Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

"Malware is created by criminals. They are intending to cause harm. It is not hypothetical. They want you to consume it for nefarious purposes.".

In this interview, GitGuardian security researcher Guillaume Valadon breaks down how GitGuardian discovered a public GitHub repository exposing CISA-related secrets, including plain-text passwords, AWS tokens, SAML certificates, CI/CD files, Kubernetes manifests, and internal operational documentation. We discuss how the leak was identified, why exposed secrets can create immediate risk, and how GitGuardian helped escalate the disclosure until the repository was taken offline within 26 hours.

AI agents are becoming an inseparable part of identity governance, sometimes being created by other AI agents and acting proactively across platforms at machine speed — but who’s watching them? Identity Manager 10.0 by One Identity answers that question. Hear Ingrid Thorpe, director of product management for Identity Manager, explore how the solution governs agentic workflows, tackles agent-specific risks and integrates across cloud and enterprise platforms, holding non-human identities (NHIs) accountable.

- Dr. Ido Sivan Sevilla joins host Caleb Tolin to break down battlefield stories from a massive analysis of over 3,000 local government entities. Dr. Sivan Sevilla, who serves as an Assistant Professor at the UMD College of Information and holds joint positions at the Hebrew University School of Public Policy & Governance and the School of Computer Science and Engineering, brings a multidisciplinary lens to the alarming reality of risk clusters.

Learn more about how Torq's Jit acquisition unleashes the first enterprise AI SOC Context Graph: https://bit.ly/4dRTS99

In this demo, we will look at three different use cases for the Aurora Security Assistant including general security knowledge, deeper ticket context and quick answers around self-service and product documentation.

Recorded at WatchGuard’s EMEA Partner Conference, in Dubrovnik, Croatia, this episode of 443 – Security Simplified features Peter Johnson from Schwartz GmbH for a conversation on how cybersecurity priorities are evolving across Europe. Peter discusses the increasing complexity organizations face when balancing security, compliance, and operational efficiency, along with the challenges of supporting customers and partners with varying levels of cybersecurity maturity.

Every security vendor says their data is better. Corelight decided to test that claim directly. Using real nation-state attack scenarios, including Salt Typhoon-related activity, the same AI model was evaluated against multiple security data sources to measure investigation accuracy, threat visibility, and incident response coverage. The only variable was the data.

At Black Hat last year, we sat down with Kevin Mandia to talk about what's coming. His take: offense is going to accelerate with AI. Not slow down. Not plateau. Accelerate. When you've run more red teams than practically anyone on the planet, the pattern is clear. Getting into a victim network is already a race. AI compresses those time frames further. The attack surface isn't changing. Misconfigurations, things that slipped, controls that were on and got turned off. The entry point stays the same. AI just makes the race to exploit it faster.

See how Veriato IRM delivers behavioral visibility to help organizations detect and prevent insider threats before they escalate. This demo showcases Veriato’s Insider Risk Management platform in action, including AI-driven risk scoring, behavioral analytics, sentiment analysis, anomaly detection, and real-time alerting. Learn how security, compliance, and leadership teams can move beyond reactive monitoring to proactively identify risky behavior, investigate incidents faster, and strengthen organizational resilience.