Stay connected with the latest information

Every major security conference in 2026 is running sessions on how to secure AI agents. The conversations are serious, the concerns are legitimate, and the focus is, in large part, pointed at the wrong target.

Cybersecurity testing has evolved dramatically over the past two decades. What started as annual penetration tests has become continuous, automated, and increasingly powered by AI agents themselves. Organizations now deploy intelligent agents to run vulnerability scans, validate configurations,...

In mid-2025, an AI system called XBOW reached the number one position on HackerOne’s global bug bounty leaderboard, submitting over a thousand validated vulnerabilities. It completed 104 web security challenges in 28 minutes, a task that took a veteran human tester 40 hours. Around the same time,...

Something interesting happened around RSAC this year. A chorus of voices across the AI cybersecurity space started pushing the same narrative: human-in-the-loop validation is slowing AI down. The LinkedIn posts rolled out with similar graphics, similar talking points, and a similar conclusion....

For 2026, the updated HIPAA Security Rule will now explicitly mandate annual penetration testing for all covered entities and business associates. Vulnerability scans are now required to be executed semiannually. Penetration tests - annually. No exceptions, no flexibility, no more documentation on...

Last week, we addressed the trust aspects of MSPs and resellers when considering a new cybersecurity vendor: will this partner protect your client relationships, and will you stay protected in the deal. If you missed Part 1, you can read it here.

Every time a geopolitical crisis flares up and cyberwarfare comes into play, there is one consistent victim that takes most of the collateral damage. Cyberattacks on small and medium-sized organizations rarely make headlines, yet those organizations are the vast majority of victims of so-called...

The market is making your job harder. You don't need us to tell you that.

Mondays… amirite? Mondays for IT and Security teams invariably start the same way. The day starts with a dashboard screaming bloody murder, flashing thousands of new alerts. Somewhere in that mess is a potential real threat, but it’s buried under a mountain of noise.

Let’s start with a question that’ll make your skin crawl: How long do you feel comfortable having hackers roam freely in your environment? If your answer is “Not at all,” congratulations... you’re sane. But here’s the rub: the average attacker still lurks undetected for 21 days¹³. That’s three...