Saying that you’ll “shift left” is easy; it makes sense. After all, it’s obvious that preventing issues from happening should shift as far left as the IDE. Resolving issues at that stage gives you the best chance of being more secure. But before resolving an issue, you need to find it. Aikido has an IDE integration for reporting SAST findings immediately.

As enterprises embrace AI, identity has become the defining security challenge. Every new database, Kubernetes cluster, SaaS app, and now every AI agent introduces yet another identity that must be governed and protected. At the same time, attackers are weaponizing AI to accelerate identity-based threats, exploiting fragmentation and credential sprawl to devastating effect.

Did you hear the news? You can now build MCP Servers on Tines! Connect Tines stories to your LLM ecosystem in seconds using a new action template, enabling secure Model Context Protocol (MCP) server deployment. We also enhanced our AI usage reporting, allowing you to track AI adoption and manage costs more efficiently with better visibility into detailed AI reporting, including.

Sr. Technical Content Strategist Everyone advertises AI, how does LimaCharlie use it? If you are not exhausted by the relentless AI hype cycle by now, your resilience is commendable. Our industry is awash in AI marketing that is an inch deep and a mile wide*. Everyone claims to have AI, almost no one will explain how it works. At LimaCharlie transparency is a core value. You see it in our high-visibility security platform and publicly available pricing structure.

On Monday, September 8th, a highly regarded open source developer, ~qix, was compromised via a phishing email. ~qix is an author and maintainer behind a large number of popular npm packages and found himself caught by this attack after responding to a message from the email address of support help. This resulted in the attacker taking over his npm account and having access to publish malicious versions of packages to which Qix had privileged access.

AI is transforming how security operations centers (SOCs) work, but the hype can outpace the reality. You don’t need to build custom models or deploy cutting-edge platforms to benefit. Chances are, you already have AI-powered capabilities in your SIEM, SOAR, or security data platforms. The question is: Are they doing anything useful? This practical playbook lays out six key priorities to increase productivity and effectiveness while maintaining control.

As part of Tanium’s ongoing partnership with Filigran, provider of open-source cybersecurity solutions, the new Tanium Connector for OpenBAS with the existing Tanium Connector for OpenCTI will help organizations more quickly identify and remediate cyber threats.

It’s been a rough few weeks for burger chains. First, McDonald’s McHire chatbot was caught serving up candidate data through insecure APIs. Then Restaurant Brands International (RBI), home of Burger King, Tim Hortons, and Popeyes, had its APIs flame-broiled by attackers who discovered they could generate tokens without authentication, escalate privileges, and even eavesdrop on live drive-thru audio. When APIs become the secret sauce, leaving them unprotected is a recipe for disaster.