Generative AI

Most Recent

CISOs: Revamp security programs in the wake of Claude Mythos

Steve ZurierApril 14, 2026

Experts warn AI-driven cyber threats outpace defenses; current guidance may be insufficient.

Application security

Securing Software’s Journey with the OWASP SPVS – Cameron W., Farshad Abasi, Rohan Ravindranath, Ido Geffen – ASW #378

April 14, 2026

It's one thing to write secure code, it's another to release it into the wild. That code needs to be designed, built, tested, released, and maintained. Farshad Abasi and Cameron Walters explain how the OWASP Secure Pipeline Verification Standard picks up from where ASVS left off, how it complements other supply chain security efforts like SLSA, and...

Application security

OpenAI’s macOS app-signing process hit by axios supply chain attack

Laura FrenchApril 13, 2026

The company is revoking and rotating certificates “out of an abundance of caution.”

The United States Treasury Department building in Washington, D.C.

AI benefits/risks

Bessent, Powell met privately with top bankers over impact of Claude Mythos on cybersecurity

Steve ZurierApril 10, 2026

Security pros say companies that spend less money than most large banks on cyber should take this as a warning to get moving.

Zero trust

AI is Now Default Enterprise Accelerator – Deepen Desai – RSAC26 #7

April 10, 2026

The Zscaler ThreatLabz 2026 AI Security Report reveals that enterprise AI adoption has surged by up to 93% year-over-year, yet 100% of tested AI environments remain vulnerable to breaches that can occur in as little as 16 minutes. It highlights a dangerous shift toward "machine-speed" threats, where attackers use generative AI to automate data exfi...

A digital representation of a data leak warning, featuring glowing red text against a dark, high-tech background.

Identity

Why secrets detection belongs everywhere in your security workflow

Michael WeberApril 8, 2026

Secrets detection must expand across workflows with validation to cut noise and stop leaks.

Application security

AppSec News Roundup on Claude Code Leak, Axios NPM Compromise, Secure Design – Idan Plotnik, Raj Mallempati – ASW #377

April 7, 2026

Security problems aren't changing very much even though security teams are. We catch up on the implications of the Claude Code source leak, the very human lessons from the axios NPM compromise, and what secure design looks like when it involves agents, humans, or both. AppSec has always celebrated interesting and impactful vulns. And LLMs are now a...

RSAC

Menlo’s Ramin Farassat: Why the browser is the front line for agentic AI

SC StaffMarch 27, 2026

Ramin Farassat discusses how a new approach to browser security is required to provide architectural immunity.

Generative AI

CISOs: Revamp security programs in the wake of Claude Mythos

Securing Software’s Journey with the OWASP SPVS – Cameron W., Farshad Abasi, Rohan Ravindranath, Ido Geffen – ASW #378

OpenAI’s macOS app-signing process hit by axios supply chain attack

Bessent, Powell met privately with top bankers over impact of Claude Mythos on cybersecurity

AI is Now Default Enterprise Accelerator – Deepen Desai – RSAC26 #7

Why secrets detection belongs everywhere in your security workflow

AppSec News Roundup on Claude Code Leak, Axios NPM Compromise, Secure Design – Idan Plotnik, Raj Mallempati – ASW #377

Menlo’s Ramin Farassat: Why the browser is the front line for agentic AI

Fast Five

Selected by the SC Media Editorial team every Tuesday.