%term

Beyond the Hype: What True API Security Leadership Looks Like

Aug 27, 2025 By Eric Schwake In Salt Security

In our previous post, we highlighted a key insight from the 2025 KuppingerCole Leadership Compass: securing AI depends on securing APIs first. The report emphasizes that as AI use grows, the attack surface for APIs becomes more complex and risky. With many solutions available, navigating vendor claims can be challenging, making independent expert analysis extremely valuable.

Read Post

Salt Security

Read more about Beyond the Hype: What True API Security Leadership Looks Like

EP 14 - Beyond secrets: Securing the future of machine identity

Aug 27, 2025 By CyberArk In CyberArk

In this episode of Security Matters, host David Puner sits down with Matt Barker, CyberArk’s VP and Global Head of Workload Identity Architecture, for a deep dive into the exploding world of machine identities and the urgent need to rethink how to secure them.

Read Post

CyberArk

Read more about EP 14 - Beyond secrets: Securing the future of machine identity

What You Need to Know about the PayPal Data Breach

Aug 27, 2025 By IDStrong In IDStrong

PayPal was established in 1998 by Peter Thiel, Luke Nosek, and Max Levchin. The application's goal was cybersecurity for handheld devices before pivoting to a digital wallet. It merged with X.com in 2000 and was later rebranded for online payment systems. After spinning off from eBay in 2015, the platform expanded globally to democratize financial services to ensure everyone can access convenient products.

Read Post

IDStrong

Read more about What You Need to Know about the PayPal Data Breach

Declutter your crypto: Machine identity security for a post-quantum world

Aug 27, 2025 By Kevin Bocek In CyberArk

In a bad dream, you open the closet. You think you know exactly what’s in there: a few SSH keys, a bunch of TLS certificates, and some secrets like API keys locked in what you believe to be a safe place. But pull it all out and suddenly you find yourself face-to-face with stacks of forgotten ciphers, drawers stuffed with expired certificates, and algorithms in use you thought teams had left behind in 2011. And that’s just for one application.

Read Post

CyberArk

Read more about Declutter your crypto: Machine identity security for a post-quantum world

Securing the Future: How to Safeguard MCP and Agentic AI with Teleport and AWS

Aug 27, 2025 By Teleport In Teleport

As enterprises rapidly adopt agentic AI and large language models (LLMs) to automate critical business processes and access sensitive data, the traditional security playbook is no longer sufficient. The Model Context Protocol (MCP), a new connector for AI systems like Amazon Bedrock Agents, is revolutionizing enterprise integration—but it also introduces new risks. Join us for an in-depth session exploring how to secure MCP-based AI architectures using Teleport’s Infrastructure Identity Platform and AWS. We’ll cover.

View Video

Teleport

Read more about Securing the Future: How to Safeguard MCP and Agentic AI with Teleport and AWS

You Can't Audit What You Can't See

Aug 27, 2025 By Razorthorn Security In Razorthorn

If you don’t have visibility across your environment, you can’t prove compliance. And if you can’t prove it, you’re stuck in audit hell.

View Video

Razorthorn

Read more about You Can't Audit What You Can't See

The Role of AI in Endpoint Security

Aug 27, 2025 By Arctic Wolf In Arctic Wolf

One can’t discuss the modern state of endpoint security without mentioning a term that has quickly become ubiquitous with security solutions: artificial intelligence (AI). With a constantly evolving threat landscape and many security challenges plaguing organizations (e.g sprawling attack surfaces, monitoring and continuity gaps, alert overload, and limited resources), it’s clear that endpoint security must evolve as well, and the most-promising advancement is AI.

Read Post

Arctic Wolf

Read more about The Role of AI in Endpoint Security

We Are the Weakest Link

Aug 27, 2025 By Theresa Lanowitz In LevelBlue

The old phrase “we’re only human, after all” is what cyber-adversaries are relying upon to gain access to intellectual property, data, and credentials. Adversaries prey on the humanity in us to read an unsolicited email, act out of a sense of urgency, or succumb to their scare tactics. We are bombarded with social engineering scams daily. Why do some of us fall victim while others see through veiled attempts at getting us to relinquish something of value?

Read Post

LevelBlue

Read more about We Are the Weakest Link

Why Protecto Chose SingleStore as Part of GPTGuard's Architecture

Aug 27, 2025 By Protecto In Protecto

Traditional RAG creates risk. In enterprise AI, accuracy and security aren’t optional. Most vector-only databases are built for speed, but they ignore enterprise realities like security and compliance. Without context, access controls, or accurate recall, they create compliance gaps that make AI unsafe for regulated industries. At Protecto, we built GPTGuard to change that — making enterprise AI safe by preventing data leaks, enforcing privacy, and keeping compliance intact.

Read Post

Protecto

Read more about Why Protecto Chose SingleStore as Part of GPTGuard's Architecture

Widespread Salesforce Data Theft via Compromised Salesloft Drift OAuth Tokens

Aug 27, 2025 By Andres Ramos In Arctic Wolf

On August 20, 2025, Salesloft published an advisory describing a security issue potentially affecting the Salesloft Drift integration with Salesforce. On August 26, Google Threat Intelligence Group (GTIG) provided additional details about the campaign, in which a threat actor known as UNC6395 authenticated against Salesforce customer instances using compromised OAuth tokens tied to the Salesloft Drift integration with Salesforce.

Read Post