Field notes from the edge.
What our engineers learned this week. Hands-on technical deep-dives, postmortems, and strategy frameworks.
AIThe Top 10 Attack Surface Exposures in 2026
Security breaches increasingly stem from exposed attack surfaces rather than zero-day exploits, with vulnerabilities like MongoBleed demonstrating how internet-facing assets can be compromised within hours. Organizations face growing risk from exposed admin panels, credential reuse, and rapidly exploited vulnerabilities as time-to-exploit windows continue to shrink. Proactive attack surface manage
AIOne-Click Microsoft 365 Copilot Flaw Could Have Let Attackers Steal Emails, Files, and MFA Codes
Security researchers at Varonis Threat Labs discovered a critical vulnerability chain called SearchLeak that could allow attackers to exfiltrate sensitive data from Microsoft 365 Copilot Enterprise Search through a single click on a legitimate Microsoft domain link. The attack bypassed traditional security controls because it used authentic microsoft.com URLs, making it difficult for anti-phishing
AI⚡ Weekly Recap: Chrome 0-Day, UniFi Exploits, macOS Stealers, VPN Flaw and More
This week's cybersecurity recap highlights recurring enterprise vulnerabilities stemming from legacy systems and operational oversights. Key incidents include a Chrome zero-day exploit, UniFi network device vulnerabilities, macOS credential stealers, and VPN security flaws. The common thread remains inadequate security hygiene around deprecated features, abandoned packages, and exposed legacy tool
AIUpcoming Speaking Engagements
A cybersecurity expert has announced an extensive speaking schedule across Europe and North America for mid-2026, focusing on national cybersecurity and emerging quantum computing threats. The engagements span from late June through early October 2026, including keynotes, panel discussions, and academic presentations in Germany, Austria, Czech Republic, and Canada. Notable topics include quantum c
AIIvanti, Fortinet, and SAP Release Patches for Multiple Critical Vulnerabilities
Fortinet, Ivanti, and SAP have issued security patches addressing multiple critical vulnerabilities that pose significant risks including arbitrary code execution and information disclosure. Fortinet's patch addresses a severe command injection vulnerability (CVE-2026-25089) with a CVSS score of 9.1 affecting FortiSandbox products' WEB UI. Enterprise organizations should prioritize immediate patch
AIThe Invisible Battlefield: How Cyber War Is Reshaping Everyday Life
Former National Cyber Director Chris Inglis highlights the escalating threat of cyber attacks targeting critical infrastructure including hospitals, utilities, and essential services. These attacks represent an invisible battlefield that increasingly impacts everyday operations and public safety, requiring heightened awareness and defensive measures from enterprise organizations.
AIServiceNow Flaw Exploited to Gain Unauthorized Access to Customer Instances
ServiceNow disclosed a security incident where threat actors exploited a vulnerability to gain unauthorized access to customer instances. The company deployed a security update on June 5, 2026, to address the flaw that allowed unauthenticated users to access susceptible instances. Details of the incident are available in a customer-only advisory.
AIAdaptive, Agentic AI Worms Loom as Next Enterprise Threat
Security researchers are warning that adaptive AI worms—autonomous malware capable of learning, adapting to environments, and actively seeking vulnerabilities—represent an emerging enterprise threat expected to materialize within the next year. These sophisticated threats combine traditional worm propagation with AI-driven intelligence, enabling them to evolve their attack strategies in real-time.
AIAI Worm
Researchers have developed a prototype AI-powered internet worm that carries its own large language model and executes it on compromised systems. This implementation closely mirrors John Brunner's original 1975 conceptualization of computer worms, representing a significant evolution in autonomous malware capabilities.
AIOnly 10% of SOCs Say They’re Getting Excellent Value From AI. Here’s What the Second Wave Has to Deliver
AI in Security Operations Centers (SOCs) has rapidly evolved from a marketing concept to a significant budget priority, with billions being invested in AI-powered security platforms and tools. Despite widespread adoption and deployment, only 10% of SOCs report receiving excellent value from their AI investments, indicating a gap between implementation and realized benefits. The industry is now ent
AINo longer just a Copilot, Microsoft's AI wants to take the wheel
Microsoft has introduced 'Autopilot,' a new category of autonomous AI agents that work continuously in the background without prompting, starting with Scout. Unlike Copilot's assistive approach, Scout operates across Microsoft 365 applications to proactively manage tasks like scheduling, deadline tracking, and meeting preparation, though it's currently in limited preview and raises security concer
AIShrinking the IAM Attack Surface through Identity Visibility and Intelligence Platforms (IVIP)
Enterprise IAM systems are facing critical challenges as identity management becomes fragmented across thousands of applications, decentralized teams, and machine identities, creating 'Identity Dark Matter' that exists beyond centralized visibility. Identity Visibility and Intelligence Platforms (IVIP) are emerging as solutions to address this growing attack surface by providing comprehensive visi
AIZoom CISO: AI as Security Enabler, Not Role-Replacer
Zoom CISO Sandra McLeod emphasizes that AI should augment rather than replace cybersecurity professionals, discussing how AI-driven security workflows can enhance protection for global communication platforms. She addresses the unique challenges of securing enterprise collaboration tools at scale while offering guidance for emerging cybersecurity leaders.
AI'The Com' Cyberattacks Support Violence & Sexploitation
A criminal cyberattack group with neo-Nazi affiliations is leveraging proceeds from organizational security breaches to fund violent crimes and sexual exploitation activities. The article emphasizes that enterprise security failures create cascading consequences beyond direct organizational impact, as stolen funds enable broader criminal operations. This highlights the societal responsibility orga
AIFrom Stuxnet to ChatGPT: 20 News Events That Shaped Cyber
Dark Reading commemorates its 20th anniversary by identifying 20 pivotal cybersecurity news events from the past two decades that have fundamentally shaped today's enterprise threat landscape. The retrospective spans from landmark incidents like Stuxnet to emerging AI-driven security challenges exemplified by ChatGPT, illustrating the evolution of cyber risks facing modern organizations.
AIModernize your workflows: Amazon WorkSpaces now gives AI agents their own desktop (preview)
Amazon WorkSpaces now enables AI agents to securely operate desktop and legacy applications through managed virtual desktops in public preview, eliminating the need for API development or application modernization. The service supports industry-standard Model Context Protocol (MCP) and integrates with popular agent frameworks like LangChain and CrewAI, while maintaining enterprise security control