%term

How to Reduce Time-to-Detect Fraud: Why Most Teams Are Already Too Late

May 8, 2026 By Ezra M. In Memcyco

ATO fraud cost US adults $15.6 billion in 2024, yet most fraud teams are still measuring detection time from the moment an alert fires, not from the moment an attacker starts building infrastructure. That gap is where the damage happens. To reduce time to detect fraud, teams need to move detection upstream, to Stage 1 and Stage 2 of the fraud lifecycle, before phishing sites go live and before a single credential is submitted. Faster transaction monitoring won’t close this gap.

Read Post

Memcyco

Read more about How to Reduce Time-to-Detect Fraud: Why Most Teams Are Already Too Late

Cyberhaven Analyst Plugin: AI-Assisted Security Investigation in Claude Code and Codex

May 8, 2026 By Cole Padula In Cyberhaven

Security teams have a data problem. Not a shortage of data, but instead there is a growing data surfacing problem. The signals are there, the incidents are logged, and the classifications exist. But, getting from raw data to a prioritized action plan still requires close to an hour of manual querying, tab-switching, and context reconstruction, every single time. The Cyberhaven Analyst Plugin changes that.

Read Post

Cyberhaven

Read more about Cyberhaven Analyst Plugin: AI-Assisted Security Investigation in Claude Code and Codex

How to Monitor MCP Usage: A 10-Step Security Checklist for 2026

May 8, 2026 By Chris Martinez In Nightfall

What you need to know: MCP can evade traditional DLP, IAM, and SIEM controls because agent traffic looks like authorized API calls, sensitive data is semantically transformed before it leaves the perimeter, and exfiltration happens through tool invocations rather than file transfers.

Read Post

Nightfall

Read more about How to Monitor MCP Usage: A 10-Step Security Checklist for 2026

CVE-2026-23918: Apache HTTP/2 Double-Free Vulnerability with Possible RCE

May 8, 2026 By Deepak Kumar Choudhary In Indusface

A high-severity double-free vulnerability in Apache HTTP Server 2.4.66 allows low-privileged attackers to remotely crash vulnerable servers through a crafted HTTP/2 request sequence, with a demonstrated path to remote code execution on common Linux deployments. Tracked as CVE-2026-23918, the vulnerability exists in Apache’s mod_http2 module and affects deployments using multi-threaded MPMs such as worker and event.

Read Post

Indusface

Read more about CVE-2026-23918: Apache HTTP/2 Double-Free Vulnerability with Possible RCE

How to Make CISOs Actually Respond #cybersecurity #leadgeneration

May 8, 2026 By Razorthorn Security In Razorthorn

Nothing kills trust faster than pitching services to someone who already does that work for a living. If your outreach is auto generated, poorly targeted and built on zero research, most CISOs will write you off before you ever get a second chance.

View Video

Razorthorn

Read more about How to Make CISOs Actually Respond #cybersecurity #leadgeneration

Vanta SVP of Engineering on Modern CTO Podcast: "How hard can it be?"

May 8, 2026 By Vanta In Vanta

"How hard can it be to just ship an AI feature?" Our SVP of Engineering, Iccha Sethi, asked her team this. Just once. Turns out building in the age of AI is a fundamentally different problem, from managing model drift to rethinking what "done" even means. Iccha joined @ModernCTO to get into all of it.

View Video

Vanta

Read more about Vanta SVP of Engineering on Modern CTO Podcast: "How hard can it be?"

Why Healthcare Breaches Last 279 Days

May 8, 2026 By Rubrik In Rubrik

John Fokker discusses how attackers stay hidden in hospital networks for nearly a year.

View Video

Rubrik

Read more about Why Healthcare Breaches Last 279 Days

What are the First Three Things to Do During an Incident?

May 8, 2026 By CISO Global In CISO Global

Gary Perkins, CISO at CISO Global shares what the first three things to do during an incident.

View Video

CISO Global

Read more about What are the First Three Things to Do During an Incident?

Server patch management 101: Strategies for secure infrastructure

May 8, 2026 By Tanium In Tanium

Server patch management is the process of identifying, testing, and deploying software updates to close security vulnerabilities in server operating systems and applications.

Read Post

Tanium

Read more about Server patch management 101: Strategies for secure infrastructure

Falcon Data Security: Stop Data Loss, Not Productivity - End-User Justification & Forensics Capture

May 8, 2026 By CrowdStrike In CrowdStrike

End the rigid, binary choice of traditional DLP. Falcon Data Security changes the game by using End-User Justification (EUJ) to educate employees at the point of risk, empowering them to make smart security decisions and keeping legitimate business transfers moving. For full context and compliance, Forensic Capture gives your security team the complete story with encrypted file retrieval and screen recordings of user activity before and after the event. Watch the demo to see how to maintain security without slowing down your team.

View Video

CrowdStrike

Read more about Falcon Data Security: Stop Data Loss, Not Productivity - End-User Justification & Forensics Capture

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

How to Reduce Time-to-Detect Fraud: Why Most Teams Are Already Too Late

Cyberhaven Analyst Plugin: AI-Assisted Security Investigation in Claude Code and Codex

How to Monitor MCP Usage: A 10-Step Security Checklist for 2026

CVE-2026-23918: Apache HTTP/2 Double-Free Vulnerability with Possible RCE

How to Make CISOs Actually Respond #cybersecurity #leadgeneration

Vanta SVP of Engineering on Modern CTO Podcast: "How hard can it be?"

Why Healthcare Breaches Last 279 Days

What are the First Three Things to Do During an Incident?

Server patch management 101: Strategies for secure infrastructure

Falcon Data Security: Stop Data Loss, Not Productivity - End-User Justification & Forensics Capture

Monthly Archive

Follow Us