Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Achieving FedRAMP compliance is complex, but AppTrana WAAP simplifies it. This video explains how AppTrana delivers continuous vulnerability scanning, attack prevention, SIEM-friendly audit logs, real-time incident response, and automated remediation through SwyftComply. Perfect for CISOs, compliance teams, and cloud security leaders preparing for FedRAMP audits.

With over 32,000 security incidents reported by U.S. federal agencies in the past year, cyber risks are growing in scale and complexity. NIST SP 800-53 r5 provides a comprehensive framework of security and privacy controls to help organizations manage risk, protect critical systems, and maintain regulatory compliance.

New XSS vulnerability in Apache SkyWalking! CVE-2025-54057 enables stored script injections that steal sessions and manipulate dashboards. Fix + protection steps inside.

Building AI agents that can think, act, and adapt securely isn't easy. From prompt design to deployment, every stage brings new challenges and new risks. In this session, Bar-El Tayouri, Head of Mend AI at Mend.io, and Yehoshua (Shuki) Cohen, VP of Data and AI Evangelist at AI21 Labs, shared practical strategies for designing and defending agentic systems that actually deliver. Key topics covered: Originally recorded: October 29, 2024.

What’s next in cybersecurity? Forescout’s Vedere Labs breaks down the top 7 trends for 2026—from SaaS token attacks to AI-powered social engineering, ransomware supply chain threats, and more. Learn what attackers are planning and how to stay ahead.

In this in-depth walkthrough, we will show you how to turn ggshield, the GitGuardian CLI, into a practical guardrail for keeping secrets out of your code and CI pipelines. You’ll see exactly how to install and authenticate ggshield, then use it to scan repositories, local paths, archives, Docker images, PyPI packages, and CI environments for hardcoded credentials. We’ll also walk through configuring Git hooks with ggshield install.

AI isn’t just changing cyber defense—it’s transforming how attacks happen. In this episode, Tova Dvorin sits down with Tomer Bar and Shelly Zucker from SafeBreach to explore how AI-powered threats are reshaping the battlefield. Hear about: If you’re in cybersecurity, risk, or IT, this is your must-listen guide to preparing for the AI-enabled threat era.

In this special episode, host Tova Dvorin sits down with SafeBreach experts Adrian Culley and Tomer Bar to unpack CVE-2025-53770 — a zero-day deserialization flaw in Microsoft SharePoint Server that enables unauthenticated remote code execution and long-term persistence. This isn’t theoretical. It’s actively exploited and tied to the evolving ToolShell attack chain. Here’s what you’ll hear in this episode.

The FBI, NSA, and CISA just issued a warning about Iranian state-backed actors, including the notorious Cyber Avengers, targeting US networks—especially OT, IoT, water, and aviation systems. These groups aren’t hacktivists—they’re highly skilled, sanctioned members of the IRGC. Key takeaways: Stay proactive: run simulations, remediate vulnerabilities, and lock the stable door before the horse bolts.

In this episode of the SafeBreach Cyber Resilience Podcast, host Tova Dvorin and Adrian Culley dive deep into Interlock—one of today’s most aggressive ransomware operations. What you’ll learn: From hospitals to schools, no one’s immune—hear how Interlock is rewriting the ransomware playbook and what your team can do to stay resilient.