Depthfirst Raises $80 Million in Series B Funding 2026-04-01 at 20:32 By Ionut Arghire The startup will expand its AI research team, train additional security models, and scale enterprise adoption. The post Depthfirst Raises $80 Million in Series B Funding appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Depthfirst Raises $80 Million in Series B Funding Read More »
Webinar Today: Agentic AI vs. Identity’s Last Mile Problem 2026-04-01 at 17:32 By SecurityWeek News Join the webcast as we explore what Agentic AI can and cannot solve today, and real world breach scenarios linked to disconnected applications. The post Webinar Today: Agentic AI vs. Identity’s Last Mile Problem appeared first on SecurityWeek. This article
Webinar Today: Agentic AI vs. Identity’s Last Mile Problem Read More »
Google Addresses Vertex Security Issues After Researchers Weaponize AI Agents 2026-04-01 at 11:14 By Eduard Kovacs Palo Alto Networks has disclosed the details of its analysis of Google Cloud Platform’s Vertex AI. The post Google Addresses Vertex Security Issues After Researchers Weaponize AI Agents appeared first on SecurityWeek. This article is an excerpt from SecurityWeek
Google Addresses Vertex Security Issues After Researchers Weaponize AI Agents Read More »
Financial groups lay out a plan to fight AI identity attacks 2026-04-01 at 10:34 By Mirko Zorz Generative AI tools have brought the cost of deepfake production low enough that criminals and state-sponsored actors now use them routinely against financial institutions. A joint paper from the American Bankers Association, the Better Identity Coalition, and the
Financial groups lay out a plan to fight AI identity attacks Read More »
7 Important Questions Facing CISOs on Bridging the Gap Between AI Threats, Supply Chain, and Cyber Resilience 2026-04-01 at 00:02 By A CISO’s job never ends, and, according to a recentLevelBlue survey, the issues they are dealing with on a daily basis are piling up, causing some disconnect in priorities and a misunderstanding of how
Amazon sends AI agents into pen testing and DevOps 2026-03-31 at 20:31 By Sinisa Markovic Amazon’s latest AI capabilities bring on-demand penetration testing through the AWS Security Agent, alongside the AWS DevOps Agent. “These agents are changing the way we secure and operate software. AWS Security Agent compresses penetration testing timelines from 2-6 weeks to
Amazon sends AI agents into pen testing and DevOps Read More »
CrewAI Vulnerabilities Expose Devices to Hacking 2026-03-31 at 16:40 By Ionut Arghire Attackers can exploit the bugs through prompt injection, chaining them together to escape the sandbox and execute arbitrary code. The post CrewAI Vulnerabilities Expose Devices to Hacking appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
CrewAI Vulnerabilities Expose Devices to Hacking Read More »
Critical Vulnerability in OpenAI Codex Allowed GitHub Token Compromise 2026-03-31 at 11:21 By Kevin Townsend Researchers found an OpenAI Codex vulnerability that could have been exploited to compromise GitHub tokens. The post Critical Vulnerability in OpenAI Codex Allowed GitHub Token Compromise appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Critical Vulnerability in OpenAI Codex Allowed GitHub Token Compromise Read More »
Silent Drift: How LLMs Are Quietly Breaking Organizational Access Control 2026-03-30 at 17:30 By Kevin Townsend LLMs can write complex Rego and Cedar code in seconds, but a single missing condition or hallucinated attribute can quietly dismantle your organization’s least-privilege security model. The post Silent Drift: How LLMs Are Quietly Breaking Organizational Access Control appeared
Silent Drift: How LLMs Are Quietly Breaking Organizational Access Control Read More »
Breaking out: Can AI agents escape their sandboxes? 2026-03-30 at 07:30 By Anamarija Pogorelec Container sandboxes are part of routine AI agent testing and deployment. Agents use them to run code, edit files, and interact with system resources without direct access to the host. The SandboxEscapeBench benchmark, developed by researchers at the University of Oxford
Breaking out: Can AI agents escape their sandboxes? Read More »
AI frenzy feeds credential chaos, secrets leak through code, tools, and infrastructure 2026-03-27 at 20:33 By Anamarija Pogorelec Code keeps moving through pipelines, and credentials continue to surface alongside it. GitGuardian’s State of Secrets Sprawl 2026 puts the count at 28.65 million new hardcoded secrets in public GitHub commits in 2025, extending a multi-year rise
AI frenzy feeds credential chaos, secrets leak through code, tools, and infrastructure Read More »
The Value of Microsoft Security Copilot: SCU Billing and Why Agent Design Matters 2026-03-27 at 16:00 By David Broggy Most organizations start by using Microsoft Copilot the way it looks in demos: type a question, get an answer. That works for exploration. For repeatable operational work, it gets expensive quickly. This article is an excerpt
The Value of Microsoft Security Copilot: SCU Billing and Why Agent Design Matters Read More »
OpenAI Launches Bug Bounty Program for Abuse and Safety Risks 2026-03-27 at 15:33 By Ionut Arghire Through the new program, OpenAI will reward reports covering design or implementation issues leading to material harm. The post OpenAI Launches Bug Bounty Program for Abuse and Safety Risks appeared first on SecurityWeek. This article is an excerpt from
OpenAI Launches Bug Bounty Program for Abuse and Safety Risks Read More »
Make OpenAI’s models misbehave and earn a reward 2026-03-27 at 03:57 By Anamarija Pogorelec OpenAI’s public Safety Bug Bounty program focuses on AI abuse and safety risks across its products. The goal is to support safe and secure systems and reduce the risk of misuse that could lead to harm. This program complements the Security
Make OpenAI’s models misbehave and earn a reward Read More »
GitHub jumps on the bandwagon and will use your data to train AI 2026-03-26 at 15:52 By Anamarija Pogorelec GitHub updated how it uses data to improve AI-powered coding assistance. Starting April 24, interaction data from Copilot Free, Pro, and Pro+ users may be used to train and improve GitHub’s models unless users opt out.
GitHub jumps on the bandwagon and will use your data to train AI Read More »
AI SOC vendors are selling a future that production deployments haven’t reached yet 2026-03-26 at 12:32 By Mirko Zorz Vendors selling AI-powered security operations platforms have built their pitches around a consistent set of promises: autonomous threat investigation, dramatic reductions in analyst workload, and an accelerating path toward humanless operations. Practitioners buying and deploying those
AI SOC vendors are selling a future that production deployments haven’t reached yet Read More »
A nearly undetectable LLM attack needs only a handful of poisoned samples 2026-03-26 at 12:32 By Mirko Zorz Prompt engineering has become a standard part of how large language models are deployed in production, and it introduces an attack surface most organizations have not yet addressed. Researchers have developed and tested a prompt-based backdoor attack
A nearly undetectable LLM attack needs only a handful of poisoned samples Read More »
Who owns AI agent access? At most companies, nobody knows 2026-03-26 at 07:12 By Anamarija Pogorelec AI agents are operating across production enterprise environments at scale, and the identity infrastructure managing their access has not kept up with their deployment. A January 2026 survey of 228 IT and security professionals, conducted by the Cloud Security
Who owns AI agent access? At most companies, nobody knows Read More »
AI Speeds Attacks, But Identity Remains Cybersecurity’s Weakest Link 2026-03-25 at 18:18 By Kevin Townsend PwC finds AI is amplifying speed and scale of attacks, as identity theft evolves into a cybercriminal supply chain. The post AI Speeds Attacks, But Identity Remains Cybersecurity’s Weakest Link appeared first on SecurityWeek. This article is an excerpt from
AI Speeds Attacks, But Identity Remains Cybersecurity’s Weakest Link Read More »
Gemini picks up criminal activity buried in dark web noise 2026-03-25 at 15:07 By Sinisa Markovic To help teams make faster and more accurate decisions on emerging threats, Google has introduced a dark web intelligence capability in Google Threat Intelligence. Powered by Gemini, the feature analyzes millions of dark web events each day and surfaces
Gemini picks up criminal activity buried in dark web noise Read More »