%term

Demo: Discover workforce use of shadow AI

Dec 18, 2025 By Cloudflare In Cloudflare

See how Cloudflare One helps restore visibility and controls over unsanctioned use of AI tools. This demo highlights secure access service edge (SASE) capabilities including: Shadow AI reporting: Analyze how AI apps are used across your environment 0:10 Application confidence scores: Evaluate the risks posed by specific AI apps 1:10 Access controls: Allow, block, redirect, isolate, and more based on an app’s approval status 1:45.

View Video

Cloudflare

Read more about Demo: Discover workforce use of shadow AI

CultureAI Joins Microsoft's Agentic Launchpad: What This Means for the Future of AI Usage Control

Dec 18, 2025 By CultureAI Team In CultureAI

News AI Usage AI Risk Ria Manzanero Head of Marketing 18 December 2025 3 min read Share.

Read Post

CultureAI

Read more about CultureAI Joins Microsoft's Agentic Launchpad: What This Means for the Future of AI Usage Control

Understanding Ransomware Email Threats

Dec 18, 2025 By Jeff Darrington In Graylog

The Ransomware-as-a-Service (RaaS) ecosystem has changed the look and shape of modern day ransomware attacks. Malicious actors typically view their cybercrimes as a business, hoping to make the most amount of money with the least amount of effort. For example, according to research, AI-automated phishing attacks performed similarly to human generated ones and 350% better than the ones sent to the control group.

Read Post

Graylog

Read more about Understanding Ransomware Email Threats

Demo: Access controls for GenAI and agentic AI

Dec 18, 2025 By Cloudflare In Cloudflare

See how Cloudflare One simplifies access controls across both generative AI and agentic AI communication — all from one unified secure access service edge (SASE) dashboard. This demo highlights: Securing human-to-AI connections by as blocking or redirecting from unapproved tools and isolating AI apps to protect data (0:09) Streamlining access to MCP servers for AI-to-resource connections via Cloudflare’s MCP server portals (1:10)

View Video

Cloudflare

Read more about Demo: Access controls for GenAI and agentic AI

What You Need to Know about the LastPass Data Breach

Dec 18, 2025 By IDStrong In IDStrong

LastPass prides itself on being a pioneer in cloud security technology, providing password and identity management solutions for personal and business digital safety. Its over 800 employees and over 20 million customers worldwide have made the company an attractive target for cybercriminals. The company has been in the headlines for several data incidents over the past few years.

Read Post

IDStrong

Read more about What You Need to Know about the LastPass Data Breach

The strain of reactive infrastructure reliability

Dec 18, 2025 By Christina Kokoros In Tines

Every IT Operations team knows the feeling: the alert storm hits, dashboards light up, and another late-night scramble begins. You fix the issue, document it, and brace for the next one. The pattern repeats; not because your team lacks skill or visibility, but because the systems you rely on don’t move as fast as the infrastructure they manage. Downtime doesn’t start when systems fail. It starts when signals go unanswered.

Read Post

Tines

Read more about The strain of reactive infrastructure reliability

Episode 4 - Staying Curious: Lessons from 25 Years in Cybersecurity

Dec 18, 2025 By Corelight In Corelight

In Episode 4 of Corelight Defenders, I sit down with Angela Loomis, Corelight's Director of Technical Account Management, to explore her remarkable 25-year journey in cybersecurity. Angela shares her unconventional entry into the field, starting from a background in television production to becoming a leader in security strategy. We delve into the importance of curiosity in cybersecurity, discussing how diverse experiences enrich the profession, and whether formal education might dampen that curiosity.

View Video

Corelight

Read more about Episode 4 - Staying Curious: Lessons from 25 Years in Cybersecurity

What You Need to Know about the 700Credit Data Breach

Dec 18, 2025 By IDStrong In IDStrong

700Credit is the major provider of credit reports, fraud detection, identity verification, soft pull credit data, and compliance solutions in powersports, marine dealerships, and automotive in the United States. Based in Michigan, it offers solutions for over 21,000 clients and has more than 250 integration partners, while also managing vital data security for millions of consumers.

Read Post

IDStrong

Read more about What You Need to Know about the 700Credit Data Breach

CVE-2025-55182: First Days of React2Shell Exploitations

Dec 18, 2025 By João Godinho In BitSight

On December 3rd Lachlan Davidson disclosed an unauthenticated remote code execution vulnerability in React Server Components (RSC) that exploits how React.js (and Next.js) decodes payloads sent to React Server Function endpoints. On December 4th we started observing fingerprinting attempts for these vulnerabilities and on December 5th we started observing exploitation attempts. React.js is used by 66% of the global digital supply, in the top 0.06% of all technologies.

Read Post

BitSight

Read more about CVE-2025-55182: First Days of React2Shell Exploitations

Privilege Creep Explained: How to Detect and Prevent It in Organizations

Dec 18, 2025 By Chaitali Avadhani In miniOrange

Invisible or hidden risks often corrupt organizations inside out. These are hard to detect and go unnoticed for a prolonged period. Privilege Creep, one such hidden risk, is a silent security gap, where there is an accumulation of inessential access rights of employees over a period of time. This could pave the way for unauthorized access and breaches.

Read Post