Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

APIs serve as the foundation for modern digital innovation, supporting everything from mobile applications to intricate business integrations. However, as their numbers soar, with many companies experiencing annual growth rates of 50-100%, they have also become a significant target for cyber attackers. Relying on "good enough" API security could leave your most vital assets perilously unprotected.

Standing on stage at Microsoft Build, surrounded by innovators shaping the future in the era of AI Agents, I felt equal parts inspired and responsible. Inspired by the rapid momentum around AI, and responsible for raising a flag about something we don’t talk about enough - how we secure the very systems that are now acting on our behalf. This post isn’t a recap, rather a continuation, a chance to go deeper into the story I shared (and the one we’re still writing.)

With the recent increase in use and popularity of Large Language Models (LLMs), many organizations are still trying to approach the use of this technology. In this blog, we approach the different log sources that can be potentially used to monitor a local LLM.

The FBI is warning that threat actors are impersonating senior US officials in phishing attacks designed to compromise users’ accounts. Notably, the attackers are using AI-generated audio to convincingly spoof the voices of real people.

Organizations investing in Microsoft 365 E5 licensing expect enterprise-grade email protection. Yet despite premium security features, customer feedback reveals persistent challenges with Microsoft Purview DLP across Exchange Online environments. Microsoft deployment specialists report seeing clients deploy Purview on their own, discover a wealth of false positives, and turn off the policies or set them to audit mode. Policies never become useful.

In a significant shift for digital identity management, the maximum lifespan of public TLS certificates is set to be reduced to just 47 days, following a new policy from Apple’s Root Program. With Google expected to follow suit, the clock is ticking faster than ever on certificate validity and that has profound implications for businesses relying on manual processes.

The conversation around API design often defaults to technical preferences—developers choosing CRUD APIs for simplicity or REST APIs for structure. However, for enterprise leaders responsible for risk, compliance, and digital resilience, the implications of this choice are far more profound. The CRUD vs. REST debate is not merely architectural; it’s strategic.

Cisco Foundation AI’s Foundation-sec-8b model brings a new wave of innovations and efficiency to security operations. As a purpose-built, open-weight Large Language Model (LLM) designed specifically for cybersecurity, Foundation-sec-8b enables security teams to act faster, reduce fatigue, and scale operations without compromising accuracy.