Robot software-engineering students hand in their work to be reviewed by a robot teacher.

Created with SocialSight AI.

The next evolution of application security: AI-accelerated DevSecOps

Paul WagenseilFebruary 5, 2026

Traditional AppSec can't keep up with AI-driven development, especially vibe coding. Here's what you need to do.

RESOURCES

Government security
ICIT’s Center for FCEB Resilience: Strengthening federal civilian agencies
AI/ML
Trusted automation: Building autonomous IT with confidence
AI/ML
SASE’s role in securing AI adoption: How existing tools can manage AI security
Zero Trust World
Hackers, surprises and outer space: What we’ll see at Zero Trust World 2026
Identity
Beyond MFA: Securing the human element with identity threat detection

PODCASTS

AI/ML
AI: No One Is Safe – PSW #912
Leadership
Unexamined Leadership Behaviors as CEOs and CISOs Balance Cybersecurity Investments – Hacia Atherton – BSW #433
Vulnerability Management
DBII, Notepad++, Covenant, Fancy Bear, CTFs, Firefox, AI Slop, Josh Marpet, and More – SWN #552
Application security
Focusing on Proactive Controls in the Face of LLM-Assisted Malware – Rob Allen – ASW #368
Security Operations
Initial entry to resilience: understanding modern attack flows and this week’s news – Warwick Webb – ESW #444

FEATURED

Perspectives Spotlight: Expert Insights

Perspectives Spotlight: Expert Insights

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

Perspectives

In Brief

More Resources

Washington D.C. skyline at night with major monuments in view - Washington D.C. United States of America

Governance, Risk and Compliance

CISA gives federal agencies one year to replace outdated edge devices

Steve ZurierFebruary 6, 2026

Experts agree that it’s time for the federal government replace antiquated network infrastructure.

(Credit: monticellllo – stock.adobe.com)

Vulnerability Management

Google patches RCE, internal database leak flaws in Looker

Laura FrenchFebruary 6, 2026

Researchers used a crafted Git repo and exploited a race condition to achieve RCE.

Coding background, Application development and code programming. Technology business computers concept

Application security

VS Code config files abused to launch RCEs via GitHub Codespaces

Steve ZurierFebruary 5, 2026

Experts point out that exploited VS Code presents supply chain, credential theft, and network access risks.

Threat Management

More than 10,000 IPs hijacked by SystemBC botnet

Laura FrenchFebruary 5, 2026

Researchers identified continued development of the botnet despite “Operation Endgame” disruption.

Close-up of Apple MacOS Dock with Finder icon selected and mouse cursor hovering

Security Operations

Infostealer threats move beyond Windows to target macOS machines

Steve ZurierFebruary 4, 2026

The infostealers leverage Python to deliver malware that steals credentials.

(Credit: Tada Images – stock.adobe.com)

OpenClaw agents targeted with 341 malicious ClawHub skills

Laura FrenchFebruary 4, 2026

Most of the malicious skills deployed malware consistent with Atomic Stealer on Mac machines.

Security Operations

Microsoft Office bugs exploited by Russia-linked APT28

Steve ZurierFebruary 3, 2026

Experts warn that social engineering lets attackers take advantage of even the lesser-rated vulnerabilities.

(Credit: monticellllo – stock.adobe.com)

PDF phishing attack leads to stolen Dropbox credentials

Laura FrenchFebruary 2, 2026

The attack uses seemingly benign attachments and trusted cloud infrastructure to evade detection.

EVENTS