All The Latest!

Keeping up with cyber-news is hard. Enjoy our specially curated collection of various RSS feeds to help make finding relevant news a little less tedious. If you have something to share, be sure to let us know!

CSA Feed

• Achieving Complete SDLC Visibility and Security in a Multi-Cloud World
  April 21, 2026

    TL;DR Unify your security posture across the entire software development lifecycle (SDLC) to eliminate blind spots, prioritize critical risks, and drive accountability in multi-cloud environments.   …

• AI Agent Identity Is Being Solved Backwards – And the Window to Fix It Is Now
  April 21, 2026

  AI agents are processing transactions, analyzing medical records, and orchestrating enterprise workflows today, at scale. CSA, OWASP, and NIST have all formally recognized that traditional IAM is inad …

• 8 Dangerous Truths About Excessive Privileges in Cloud and SaaS Platforms
  April 21, 2026

  How many people in your organization have user access and privileges they don’t truly need? That question was central to a recent incident in France. Authorities there disclosed unauthorized access to …

• AI Governance Explained: Why It Matters and What Mature Programs Require
  April 21, 2026

  As organizations scale their use of AI systems in key business processes, customer-facing products, and high impact decisions, the question is no longer whether AI can deliver value, but whether it ca …

• Agent Access Management (AAM): Why Governing AI and Non-Human Identities Requires a Data-First Security Model
  April 21, 2026

  AI agents, service accounts, automation workflows, and machine-to-machine processes are rapidly becoming first-class actors in the enterprise. These non-human identities no longer operate in the backg …

Tech Target

• SOC 3 (System and Organization Controls 3)
  February 8, 2023

  A System and Organization Controls 3 (SOC 3) report outlines information related to a service organization's internal controls for security, availability, processing integrity, confidentiality an …

• software-defined perimeter (SDP)
  September 29, 2022

  A software-defined perimeter, or SDP, is a security technique that controls access to resources based on identity and forms a virtual boundary around networked resources.

• SOC 1 (System and Organization Controls 1)
  April 5, 2022

  System and Organization Controls 1, or SOC 1 (pronounced "sock one"), aims to control objectives within a SOC 1 process area and documents internal controls relevant to an audit of a user en …

• Build your knowledge of Azure AD conditional access policies
  February 17, 2022

  The rapid pace of change in the modern workplace requires new methods to control who has access to what. This Azure Active Directory feature can help IT meet those security goals.

• Why you should plan to upgrade to Azure AD Connect v2 soon
  December 6, 2021

  Administrators who rely on an Azure AD Connect v1 version for hybrid identity with Office 365 should prepare for the impending retirement of several technologies in the utility.

Schneier On Security

• Rowhammer Attack Against NVIDIA Chips
  May 6, 2026

  A new rowhammer attack gives complete control of NVIDIA CPUs. On Thursday, two research teams, working independently of each other, demonstrated attacks against two cards from Nvidia’s Ampere generati …

• DarkSword Malware
  May 5, 2026

  DarkSword is a sophisticated piece of malware—probably government designed—that targets iOS. Google Threat Intelligence Group (GTIG) has identified a new iOS full-chain exploit that leveraged multiple …

• Hacking Polymarket
  May 4, 2026

  Polymarket is a platform where people can bet on real-world events, political and otherwise. Leaving the ethical considerations of this aside (for one, it facilitates assassination), one of the issues …