In an era dominated by AI-powered security tools and cloud-native architectures, are traditional Web Application Firewalls still relevant? Join us as we speak with Felipe Zipitria, co-leader of the OWASP Core Rule Set (CRS) project. Felipe has been at the forefront of open-source security, leading the development of one of the world's most widely d...
CyberScoop reports that Opexus, a software provider contracted by the federal government, has acknowledged its failure to properly vet twin brothers Muneeb and Sohaib Akhter, who have been charged and arrested over hacking its systems earlier this year, or a decade after they had been imprisoned for conspiring to infiltrate the State Department as government contractors.
This episode was about agentic IAM—what it is and the risks that come with letting non-human agents act for customers. We defined external IAM, then traced how the industry moved from basic login and MFA to consent, delegation, and now agent-to-agent interactions. Along the way we unpacked key risks for CISOs and practitioners to consider. Segment ...
Live from InfoSec World 2025, this episode of Enterprise Security Weekly features six in-depth conversations with leading voices in cybersecurity, exploring the tools, strategies, and leadership approaches driving the future of enterprise defense. From configuration management and AI-generated threats to emerging frameworks and national standards, ...
AI was the constant background hum at the OWASP Global AppSec conference last week, but the scene-stealer was a keynote talk telling us that managing risk is pointless.
Agentic AI introduces unique and complex security challenges that render traditional risk management frameworks insufficient. In this keynote, Ken Huang, CEO of Distributedapps.ai and a key contributor to AI security standards, will outline a new, comprehensive approach to manage these emerging threats. The session will present a practical strategy...
Fast Five
Selected by the SC Media Editorial team every Tuesday.
Sign up now for the top five issues cybersecurity pros need to know this week.
