Sophos MDR AI Agents for Triage and Case Investigation
These are just a few, powerful examples of how we're building out the Agentic SOC, driven by human expertise to deliver superior cybersecurity outcomes.
Issuance Automation vs Certificate Automation
You’ve deployed certificate automation with Certbot and your artisanally-crafted scripts, but you still got paged at 2am for an expired cert. You’ve discovered the difference between issuance automation and certificate automation.
The best TPRM software for 2026
Vendor risk programs often scale faster than the teams that run them. Every new third-party relationship adds security questionnaires, evidence requests, and hours of manual follow-up. When a single vendor review can take 50+ hours, backlogs grow, reviews slow, and critical risks slip through. At the same time, vendor security postures change constantly.
The 2026 Forecast for AI-Driven Threats
2025 changed the shape of digital risk. In 2026, the impact accelerates. The fastest-growing threats no longer look like traditional attacks. They arrive through apparently legitimate automated access – AI agents, LLM crawlers, and delegated automation interacting directly with revenue-critical systems. They don’t trigger alarms. They quietly extract value, distort pricing logic, and reshape digital economics at scale.
IT Giveth, Security Taketh: The Hidden Cost of Configuration Drift
“IT giveth. Security taketh.” A topic examined in a print interview with Colt Blackmore, co-founder & CTO of Reach Security, written by Dan Raywood at Security Boulevard: ︎ The long-standing friction between IT enablement and security restriction︎ Configuration drift as the quiet divergence between intended and actual state︎ How incremental change accumulates into measurable risk︎ The challenge of maintaining alignment in complex, fast-moving environments︎ Why drift often remains invisible until consequences surface.
Extending Access Duration Without Breaking Flow
Today we’re introducing Extending Access Duration, a new capability designed to solve a problem we kept hearing about from customers who rely on short-lived, approved access to sensitive systems. Just-in-Time access is the right model for protecting critical resources. But real work does not always fit neatly into the time window defined when an access flow was created.
Moltbook Data Exposure - The 443 Podcast - Episode 357
This week on the podcast, we cover a recent supply chain compromise involving the popular text editor Notepad++. After that, we discuss a recent vulnerability report in the Moltbook AI social network before ending with a deep-dive review of a recent remote code execution vulnerability in the N8N automation platform.
I Built a Production-Ready App in 20 Minutes with Claude Opus 4.6
My boss dropped a bombshell at 4:00 PM: build a secure, production-ready app from scratch by tomorrow morning. Instead of panicking, I put Claude Opus 4.6 to the test. In this video, I walk you through the entire end-to-end process of using an AI agent to architect, code, and debug a full-stack application. We’ll look at "Plan Mode," how the AI handles environment errors (like Windows SQLite issues), and most importantly, how we verified the AI's code for security vulnerabilities using Snyk.
Navigating the IT Maze
Growth is the ultimate goal for almost every business. For many long-established organizations, the quickest path to that goal is through acquisition. Mergers and acquisitions (M&A) open doors to new markets, new capabilities, and new revenue streams. However, for the IT teams responsible for integrating these new entities, the reality is often less about celebration and more about survival.
Intelligent AI Routing Rules That Pick the Cheapest Model That Still Meets Quality (with Practical Examples)
Most teams do one of two things with LLMs: they pick one "safe" premium model and accept the bill, or they swap models by hand and hope nothing breaks. Both approaches get old fast when traffic grows, prices change, or one provider has a rough day. Intelligent routing rules fix that by making model choice automatic. Instead of "always use Model X," you set constraints like price, latency budget, context window, and a minimum quality bar. Each request gets the cheapest model that can still do the job, and it escalates only when it needs to.