%term

The Silent Killer in Security Stacks: Configuration Drift | Todd Graham x Garrett Hamilton

Jan 12, 2026 By Reach Security In Reach Security

The silent killer in modern security programs? Garrett Hamilton and Todd Graham discuss how the real killer is settings quietly slipping out of alignment over time — even in environments packed with “best-in-class” tools and clean audit results. Misconfigurations don’t announce themselves. They accumulate. They age. They slowly pull your security posture away from original intent. What teams think is “turned on” often isn’t enforced consistently — or at all. Without continuous validation, drift becomes invisible risk.

View Video

Reach Security

AI
Security

Read more about The Silent Killer in Security Stacks: Configuration Drift | Todd Graham x Garrett Hamilton

IDE extensions: a new persistent risk to your organization

Jan 12, 2026 By Tanium In Tanium

User-installable extensions for Visual Studio Code, Cursor, and other Integrated Development Environments are an increasingly exploited attack vector, with new malicious extensions discovered almost weekly. Do you have visibility and control?

Read Post

Tanium

Read more about IDE extensions: a new persistent risk to your organization

Vanta 2025: Looking back, looking ahead

Jan 12, 2026 By Vanta In Vanta

Reflecting on 2025, the word we keep returning to is trust. We talk about it a lot at Vanta because it's the foundation our customers operate on. ‍ Last year, that felt more true than ever. The bar for trust keeps rising. Regulations intensified. Threats evolved faster. Customers and investors asked harder questions. And in an era defined by AI, trust is no longer a checkpoint—it’s a continuous system that has to work every day. ‍ That’s the mission that drives us.

Read Post

Vanta

Read more about Vanta 2025: Looking back, looking ahead

A New Era for AI Coding? GPT 5.2 vs. Security Vulnerabilities

Jan 12, 2026 By Snyk In Snyk

Can OpenAI’s GPT 5.2 actually build a production-ready, secure application from a single prompt? In this video, we put the latest model to the test by asking it to build a full-stack Node.js note-taking app. We evaluate its dependency choices, dive into a surprising fix for a long-standing CSRF vulnerability, and run a full security audit using Snyk. Is this the new gold standard for AI coding models?

View Video

Snyk

Read more about A New Era for AI Coding? GPT 5.2 vs. Security Vulnerabilities

January 12, 2026 Cyber Threat Intelligence Briefing

Jan 12, 2026 By Kroll In Kroll

This week’s briefing covers: Dive deeper.

View Video

Kroll

Read more about January 12, 2026 Cyber Threat Intelligence Briefing

The MCP Security Blueprint: What a Hardened MCP Server Looks Like

Jan 12, 2026 By Eric Schwake In Salt Security

Over the last year, Model Context Protocol (MCP) servers have transitioned from "cool developer experiments" into critical production infrastructure. Developers love them because they allow AI agents to open tickets, query databases, and update records with almost zero integration backlog. But there is a fundamental truth we must acknowledge before moving forward: The AI revolution is actually an API revolution.

Read Post

Salt Security

Read more about The MCP Security Blueprint: What a Hardened MCP Server Looks Like

Signs Your Child May Be Experiencing Cyberbullying

Jan 12, 2026 By The Cyber Helpline In The Cyber Helpline

Cyberbullying can happen to anyone at any time, and is especially prevalent among young people (affecting around 1 in 5 young people in the UK). Many young people deal with cyberbullying in silence. They may feel ashamed, fear they’ll lose device privileges, or worry that intervention from loved ones might make things worse. That’s why trying to spot the signs early is so important.

Read Post

The Cyber Helpline

Read more about Signs Your Child May Be Experiencing Cyberbullying

AI 2026: A Look Ahead

Jan 12, 2026 By Oliver Simonnet In CultureAI

2026, the perfect time to reflect on how far technology has come and what lies ahead. Without a doubt, Artificial intelligence has gone from a niche to an omnipresent force, reshaping how we work, build, and defend. While organisations have speed-ran the adoption of AI and machine learning, cybercriminals have been just as fast to exploit them, and AI now powers business decisions, customer interactions, and – predictably – cyberattacks.

Read Post

CultureAI

Read more about AI 2026: A Look Ahead

Cyber War is Already Here. CISOs Must Prepare for Cyber Conflict

Jan 12, 2026 By SafeBreach In SafeBreach

Cyber warfare isn’t coming—it’s already here. This conversation on The Cyber Resilience Brief dives into the Fifth Domain of Warfare—and why nation-state cyber activity should matter to every organization. From Russia’s chaos-driven campaigns to China’s long-game persistence, Iran’s retaliatory attacks, and North Korea’s financial theft—your network isn’t a bystander.

View Video

SafeBreach

Read more about Cyber War is Already Here. CISOs Must Prepare for Cyber Conflict

Advancing AI Security: Zenity's Contributions to MITRE ATLAS' First 2026 Update

Jan 12, 2026 By Andrew Silberman In Zenity

MITRE ATLAS has become a critical resource for cybersecurity leaders navigating the rapidly evolving world of AI-enabled systems.Traditional threat models are built for human-initiated workflows, APIs, and infrastructure, so they are no longer sufficient to describe modern AI attacks..

Read Post