Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Mend.io, formerly known as Whitesource, has over a decade of experience helping global organizations build world-class AppSec programs that reduce risk and accelerate development -– using tools built into the technologies that software and security teams already love. Our automated technology protects organizations from supply chain and malicious package attacks, vulnerabilities in open source and custom code, and open-source license risks.

Join us for an exclusive behind-the-scenes look at how Thomas Murray, a global risk intelligence company, enhanced their security operations using LimaCharlie's SecOps Cloud Platform. In this technical deep dive, Thomas Murray's security expert Guillermo Roman, demonstrates how they've leveraged LimaCharlie's platform to enhance their security operations. By implementing custom automation workflows, Thomas Murray has achieved significant reductions in incident response times.

AI agents are revolutionizing cybersecurity by handling the tedious false positive alerts that drain SOC analysts. As our security perimeter expands to the cloud, we're drowning in red blinking lights - but AI agents never tire and never sleep! Grant Oviatt from Prophet Security explains how AI is solving the alert fatigue problem that's plaguing security teams worldwide. Key Points: AI agents handle repetitive security tasks False positive alerts are overwhelming analysts Cloud expansion = more security alerts AI works 24/7 without fatigue.

Corelight CEO Brian Dye shares the high-stakes story of a customer under a $10 million ransomware attack. The attackers claimed to have stolen sensitive IP—but with Corelight, the customer had the network visibility to verify exactly what was taken. The result? They confirmed the stolen data was limited and non-critical, enabling them to confidently deny the ransom demand. This powerful story illustrates the difference between “I think” and “I know”—and how that clarity can drive executive confidence, legal defensibility, and real-world savings.

Corelight CEO Brian Dye recounts how Corelight supported SectorCERT—an alliance of energy companies in Denmark—during one of the most advanced attack sequences he’s seen. The coordinated campaign targeted a shared firewall vulnerability across nearly a dozen organizations. Corelight provided the critical visibility and detection that helped defenders stop the first wave—and stay ahead of a second, modified attack just weeks later. The incident became a model of collaboration and response across national infrastructure.

Get a demo: https://torq.io/resources/ctv-demo/

Kids believe AI knows everything. This shift in trust has serious implications for digital safety and phishing risk.

Random but Memorable turns 150! (It’s official, we’re old.) To celebrate, we play some special messages submitted by you – our listeners and customers – along with our own 1Password employees. We’re even sharing some crowdsourced 1Password tips for good measure. We also host a very special Archive Edition of Watchtower Weekly. We look back at some of the historic news stories we covered in 2018 and reflect on how the world of cybersecurity has changed.

Does WAF protect against API threats? A10's Jamison Utter discusses whether WAF (Web Application Firewalls) can protect API (Application Programming Interface). Since the role of a WAF is to stop run-time actions, it's not designed for modern API security challenges, as it has no context for what API is doing.

Falcon Identity Protection strengthens security for non-human identities with continuous visibility, advanced detection, and automated, risk-based policies.