%term

DDoS Protection for Education: How Schools, Universities, and EdTech Stay Resilient

May 13, 2026 By Vinugayathri Chinnasamy In Indusface

Globally, schools and universities now face over 4,300 cyberattacks per week on average, marking a 40% year-over-year increase and making the education sector a prime target for disruptive DDoS attacks. Most educational institutions operate with lean IT teams responsible for infrastructure, user support, and security. This resource constraint makes it difficult to withstand prolonged or application-layer DDoS attacks that can quickly disrupt learning platforms and administrative systems.

Read Post

Indusface

Read more about DDoS Protection for Education: How Schools, Universities, and EdTech Stay Resilient

INETCO's Bijan Sanii on the threat every South African bank should be worried about

May 13, 2026 By Stacy Gorkoff In INETCO

Article by Luis Monzon originally published on MyBroadband, May 9, 2026. Anthropic’s AI model Mythos, part of its Claude software, represented a clear threat to banks and financial institutions in South Africa. This is according to Bijan Sanii, CEO of Canadian fraud detection provider INETCO. Anthropic, one of the world’s most important generative AI makers, positioned Mythos as an extremely capable AI model designed to identify vulnerabilities in critical software beyond human capabilities.

Read Post

INETCO

Read more about INETCO's Bijan Sanii on the threat every South African bank should be worried about

The CRINK Catalog: In-Depth Resources to Navigate a New Era of Cyber Threats

May 13, 2026 By Stacey Nosan In SafeBreach

The emergence of the CRINK axis—a coordinated cyber-threat nexus comprised of China, Russia, Iran, and North Korea—has dramatically impacted the 2026 global risk landscape. As these nation-states utilize AI-driven scale and living-off-the-land (LOTL) tactics to target critical infrastructure, SafeBreach’s new content series provides essential intelligence on their evolving motivations and methods.

Read Post

SafeBreach

Read more about The CRINK Catalog: In-Depth Resources to Navigate a New Era of Cyber Threats

Interact Essentials and Beyond - Tanium Tech Talks #161

May 13, 2026 By Tanium In Tanium

Interact is the foundation of the Tanium Autonomous IT Platform. In this episode, we discuss how to ask questions, build filters, and use caching and saved questions. Plus, supercharge your workflows with the AI‑powered Ask Agent.

View Video

Tanium

Security

Read more about Interact Essentials and Beyond - Tanium Tech Talks #161

The GitGuardian Secret Detection Engine Just Got 43X Faster Thanks To Rust

May 13, 2026 By GitGuardian In GitGuardian

While not a new feature, the GitGuardian team has been hard at work making updates to our TokenScanner, the underlying engine that powers GitGuardian's secret scanning ability. This is great news for folks dealing with very large repos and legacy platforms that thousands of developers have touched over the years. Scanning millions of files, attachments, commits, and anywhere else secrets might be hiding takes minutes. Historical scans across petabytes of information, which used to take days, now take less than an hour. What used to take hours takes a few short minutes.

View Video

GitGuardian

Read more about The GitGuardian Secret Detection Engine Just Got 43X Faster Thanks To Rust

Emerging Threat: (CVE-2026-45185) Exim Remote Code Execution via BDAT over GnuTLS

May 13, 2026 By Igal Zeifman In CyCognito

CVE-2026-45185, nicknamed Dead.Letter, is a use-after-free vulnerability in the BDAT message body parsing path of Exim, the open-source Mail Transfer Agent that runs a large share of the internet's email servers. The flaw lives in the GnuTLS-backed TLS path, where Exim can free its internal transfer buffer during a TLS shutdown while the SMTP state machine still holds a reference to it.

Read Post

CyCognito

Read more about Emerging Threat: (CVE-2026-45185) Exim Remote Code Execution via BDAT over GnuTLS

Your AI Agents Are Already Acting. The Question Is Whether You Can See What They're Doing.

May 13, 2026 By Michael Callahan In Salt Security

In conversations with CISOs about their agentic environments, the question I ask first is not whether they have agents deployed. Most do. It is not whether those agents are creating value. Most are. The question I ask is whether they have mapped their Agentic Security Graph. Almost none of them have. And that gap, between the agentic infrastructure that exists inside their organizations and the visibility they have into it, is where the most serious AI security risk in the enterprise lives right now.

Read Post

Salt Security

Read more about Your AI Agents Are Already Acting. The Question Is Whether You Can See What They're Doing.

64% of valid secrets GitGuardian tested in 2022 are still valid in 2026

May 13, 2026 By GitGuardian In GitGuardian

Read the full report here (no email sign up required).

View Video

GitGuardian

Read more about 64% of valid secrets GitGuardian tested in 2022 are still valid in 2026

DevOps Threats 2026: GitProtect Reveals AI and Compliance Danger Zones

May 13, 2026 By Łukasz Dydek In GitProtect

As DevOps environments become primary attack surfaces, protecting your intellectual property (IP) requires a data-driven understanding of the modern threat landscape. The 2026 “DevOps Threats Unwrapped Report” by GitProtect accelerates building your cyber awareness. It brings you the latest statistics, highlighting contemporary trends in DevSecOps. It also dives into dozens of real attacks and breaches affecting SaaS platforms in 2025 in 10 different areas.

Read Post

GitProtect

Read more about DevOps Threats 2026: GitProtect Reveals AI and Compliance Danger Zones

Cato CTRL Threat Research: Suspected China-Linked Threat Actor Targets Global Manufacturer with Undocumented TencShell Malware

May 13, 2026 By Idan Tarab In Cato Networks

In April 2026, Cato CTRL identified and blocked an attempted intrusion against a global manufacturing customer involving TencShell, a previously undocumented, Go-based implant derived from the open-source Rshell C2 framework. The activity appeared in traffic associated with a third-party user connected to the customer environment.

Read Post