All The Latest!

Keeping up with cyber-news is hard. Enjoy our specially curated collection of various RSS feeds to help make finding relevant news a little less tedious. If you have something to share, be sure to let us know!

CSA Feed

• The Internet is a Single Point of Failure
  November 20, 2025

  Resiliency through multicloud looks great on paper, but the reality is far more complex (and expensive). Thanks to Amazon, Microsoft, and Google, my calendar over the past few weeks spiked with member …

• Cloud Security Alliance Announces Availability of STAR for AI Level 2 and Valid-AI-ted for AI
  November 19, 2025

  Microsoft and Zendesk recognized as first organizations to achieve STAR for AI Level 2 certification SEATTLE – November 20, 2025 – The Cloud Security Alliance (CSA), the world’s leading organization d …

• 3 Vulnerabilities in Generative AI Systems and How Penetration Testing Can Help
  November 18, 2025

  Originally published by Schellman. With proven real-life use cases, it’s a no-brainer that companies are looking for ways to integrate large language models (LLMs) into their existing offerings to gen …

• How to Measure SOC Efficiency and Performance (Lessons from the Frontlines)
  November 18, 2025

  Written by Ben Brigida, Expel. This blog is based on a recent session where Ray and I (Ben) discussed the key aspects to measuring security operations center (SOC) effectiveness. Over the years leadin …

• Understanding STAR for AI Level 2: A Practical Step Toward AI Security Compliance
  November 18, 2025

  The landscape of AI governance continues to evolve rapidly, presenting significant challenges for organizations trying to establish robust compliance frameworks. The Cloud Security Alliance (CSA) has …

Tech Target

• Cloud Security Alliance (CSA)
  April 30, 2024

  The Cloud Security Alliance (CSA) is a nonprofit organization that promotes research into best practices for securing cloud computing and the use of cloud technologies to secure other forms of computi …

• Cloud database security: Best practices, challenges and threats
  April 10, 2024

  If your company is using a cloud database, it's critical to stay on top of security. Review the security features offered by top cloud providers, plus some best practices.

• cloud audit
  March 4, 2024

  A cloud audit is an assessment of a cloud computing environment and its services, based on a specific set of controls and best practices.

• SOC 2 (System and Organization Controls 2)
  August 3, 2023

  SOC 2 (System and Organization Controls 2), pronounced "sock two," is a voluntary compliance standard for ensuring that service providers properly manage and protect the sensitive data in th …

• SOC 3 (System and Organization Controls 3)
  February 8, 2023

  A System and Organization Controls 3 (SOC 3) report outlines information related to a service organization's internal controls for security, availability, processing integrity, confidentiality an …

Schneier On Security

• Like Social Media, AI Requires Difficult Choices
  December 2, 2025

  In his 2020 book, “Future Politics,” British barrister Jamie Susskind wrote that the dominant question of the 20th century was “How much of our collective life should be determined by the state, and w …

• Banning VPNs
  December 1, 2025

  This is crazy. Lawmakers in several US states are contemplating banning VPNs, because…think of the children! As of this writing, Wisconsin lawmakers are escalating their war on privacy by targeting VP …

• Friday Squid Blogging: Flying Neon Squid Found on Israeli Beach
  November 28, 2025

  A meter-long flying neon squid (Ommastrephes bartramii) was found dead on an Israeli beach. The species is rare in the Mediterranean. As usual, you can also use this squid post to talk about the secur …