskope's core data loss prevention (DLP) and security capabilities.

Tired of decoding commands, searching unfamiliar processes, and guessing alert context? See how Tanium AI Enrichment& Analysis breaks down alert activity, explains risk, and guides response - without leaving your workflow. Join us as we explore how Tanium Threat Response uses AI to: Provide detailed context and security implications Decode complex or encoded command lines Summarize alerts with key findings and context Recommend next steps to accelerate investigation and response.

When a tired EU diplomat clicks "connect" on an airport Wi-Fi portal, his briefing—and his government's secrets—end up in Chengdu. Hosts Tova Dvorin and Adrian Culley unpack Mustang Panda (APT27 / Bronze President), the Chinese threat group running the long con against NGOs, ASEAN ministries, and Tibetan and Uyghur activists. Inside: captive-portal Wi-Fi Pineapples that bypass MFA, PlugX side-loading through legitimate apps, and the USB worm that jumps air-gapped military networks.

Is the internet losing its humanity? World Project wants to fix that — but at what cost to your privacy? Watch this video to find out.

The Zero-Lag Posture See how UpGuard is moving beyond static defense to a model that identifies emerging vectors like MCP servers and neutralizes browser-based threats in real time. Interested in finding out more about UpGuard?