%term

Types of AI agents: From simple reflex to autonomous systems

Apr 29, 2026 By Tanium In Tanium

AI agents fall into five foundational categories: simple reflex, model-based reflex, goal-based, utility-based, and learning agents. Each is defined by how much environmental awareness and decision-making complexity the system can handle, from fixed condition-action rules to feedback-driven self-improvement.

Read Post

Tanium

Read more about Types of AI agents: From simple reflex to autonomous systems

Tanium Basics - Grouping With Intent - Tanium Tech Talks #160

Apr 29, 2026 By Tanium In Tanium

Computer groups are Tanium's unsung heroes. They answer the "who" behind every deployment, patch, and policy. In this Tanium Basics episode, we break down how to build, use, and think about Computer Groups.

View Video

Tanium

Security

Read more about Tanium Basics - Grouping With Intent - Tanium Tech Talks #160

Bridging the Gap to Autonomous Fixes: Snyk and Atlassian Unveil Intelligent Remediation for Jira

Apr 29, 2026 By Jack Ryan In Snyk

Modern development teams are currently drowning in security debt, often trapped in a manual, fragmented cycle of "find and fix" that slows down innovation. Even when equipped with high-fidelity vulnerability data, traditional workflows require developers to constantly context-switch between Jira tickets and their codebases to manually implement and test patches.

Read Post

Snyk

Read more about Bridging the Gap to Autonomous Fixes: Snyk and Atlassian Unveil Intelligent Remediation for Jira

MCP: The AI Protocol Quietly Expanding Your Attack Surface

Apr 29, 2026 By Shane Moosa In UpGuard

In February 2026, researchers uncovered something that should give every security leader pause. A malware operation called SmartLoader, previously known for targeting consumers who downloaded pirated software, had completely pivoted its infrastructure. SmartLoaders new target was developers, and its new entry point was a protocol most security teams had never heard of. The payload delivered to victims: every saved browser password, every cloud session token, every SSH key on the machine.

Read Post

UpGuard

Read more about MCP: The AI Protocol Quietly Expanding Your Attack Surface

Prompt and Tool Call Visibility: What Your AI Agents Are Actually Doing

Apr 29, 2026 By Yossi Ben Naim In ARMO

It is 11:47 p.m. and the on-call security engineer is staring at two dashboards. On the left, LangSmith — the ML team’s debugging stack — showing the agent’s prompts, model responses, tool calls, and tokens consumed. On the right, the runtime detection console showing eBPF-captured syscalls, network connections, and process trees from the same Pod. Both are populated.

Read Post

ARMO

Read more about Prompt and Tool Call Visibility: What Your AI Agents Are Actually Doing

What Real AI Security Incidents Reveal About Today's Risks

Apr 29, 2026 By Mend In Mend

Mend.io, formerly known as Whitesource, has over a decade of experience helping global organizations build world-class AppSec programs that reduce risk and accelerate development -– using tools built into the technologies that software and security teams already love. Our automated technology protects organizations from supply chain and malicious package attacks, vulnerabilities in open source and custom code, and open-source license risks.

View Video

Mend

Read more about What Real AI Security Incidents Reveal About Today's Risks

This Is How Red Teams Actually Use AI Security Data #aisecurity #redteam #threatintelligence

Apr 29, 2026 By Razorthorn Security In Razorthorn

The volume of AI security research is now too high for any human to track properly by hand. The practical answer is using AI to filter AI, reducing hundreds of articles and reports into a daily shortlist so analysts spend their time on signal instead of noise.

View Video

Razorthorn

Read more about This Is How Red Teams Actually Use AI Security Data #aisecurity #redteam #threatintelligence

Why banks are adopting blockchain infrastructure now

Apr 29, 2026 By Fireblocks In Fireblocks

Fireblocks now supports 95 banks globally, and the adoption curve is accelerating. In this clip from the Banking Bootcamp, Financial Markets Economist Neil Chopra explains what's driving the shift: regulatory clarity, proven utility, and infrastructure that plugs into how banks already operate. This is Episode 1 of the Banking Bootcamp, a three-part series produced in partnership with American Banker.

View Video

Fireblocks

Read more about Why banks are adopting blockchain infrastructure now

Don't Panic: The Thymeleaf Template Injection That Only Hurts If You Let It (CVE-2026-40478)

Apr 29, 2026 By Brian Vermeer In Snyk

The Thymeleaf vulnerability with a CVSS score of 9.1 grabs your attention, as it should. But before you call the cavalry and claim this as the new Log4shell, read this first. CVE-2026-40478 is a server-side template injection vulnerability in Thymeleaf. Thymeleaf is a templating engine in Java that is used for server-side webpage rendering. The sandbox that normally prevents arbitrary code execution got bypassed using a tab character. And yes, this can lead to a remote code execution if exploited.

Read Post

Snyk

Read more about Don't Panic: The Thymeleaf Template Injection That Only Hurts If You Let It (CVE-2026-40478)

Deep#Door Stealer: Stealthy Python Backdoor and Credential Stealer Leveraging Tunneling, Multi-Layer Persistence, and In-Memory Surveillance Capabilities

Apr 29, 2026 By Akshay Gaikwad, Shikha Sangwan, Aaron Beardslee In Securonix

Securonix Threat Research analyzed a stealthy Python-based backdoor framework, dubbed Deep#Door, which uses an obfuscated batch loader to deploy a persistent surveillance and credential-stealing implant on Windows systems.

Read Post