Trust: The ultimate defense against cyber deception? #Shorts #identitysecurity #securitymatters
Trust: The ultimate defense against cyber deception?
How Appknox reporting and analytics make security data usable across teams
Security reporting only works when the right people can use it. Appknox reporting and analytics are designed to help security leaders, AppSec teams, and developers work from the same data—without translation layers or manual fixes—so teams can meet targets for report delivery and act faster.
Why Knowing ATT&CK Isn't Enough: Mapping Real Control Coverage with Reach
Security teams know the attack techniques. What they don’t always know is how those techniques actually land in their environment. Reach maps your existing controls to MITRE ATT&CK (and D3FEND) and shows—visually—︎ which techniques are covered︎ which tools provide that coverage︎ and where real gaps exist Because “we have the tool” isn’t the same as “the technique is stopped.”
Deepfake Cyber Fraud Attacks: Risks, Examples, and Prevention
Artificial Intelligence (AI) has been a revelation. It has changed the way things are done. AI is being used in almost every industry because it speeds up the ability to perform tasks and reduces the chance of errors. But there is a dark side to this highly advanced technology. Scammers are using AI to create sophisticated attacks and are achieving success with them. Deepfake cyber fraud attacks are one such type where malicious actors use deep learning techniques and AI to manipulate existing media.
Bitsight Threat Intelligence Briefing: Top TTPs Leveraged by Threat Actors in 2025
As the global cyber threat landscape evolves, adversaries continue to refine and adapt their tactics. Bitsight threat intelligence indicates that there are several tactics, techniques, and procedures (TTPs) that are most commonly and consistently leveraged by threat actors. These attacks are not isolated; they’re systemic.
Garrett Hamilton & Todd Graham on How AI Agents Change the Way We Think About Security
Garrett Hamilton, CEO and Co-Founder of Reach Security, sits down with Todd Graham, Managing Partner at Microsoft’s venture fund M12, to discuss why modern cybersecurity programs struggle to reduce real risk — despite massive spending on tools. Recorded at Black Hat, the conversation explores how misconfigurations, unused controls, and operational blind spots create exposure long before attackers need advanced techniques.
Asymmetric Data: The New Challenge for API Security
Asymmetric Data: The New Challenge for API Security In this A10 Networks video, "APIs are the Language of AI: Protecting Them is Critical," security experts Jamison Utter and Carlo Alpuerto discuss the unique challenges of securing AI-driven data exchanges. Unlike traditional API interactions—where a request for a video clearly results in a video—AI interactions are defined by a "phenomenal" level of asymmetry. A tiny text request can trigger a massive, unpredictable response, making traditional security prediction models nearly obsolete.
New BlackForce Phishing Kit Bypasses Multifactor Authentication
Zscaler has published a report on a new phishing kit dubbed “BlackForce” that uses Man-in-the-Browser (MitB) attacks to steal credentials and bypass multi-factor authentication. Notably, the kit “features a vetting system to qualify targets, after which a live operator takes over to orchestrate a guided compromise.” Additionally, the phishing kit uses mostly legitimate code in order to avoid detection by security scanners.
How to Add MCP Servers to Google's Antigravity IDE
In this video, I walk you step by step through the process of adding MCP servers to Google’s Antigravity. You’ll learn how they integrate with Antigravity and how to configure them correctly so everything runs smoothly.