Takeaway from RSAC 2025: Focus on AI Utility

If you are at all involved in cybersecurity, then chances are you attended or talked to someone about the RSA Conference 2025. This year’s theme was “Many Voices, One Community” – a spot on description based on my experience. Yes, there were many voices – mostly talking AI, specifically agentic AI which is driving innovation and demand for security solutions.

SafeBreach Coverage for US CERT AA25-141B (Sticky Werewolf)

On May 21, 2025, the FBI and CISA released a joint Cybersecurity Advisory (CSA), designated AA25-141B, warning about the rise in attacks leveraging LummaC2, attributed to a threat group referred to internally as Sticky Werewolf, this cyber espionage campaign has used LummaC2 malware since at least April 2023 to target Russian and Belarusian government agencies, science centers, and aviation manufacturers.

Multiple Unpatched Vulnerabilities in Versa Concerto Disclosed

On May 21, 2025, ProjectDiscovery published technical details for multiple vulnerabilities they discovered in Versa Concerto, including authentication bypasses, remote code execution (RCE), and container escapes. Versa Concerto is a centralized management platform used to manage Versa’s SD-WAN and SASE services. It is a Spring Boot-based application deployed via Docker containers and routed through Traefik.

Zenity and Microsoft Copilot Studio Extend AI Agent Security from Buildtime to Runtime

As enterprises race to adopt AI Agents to drive productivity and innovation. We are excited to announce that Zenity and Microsoft Copilot Studio are joining efforts to enable full adoption of AI Agents. Together, Zenity and Microsoft Copilot Studio help organizations confidently build, deploy, and use AI Agents with built-in security and governance throughout the development and deployment process so they can accelerate adoption at scale.

How To Get a Child an IP PIN and Protect Their Identity

An IP PIN is a six-digit code that protects US residents from fraudulent tax submissions. Electronic tax filings require an IP PIN and Social Security Number, allowing the former to act as a form of two-factor authentication. While IP PINs are primarily used by adults, they can also protect minors from having their identities used by fraudulent actors. A child without an IP PIN is at risk of having their identity used to file fake taxes.

All About PCI DSS SAQ Types: Find the Right One for You

A Self-Assessment Questionnaire (SAQ) is a validation tool used by merchants and service providers to prove their compliance with the Payment Card Industry Data Security Standard (PCI DSS). Instead of undergoing a full audit, eligible businesses complete an SAQ based on how they handle payment card data. There are multiple SAQ types, each tailored to specific merchant environments. Choosing the wrong one can lead to compliance gaps and potential penalties.

Operate Smart. Move Faster. Now Possible with Wallet Tagging and Sweeping.

This week, Fireblocks is expanding its platform with new capabilities that simplify, automate, and accelerate digital asset operations for your business. At the heart of the digital asset ecosystem, Fireblocks powers thousands of institutions moving billions in assets. As businesses grow in scale and complexity, so do the operational demands behind the scenes—from structuring wallets across clients and jurisdictions to ensuring funds move where they need to, fast.