Zero-day vulnerabilities are one of the hardest problems in web security.Continue reading on Medium »

As autonomous AI agents move into high-stakes environments like finance, healthcare, and legal analysis, developers are hitting a wall…Continue reading on Medium »

Friend LinkContinue reading on Medium »

Walk through any modern city and you’ll notice them everywhere — mounted on street poles, outside shops, inside apartment lobbies, and…Continue reading on Medium »

Reflections from the Desjardins Speaker Series at U of T — and what it reveals about Canada's missing governance layerContinue reading on Medium »

Every fintech app asks for KYC. Most users rush through it. But behind that simple step lies the entire security system of modern digital…Continue reading on The Fintech Guide »

Why the “secure” LLM is a lie if your vector DB is a sieve. A practical, no-BS guide for security pros on the new AI frontline.Continue reading on InfoSec Write-ups »

Email ProtectionContinue reading on Medium »

In the 20th century, exile offered a form of anonymity.Continue reading on Medium »

The agreement allows OpenAI’s AI systems to operate on classified U.S. military networks under strict safeguards, following the Trump…Continue reading on Medium »

Our team was scheduled to attend GISEC Dubai in May. Now it's on pause. I wanted to check with the rest of the industry. Are you planning to still visit? What are your thoughts / considerations? submitted by /u/Potential-Jaguar-223 [link] [comments]

The year 2026 marks phishing attacks as the most typical method through which cybercriminals gain access to systems. Phishing attacks…Continue reading on Medium »

Financial institutions operate in an environment where trust, security, and regulatory compliance are paramount.Continue reading on Medium »

IntroductionContinue reading on Medium »

March 2026Continue reading on Medium »

In traditional physical security, video cameras were used to record events for the human operators to watch, review and interpret them…Continue reading on Medium »

Hello everyone! 👋Continue reading on Medium »

Over the past decade, India has rapidly expanded the deployment of CCTV surveillance systems. Cities such as Delhi, Hyderabad, Mumbai, and…Continue reading on Medium »

Increasing urban places such as Rohtak have become a priority to security by businesses, institutions and residential places. As the…Continue reading on Medium »

Continue reading on Medium »

The OWASP Top 10 for LLMs exposes the exact ways attackers are already breaking production AI, and most teams are not ready.Continue reading on Artificial Intelligence in Plain English »

I am the only IT admin (sorta) for a small business running our website on WordPress hosted on AWS. Ive been trying to keep out the bots/ crawlers eating up our servers these past several months. Ive tried robots.txt, and country filters but they don't stop. We even had a ddos attack mode a few months back. How do you all handle it? What's the best thing that worked ? submitted by /u/Super-Level8164 [link] [comments]

Hi everybody, so I graduated in April and got got called back in January from where I did a internship for, at a bank in Canada. I got hired as an information security analyst and specialist where I was initially told it will be learning the ins and outs of the company for GRC. Thabkfully they fully expected me not to understand much as it is a junior role and mainly learning everything for the first time(I have some certs like CC but I’m learning on applying the theory I learned which is what’s cool), but they have me moving around supporting the team in diff areas such as vuln management, 3rd party and app sec vm stuff Wanted to see how I can continue to learn, what should I try to focus a lot more on and what else can I do to project my career and gain insightful knowledge on becoming monetarily successful but also becoming a proper professional. Any advice is appreciated even if it’s about work life balance. Thanks, Have a good day submitted by /u/geirbveheke [link] [comments]

AI will introduce significant data security and identity security challenges for enterprises. At present, there is a clear gap in security governance and capabilities. Agent-based systems themselves will also introduce many new attack surfaces. We may soon see something like an “OWASP Top 10 for Agentic Applications.” Code security roles and junior SOC security engineers may gradually become obsolete, as AI will soon be able to replace much of their work. However, in enterprise security domains such as EDR, CWPP, and WAF, AI is still unlikely to directly replace these systems in the near term; instead, it will primarily function as an enhancement component. AI will significantly improve the efficiency of attackers. Activities that previously took 1–2 weeks may be compressed into 1–2 days. The risk of 0-day vulnerabilities may also increase, as AI lowers the cost of vulnerability discovery and intrusion for attackers. As a result, non-signature-based intrusion detection capabilities will become increasingly important in the future. With the rise of AI capabilities, the tolerance for false positives may gradually increase. AI-driven SOC agents may be able to handle a large volume of alerts, which means intrusion detection systems may increasingly prioritize reducing false negatives rather than strictly balancing false positives. The future requires AI-native security capabilities. This means that everything—from data collection, data analysis, intrusion detection strategy generation, to incident response—will be driven by AI. This shift will fundamentally change the architecture of current security systems. Traditional security products have always needed to balance data collection richness and system performance, but future security systems may become more intelligent and capable of controlling the entire pipeline from data collection to alert response. This could potentially resolve the long-standing dilemma where organizations must choose between insufficient telemetry or excessively redundant data collection. These are some of my observations on how AI may impact the security industry, and I’d love to discuss them with everyone. submitted by /u/toubleX [link] [comments]

I'm starting my cyber security journey and wanted to know if there are any cyber security books people would recommend. I'm currently reading Pegasus by Laurent Richard but it's mainly investigative journalism. Please don't recommend textbooks. submitted by /u/Apprehensive_Fox321 [link] [comments]

When people talk about AI taking their jobs, people reply with it won't if you use it or learn it, and I don't exactly get what it means to 'learn it'; does it prompt engineering, automation, or new models/tools? This is a question cuz I don't really know. Just to be clear, the main purpose of the thread is what I should learn about AI (or anything) so I can benefit from it, and that it doesn't replace me in the future. submitted by /u/Different-Answer4196 [link] [comments]

This is the weekly thread for career and education questions and advice. There are no stupid questions; so, what do you want to know about certs/degrees, job requirements, and any other general cybersecurity career questions? Ask away! Interested in what other people are asking, or think your question has been asked before? Have a look through prior weeks of content - though we're working on making this more easily searchable for the future. submitted by /u/AutoModerator [link] [comments]

I spend a large portion of my day with cyber security and other network, security issues and tasks. I was wondering how folks have leveraged AI, either formally or informally, into their daily workflow, APIs with other apps, with regards to loglog review, alerts, etc. submitted by /u/Top_Sink9871 [link] [comments]

Hi guys, I'm an international student in Australia and studying Bach of IT majoring in Applied CyberSecurity. Do you guys think the job market is still good in the field? Especially as an IS? submitted by /u/These_King [link] [comments]

submitted by /u/OneTime3937 [link] [comments]

So I work at a military defense contractor, my plan was to pursue cyber, but a recent promotion changed things and left me with an associates in cyber. My question is, has anyone combined a minor in cyber with a major in supply chain management? If so, how has this combination benefited you? submitted by /u/Kindly-Purchase717 [link] [comments]

submitted by /u/TheReedemer69 [link] [comments]

I created this project for runtime security enforcement and threat hunting for autonomous AI fleets. Would be extremely grateful to get some feedback from the community! https://github.com/backbay-labs/clawdstrike submitted by /u/imdonewiththisshite [link] [comments]

submitted by /u/NISMO1968 [link] [comments]

Hey all, I’m currently working in the Cloud Security Alliance on applying Zero Trust to agentic AI / LLM systems, especially from the perspective of connectivity, service-based access, and authenticate-and-authorize-before-connect. A lot of the current discussion around AI security seems focused on the model, runtime, prompts, guardrails, and tool safety, which all matter, but it feels like there is still less discussion around the underlying connectivity model. In particular: agent-to-agent and agent-to-tool flows crossing trust boundaries whether services should be reachable before identity/policy is evaluated service-based vs IP/network-based access how Zero Trust should apply to non-human, high-frequency, cross-domain interactions whether traditional TCP/IP “connect first, then authN/Z later” assumptions break down for agentic systems I also have a talk coming up at the DoW Zero Trust Summit on this topic, and I’m curious whether others here are thinking along similar lines. A few questions for the group: Are you seeing similar challenges around agentic AI and connectivity? Do you think Zero Trust needs to evolve for agent-to-agent / agent-to-tool interactions? Are there papers, projects, architectures, or communities I should look at? Would anyone be interested in contributing thoughts into CSA work on this topic? Would genuinely love to compare notes with anyone exploring this space. submitted by /u/PhilipLGriffiths88 [link] [comments]

Im a complete noob who's interested in the field of cybersecurity. I frequently see large ransomware groups demand millions in Bitcoin. How does that money ever become usable? Take a European country like the Netherlands as an example. Banks are legally required to file reports on unusual transactions. Tax authorities require annual declaration of crypto holdings. The statute of limitations on money laundering runs up to 40 years. EU exchanges now share customer data with tax authorities under DAC8. Blockchain analytics firms like Chainalysis can trace funds even through mixers, though there are tactics to make this very difficult. Even if a criminal moves funds to a more permissive jurisdiction, it still needs to enter the financial system at some point to be spendable. At that point, doesn't it always raise flags? I dont see how someone can get away with cashing out millions. I get that criminals operating out of Russia have effective safe harbor. But for a Western actor is the money not essentially trapped forever? If so, why would it be attractive to people at all? Is the answer simply that most of them never actually cash out? But then, whats the point of even committing the crime? submitted by /u/Chronopuddy [link] [comments]

For example, “Believer.Moustache.Gander” versus “B3li3v3r.Moustach3.Gand3r” Is there any difference in terms of how easy it is to crack? submitted by /u/timchoo [link] [comments]

CyberArk Defender - PAM Exam Questions 2026 It is CyberArk sample questions from skillcertpro. I am trying to take the Defender exam. Is this good practice? Is this worth the money? submitted by /u/HSK18402 [link] [comments]

Not sure if this is just me but DLP inside SASE has been the hardest thing to get a straight answer on lately. We're about ~700 users, handful of office locations, most traffic going to cloud apps at this point. DLP right now is a separate tool and the coverage gaps on remote users and cloud traffic are getting harder to ignore. Started looking at SASE platforms that include DLP natively. The problem is every vendor says it's built in but when you actually dig in it's usually a third party engine licensed and rebranded inside their platform, which in practice means separate policy management, separate tuning, separate everything. Currently looking at Palo Alto, Zscaler and Cato. Curious about: whether the DLP is actually native or just integrated how policy enforcement holds up across web, cloud apps and private access whether you're managing one policy set or still jumping between consoles how false positive tuning works in practice Has anyone evaluated or deployed DLP as part of a unified SASE platform. Would love to hear what the real world experience looked like vs what the vendor demo showed! thanks submitted by /u/New-Molasses446 [link] [comments]

Any role (analyst, engineer, architect), a question you thought was really smart, or one that stumped you during an interview. submitted by /u/AcrobaticMoment6571 [link] [comments]

Hi everyone, I’m currently preparing to re-enter the cybersecurity field with a focus on Red Teaming / Offensive Security. I have about 5 years of prior experience in the field, but I took a career break and now I’m working on refreshing my skills before applying for roles again. Before jumping into job applications, I want to build a solid portfolio that demonstrates my practical skills, methodologies, and ability to simulate real-world attacks. I’d really appreciate guidance from the community on a few things: Project Ideas What are some good red teaming projects that would be valuable to showcase in a portfolio? Portfolio Structure How do you recommend presenting red team work? Additionally, If you know any great learning materials, labs, or courses related to Red Teaming, I’d love to check them out. My goal is to build a practical portfolio that demonstrates real offensive security skills, not just certifications. Any advice, project suggestions, or resources would be greatly appreciated. Thanks in advance! submitted by /u/dummy_nerd [link] [comments]

Anyone seen this social engineering attempt before? So I applied for a job, got a message from the recruiter saying I needed to optimise my CV and LinkedIN profile for the role and he had a contact who could help. I emailed the person who could help (at a gmail rather than professional account) and this was the response.... Hello, Thanks for contacting me, I'd be very interested in working with you on this project. I'll start working on the documents and the LinkedIn profile. To complete the LinkedIn optimization efficiently, I’ll need temporary access to your LinkedIn account so I can implement the updates directly and ensure everything is formatted correctly within the platform. I completely understand that sharing login details requires trust. For transparency: • I will only access your profile for optimization purposes. • I will not modify any settings outside the agreed scope. • I will not message anyone, post content, or change your password. • Once the work is complete, you can immediately change your password for your security and peace of mind. My priority is delivering high-quality work while ensuring you feel secure and fully in control of your account. submitted by /u/Rameko [link] [comments]

I've been in cyber for about 4 years now, and I'm starting to question the sustainability of the certification model. I wanted to put this out there to see if others feel the same way. The barrier to entry is significant. Between study materials, practice exams, and the vouchers themselves, you're looking at hundreds to thousands of dollars just for a single certification. For entry-level candidates, that often comes out of pocket. And once you get one, you quickly realize that most job filters require multiple certs or the next tier up to actually stand out. It creates a cycle where you have to keep investing to see any return. The renewal process is where it gets more complicated. I understand that technology evolves and professionals need to stay current. That part is legitimate. But the current model requires annual fees and continuing education units that often come from vendors affiliated with the certifying body. If you let it lapse, the credential disappears from your record entirely, even if the knowledge and experience haven't gone anywhere. You're essentially paying to maintain a line on your resume. What's interesting is how universally accepted this has become. Organizations list certs as requirements, hiring managers filter for them, and professionals budget for them year after year. The system works because everyone participates in it. If the market collectively decided that demonstrated skill mattered more than the acronyms, the entire model would shift. But that doesn't seem to be happening. I'm not arguing that certifications have zero value. They provide structure for learning and a baseline for hiring. I'm just questioning whether the current financial and renewal model is the best approach, or if we've all just accepted it because that's how it's always been done. Curious what others think. submitted by /u/Shoddy-Protection-82 [link] [comments]

submitted by /u/alicedean [link] [comments]

According to Microsoft, threat actors are rapidly adopting AI tools to assist with phishing, reconnaissance, malware creation, and evasion techniques—raising new concerns about the speed and scale of future cyberattacks. submitted by /u/Novel_Negotiation224 [link] [comments]