cybersecurity

Broadcom Delivers the World’s First End-to-End PQC-safe, In-flight Network Encryption Solution

By / Blog / , , , ,

Broadcom Inc. has announced the shipment of the world’s first end-to-end Post-Quantum Cryptography (PQC)-safe, in-flight network encryption solution, integrated into Everpure's FlashArray storage platform via Emulex SecureHBAs. This solution enables automatic, high-performance encryption of all in-flight Fibre Channel data, protecting against future quantum computing threats and complying with CNSA 2.0 and NIS2/DORA standards without impacting system performance or existing storage services.

https://investors.broadcom.com/news-releases/news-release-details/broadcom-delivers-worlds-first-end-end-pqc-safe-flight-network

Stop Building Security Goals Around Controls

By / Blog / , , ,

Devin Rudnicki, CISO at Fitch Group, emphasizes that security goals should be aligned with business outcomes rather than focused solely on controls, advocating for strategies anchored in corporate objectives, real cyber threats, and industry standards. She highlights three key metrics for security programs—value, risk, and maturity—and stresses the importance of presenting risk in actionable terms for leadership, balancing innovation speed with measured risk, and using automation to free human resources for higher-value work.

https://www.helpnetsecurity.com/2026/03/18/devin-rudnicki-fitch-group-ciso-business-alignment/

CISOs Rethink Their Data Protection Strategies

By / Blog / ,

Chief Information Security Officers (CISOs) are rethinking their data protection strategies in response to the rapid expansion of artificial intelligence (AI) use, which magnifies the risks to sensitive data through increased data sharing and exposure. Organizations are enhancing data classification, access management, and monitoring tools, adopting zero-trust frameworks, and frequently updating policies to keep pace with evolving technologies, regulatory requirements, and emerging AI-enabled cyber threats, underscoring the critical need for continuous adaptation in data security programs.

https://www.csoonline.com/article/4143384/cisos-rethink-their-data-protection-strategies.html

Shadow AI Risk: How SaaS Apps Are Quietly Enabling Massive Breaches

By / Blog / , , ,

A report from Grip Security reveals that all analyzed companies operate SaaS environments embedded with AI, with a 490% year-over-year increase in public SaaS attacks, 80% involving sensitive data. The article highlights how “shadow AI”—agentic AI within SaaS apps often implemented without IT oversight—enables attackers to use stolen OAuth tokens to cascade breaches across multiple organizations, exemplified by the widespread 2025 Salesloft Drift breach, emphasizing the urgent need for better visibility, continuous governance, and risk-based controls of AI in SaaS to prevent massive cascading cybersecurity incidents.

https://www.securityweek.com/the-shadow-ai-problem-how-saas-apps-are-quietly-enabling-massive-breaches/

Security and Generative AI Are Learning to Get Along

By / Blog / , ,

IT professionals are navigating the challenge of integrating generative AI into cybersecurity without compromising safety, as the technology’s reliance on large volumes of raw data can expand threat surfaces. Experts emphasize the need for strong security architecture and domain expertise to ensure AI tools are both effective and secure, a priority underscored by the recent White House cyber strategy calling for AI-enabled cyber defense and innovation stewardship.

https://www.itbrew.com/stories/2026/03/12/security-and-generative-ai-are-learning-to-get-along

SailPoint Launches Shadow AI Remediation to Empower Enterprises With Real-time Visibility and Control Over AI Usage

By / Blog / , ,

SailPoint Technologies has launched Shadow AI Remediation, a new solution that provides enterprises with real-time visibility and control over employees' use of unauthorized generative AI tools like ChatGPT and Gemini. This platform-centric tool enables organizations to monitor AI usage, prevent unauthorized data uploads, and enforce compliance by integrating AI governance into SailPoint's unified identity security framework.

https://www.globenewswire.com/news-release/2026/03/17/3257245/0/en/sailpoint-launches-shadow-ai-remediation-to-empower-enterprises-with-real-time-visibility-and-control-over-ai-usage.html

Bank Built Its Own AI Threat Hunter Because Vendors Can’t

By / Blog / , ,

Australia’s Commonwealth Bank developed its own agentic AI threat hunting tools after finding that cybersecurity vendors could not keep pace with the rapidly increasing volume and sophistication of AI-powered threats, which saw their weekly threat signals surge from 80 million to 400 billion. The in-house AI system significantly reduced threat assessment time from two days to 30 minutes and helps frontline analysts focus on problem-solving rather than repetitive tasks, addressing both operational scale challenges and analyst mental health concerns.

https://www.theregister.com/2026/03/17/commonwealth_bank_ai_defense/

Beyond the Menu of Options: a Taxonomy for Information Security Strategies

By / Blog / ,

The article proposes a taxonomy for information security strategies, categorizing them into reactive defensive, proactive defensive, and offensive measures. Reactive defensive measures counter ongoing information influence, while proactive defensive measures build long-term resilience. Offensive measures involve a targeted state using information operations to counter malign influence.

https://smallwarsjournal.com/2026/03/16/beyond-the-menu-of-options-a-taxonomy-for-information-security-strategies/

Shadow AI Is Everywhere. Here’s How to Find and Secure It.

By / Blog / , ,

As AI tools proliferate within organizations, IT and security teams face the challenge of securing and governing these often unmonitored “shadow AI” applications. Nudge Security offers a solution that provides continuous discovery, real-time monitoring, and proactive governance by integrating with identity providers to inventory AI apps, track usage, detect sensitive data sharing, and enforce AI policies without needing full-time oversight. This enables organizations to manage AI risks effectively while supporting safe and compliant AI use.

https://www.bleepingcomputer.com/news/security/shadow-ai-is-everywhere-heres-how-to-find-and-secure-it/

When Geopolitics Goes Digital: How Wars Are Now Won Before the First Missile Is Fired

By / Blog / , ,

The article discusses how modern warfare now integrates offensive cyber operations as a primary phase before kinetic strikes, exemplified by recent US-led operations in Iran and ongoing conflicts in Ukraine. It highlights the escalating cyber threat to telecommunications and critical infrastructure, particularly from Iranian state and proxy actors, underscoring the urgent need for organizations, especially those with Middle East exposure, to enhance real-time threat intelligence, resilience, and defensive measures against rapid, sophisticated cyberattacks like the destructive Stryker company incident.

https://sosintel.co.uk/when-geopolitics-goes-digital-how-wars-are-now-won-before-the-first-missile-is-fired/

Scroll to Top