Your stack has a SAST. A DAST. An SCA. A SIEM. And probably seven more tools your developers have quietly stopped reading alerts from. None of them were built for mobile. That's not a criticism. It's a fact about what those tools were designed to do. They were built for web applications, network infrastructure, and cloud environments, which were the priorities of a different era. Mobile apps came later. And the security tooling never fully caught up.

Today, we’re launching BlueVoyant AI. In my first months as CEO, I’ve had the chance to meet with many of you. What struck me most is the scope and importance of what you’re protecting, and how seriously you carry that responsibility. What also came through clearly is that your vision for the future of security aligns with ours.

If you’re like our team, the morning after the Claude Mythos announcement brought more questions than answers. Among them: “Serious question. Do customers still need SAST?” It’s a fair question if you stop at the headline. Claude Mythos, Anthropic’s frontier AI model currently gated to vetted partners through Project Glasswing, had autonomously identified thousands of zero-day vulnerabilities across major operating systems and browsers . No rule books, no checklists.

If you’re looking for a binary answer to the question in the title, we’re sorry. The compliance and framework spheres are as probabilistic and grey as the outcome of your next investor or shareholder meeting. But we can help you stay prepared, that’s for sure.

ThreatSpike exhibited at Infosecurity Europe 2026 at ExCeL London from 2–4 June this year. Three days, ten expert sessions presented on our stand and more conversations about AI than we’ve had at any event in recent memory. This is our round-up: what we saw on the floor, what we presented, and what the industry is clearly wrestling with right now.

For years, vulnerability management has been one of the cornerstones of cybersecurity. Organizations scanned their environments, identified weaknesses, prioritized remediation, and repeated the process regularly. That approach still matters. But today's threat landscape has fundamentally changed. Organizations now operate across cloud environments, remote workforces, SaaS applications, identities, endpoints, and increasingly complex networks.

Organizations do not rise to the level of their incident response plan during a breach. They fall to the level of their preparation.

AI demos are easy. AI you’d actually trust near your control environment is not. If you’ve sat through a few of these pitches lately, you’ve probably landed on the same four questions every CISO we talk to is asking. And you’re right to ask them.

Reliability leaders and subject matter experts at SREday NYC examined how AI, faster delivery, and complex systems increase the need for grounded operational context.