In late 2022, AI exploded into the mainstream with OpenAI’s ChatGPT, starting an AI-fuelled shift in both everyday life and the cyber threat landscape. Just as quickly as everyday users rushed to adopt the technology, so did threat actors. From generating phishing pretexts to writing malware and crafting deepfakes, AI systems have become both a new tool and a new target.

Local Oracle Linux installations do not support CIS Oracle Linux benchmarks or hardened images. When you implement CIS Benchmarks on an Oracle server, you are on your own. We wrote this post to help you.

In 2025, machine identities outnumber human identities by a factor of 40 to 1. Every connected sensor, gateway, vehicle, and robot depends on a digital credential to prove its authenticity and secure its data. These digital credentials serve as unique identifiers for devices, enabling secure communications and access control.

Ever accidentally pasted an API key into a web form? Chromegg is our new Chrome extension that scans form fields in real-time, alerting you BEFORE you submit secrets. Open-source & ready to use!

This past month, the Vanta team launched new features to help you: ‍

Today, with a rise of 48% in remote-first teams in the global workforce and generative AI, employees are increasingly bypassing IT for speed, exposing entire enterprises to the risk. Shadow IT now covers unauthorized SaaS, OAuth grant chains, shadow APIs, and even unapproved AI agents that process your most sensitive data without your knowledge. This guide answers what is Shadow IT?

The virtual private network (VPN) has been the default way to connect remote employees to company resources for over two decades. In its time, the VPN was a breakthrough ‒ creating encrypted tunnels back to the corporate network and giving road warriors a way in. But today's workplace looks very different. Employees access SaaS applications directly from the Internet. Teams are distributed around the world.

*According to Gartner, by 2026, over 80% of enterprises will have used generative AI APIs or deployed GenAI-enabled applications, up from less than 5% in 2023. This rapid adoption introduces a new and complex attack surface.