10 takeaways from FedCyber Exchange 2026
Leaders from across the federal government gathered to better understand IT and cybersecurity challenges in the AI age.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
KeeperFill Has Been Waiting for This
Logging in is easy when you have Keeper Security.
What Can Someone Do With Your Social Security Number?
If someone steals your Social Security number, they can use it to open bank accounts under your name, steal your benefits, file your tax return and commit other types of fraud. Learn more about what someone can do with your Social Security number.
Prevent Sensitive Data Exposure With Egnyte AI Safeguards
AI Safeguards help you control what AI can see, share, and do, by protecting sensitive content from AI exposure. AI Safeguards’ coverage extends across Egnyte AI Assistant, to AI agents and our MCP Server. Safeguards are available across Egnyte’s mobile, desktop, and web platforms.
Should You Pay Ransomware Demands? (The Honest Answer)
Should organisations pay ransomware demands? Canvas recently paid after a breach exposed student data. Now US Congress is questioning whether payments should be illegal. In this episode of Razorwire Raw, James Rees tackles the ransomware payment dilemma. Ransomware groups operate like commercial organisations - if they don't honour agreements to delete data after payment, nobody would pay them. Some negotiators have been caught telling attackers what insurance payouts will cover.
Autonomous AI vs Zero-Day Attacks: The New Cybersecurity Shift
For decades, finding a zero-day flaw followed a predictable script: a highly skilled human researcher spent weeks staring at source code, digging for edge cases, and manually stitching together an exploit. In April 2026, Anthropic flipped that script by announcing Claude Mythos. This frontier model didn’t just mark an incremental upgrade; it introduced autonomous, machine-speed vulnerability hunting.
Drupal Core SQL Injection Vulnerability (CVE-2026-9082)
In May 2026, the Drupal Security Team disclosed a critical SQL injection vulnerability affecting Drupal core. The issue, tracked as CVE-2026-9082, affects Drupal installations using PostgreSQL and has been assigned a Drupal security risk rating of 23/25. The vulnerability can be exploited by anonymous users, and Drupal has confirmed that exploit attempts are being detected in the wild.
Solving Common DSPM Challenges for Enterprises
Most data security posture management (DSPM) programs don't fail because the technology is wrong. They fail because of execution gaps, from incomplete data inventory to misclassified data at scale to fragmented cloud environments and teams stretched too thin to act on findings. However, each of these problems is predictable, and each has a known fix.
Grafana and GitHub Breached: The Risk When Private Code Leaks
Code from GitHub and Grafana is in criminal hands. Secrets buried inside could open doors no one is thinking of protecting yet, and AI will make hunting 0-days in that private code faster than ever.
Postman Workspace Exposure: When Your API Test Suite Becomes a Security Risk
Let’s start with a scenario. This is illustrative, not a single reported incident. A developer shares a Postman collection in Slack to move faster. “Here’s the Postman collection for the payment API. It has live auth headers so you can test prod endpoints.” The team uses it, work gets done, and the link stays. What no one realizes is that the collection lives inside a public Postman workspace. Weeks later, it is indexed by search engines. The URL requires no login.