Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

The AI arms race in deepfake detection has a critical problem: the technology can't keep up. In this episode, Navroop Mitter, CEO of ArmorText, discusses why the industry is shifting away from relying on AI detection alone. A recent study from SKKU in South Korea found that zero out of sixteen top deepfake detection technologies could reliably identify deepfakes in real-world conditions. They worked fine in controlled lab settings, but failed when it mattered most.

Your website is unique, and so are the attacks against it. Generic Web Application Firewall (WAF) rules protect everyone a little, but leave your site exposed to specialized attacks. Custom WAF rules are your line of defense against targeted threats—the ones tailored to your specific application, industry, or code base. Key Advantages of Custom WAF Rules.

This video, originally created by Wesley from ByteGrad, walks through how to secure your applications using Mend.io’s AI-Native AppSec Platform — including SAST, SCA, and SBOM scanning. Wesley explores how Mend integrates with GitHub, automates code fixes, and helps developers stay ahead of vulnerabilities. Creator: ByteGrad YouTube Channel Timestamps.

See how Aurora Endpoint Defense uses predictive AI and behavioral detection to deliver powerful, outcome-driven endpoint protection. This demo highlights key features like alert triage, threat prevention, and automated response—all designed to simplify and strengthen your security posture.

PCI DSS 4.0 represents a significant change in how organizations and service providers approach compliance. It is more than an update to requirements. It is a philosophical shift that emphasizes continuous, risk-based security instead of point-in-time validation. In this joint session, LimaCharlie, ControlCase, and author Branden R. Williams explore how to navigate this new era of PCI compliance. Branden explains what has changed in PCI DSS 4.0, why those changes were made, and how they reflect a new mindset toward continuous assurance and flexibility.

Nothing says "Happy Birthday" like your mom accidentally giving scammers your entire identity. Lock down those family posts. The internet doesn't need to know your first pet's name, your hometown, and what you looked like in braces. Do yourself a favor: teach your parents about privacy settings this weekend.

Adam Winston breaks down how attackers, including the Royal Ransomware Group, are moving below the endpoint to hit hypervisors and core infrastructure. It’s a blind spot too many overlook.

As our lives move increasingly online, it’s worth considering what happens to our digital selves after we’re gone. From social media accounts to crypto wallets, our digital footprint now extends far beyond the physical world. Make a plan for your digital legacy today.

Your API Gateway Is Not an API Security Solution Confusing API management with API security is a costly and dangerous mistake. An API Gateway is a traffic controller, but it has critical blind spots: It authenticates users but doesn't analyze their behavior for malicious intent. It routes traffic but doesn't inspect payloads for complex attacks. It manages access but can't detect business logic abuse.

This is why SMEs should align Cyber Essentials controls with cyber insurance to reduce risk, meet insurer expectations and avoid false trade-offs.