Geek-Guy.com

Tag: enterprise

Apps, Global Security News

Shrinking the IAM Attack Surface through Identity Visibility and Intelligence Platforms (IVIP)

The Fragmented State of Modern Enterprise Identity Enterprise IAM is approaching a breaking point. As organizations scale, identity becomes increasingly fragmented across thousands of applications, decentralized teams, machine identities, and autonomous systems. The result is Identity Dark Matter: identity activity that sits outside the visibility of centralized IAM and beyond the reach of

Read more →

AI, Compliance, Data Security, Global Security News

Portal26 Adds Visibility, Management for Anthropic Claude

Portal26 has announced new enterprise AI management capabilities for Anthropic’s Claude and Claude Cowork, positioning the offering as a control layer for organizations scaling generative and agentic AI across business workflows. The company said the capabilities are designed to give enterprises real-time visibility into Claude usage, token consumption, security controls, governance enforcement, auditability, and analytics…

Read more →

AI, Global Security News

Cybanetix unveils Managed AI Service to secure users, models, and agents

Cybanetix has announced the launch of its Managed AI Service to address all three aspects of AI use within the enterprise. Covering employee AI usage, AI governance, and embedded AI, the Managed AI Service combines technology from NOMA, SentinelOne, Microsoft, and Exabeam with Cybanetix consultancy, managed services, and 24/7 Security Operations Centre (SOC) monitoring. The…

Read more →

Endpoint, Exploits, Global Security News

New infostealer reaches enterprise devices through FortiClient EMS vulnerability

Attackers are delivering a broad-spectrum infostealer to enterprise computers by exploiting a known vulnerability (CVE-2026-35616) in FortiClient Enterprise Management Server (EMS). “The [malicious] payload was presented as a Fortinet endpoint update and executed through FortiClient-managed VPN scripting workflows,” Arctic Wold researchers noted. About CVE-2026-35616 CVE-2026-35616 is an improper access control vulnerability vulnerability in FortiClient EMS,…

Read more →

AI, Apps, Compliance, Global Security News, Network Security

IBM and Red Hat want to become the ‘security clearinghouse’ for open source applications in the enterprise

Open source code is everywhere in the enterprise; it’s estimated that upwards of 90% of Fortune 500 companies have it in their software supply chains. But open source code is notoriously rife with vulnerabilities, and identifying and patching those bugs can be an endless battle for security teams. IBM and Red Hat are betting that…

Read more →

AI, Global Security News

PwC: SAP AI Strategy Shifts Toward Enterprise Execution

SAP’s latest AI announcements at Sapphire are landing as enterprise customers move beyond experimentation and begin demanding measurable returns, stronger governance, and scalable operational outcomes from AI investments. Patrick Pugh, global and U.S. alliances leader at PwC, told Channel Insider that the event reflected a broader shift in the SAP market: enterprises are increasingly embedding…

Read more →

AI, Apps, Global Security News

Jetico expands BestCrypt Data Shelter with zero-trust file access controls

Jetico has announced the extension of BestCrypt Data Shelter to include centrally managed enterprise data access control for sensitive files. The solution allows security teams to define and enforce policies governing which applications, processes and users can access protected files. This default-deny model aligns with zero-trust security principles. “Organizations have made significant progress in encrypting…

Read more →

AI, Apps, Global Security News

AppOmni’s Marlin AI automates SaaS threat analysis, triage, and remediation at scale

AppOmni has launched Marlin AI to transform how enterprise organizations defend complex SaaS applications. Marlin AI delivers autonomous AI-powered SaaS security that leverages AppOmni’s deep SaaS application observability. It actively correlates SaaS security indicators, performs deep investigations, and guides security teams to immediate solutions. By reducing the massive hours wasted on investigating threats, alerts and…

Read more →

AI, Compliance, Data Breaches, Data Security, Global Security News, Network Security, Risk Management

GUEST ESSAY: AI pipelines are shattering network security — most companies haven’t even noticed yet

For the past two decades, enterprise security teams have gotten good at one thing: keeping sensitive data where it belongs. Related: Leaked secrets no. 1 exposure Production data stays in production. Test environments get masked or synthetic data. Access is controlled. Ownership is defined. The system, while imperfect, largely works. Then AI arrived — and…

Read more →

AI, Cybersecurity, Exploits, Global Security News, malware, Risk Management, Russia

Security experts caution MFA alone can no longer stop threat actors

Cybersecurity experts are warning enterprise admins about an increasing number of phishing campaigns aimed at stealing Microsoft 365 (M365) access tokens to bypass multifactor authentication login protection. Phishing kits aimed at capturing M365 tokens aren’t new; some reports say these kits have been around since 2021. One of the latest is EvilTokens, which researchers at…

Read more →

AI, Apps, Cybersecurity, Global Security News, Risk Management

Google talks ‘singularity’ while scaling up agentic AI for enterprises

Google is recasting its enterprise AI roadmap around autonomous systems and AGI, with DeepMind CEO Demis Hassabis telling I/O attendees the industry now sits at the “foothills of the singularity.” “When we look back at this time, I think we all realise that we were standing in the foothills of the singularity,” Hassabis said in his…

Read more →

AI, APAC, Global Security News, Network Security

Vector embedding security gap exposes enterprise AI pipelines

Enterprise adoption of retrieval-augmented generation has moved sensitive corporate content into a new storage format that existing security tools cannot inspect. Companies deploying internal AI assistants convert documents into high-dimensional numerical vectors and ship them to embedding services and vector databases over ordinary HTTPS connections. Data loss prevention products scan documents and network traffic, and…

Read more →

AI, Compliance, Exploits, Global Security News, Network Security, Risk Management

Weaponized AI: The new frontier of fraud and identity spoofing

Today’s enterprise executives are navigating a complex landscape of AI-driven challenges, but none is more urgent than the rapid escalation of AI-generated fraud. Fraudsters are weaponizing generative AI to automate impersonation and mass-produce synthetic identities at a scale and pace that is rendering enterprises’ long-standing defenses obsolete. This is no longer a slow-moving game of…

Read more →

AI, Apps, Exploits, Global Security News, Risk Management

Microsoft addresses 137 vulnerabilities in May’s Patch Tuesday, including 13 rated critical

Microsoft addressed another triple-digit batch of vulnerabilities cutting across its various enterprise products, components and underlying systems. Yet despite the high number of defects, the vendor reported no actively exploited zero-days in this month’s Patch Tuesday update. Thirteen of the 137 vulnerabilities Microsoft disclosed were assigned critical CVSS ratings, including a pair of vulnerabilities affecting…

Read more →

AI, Global Security News

SAP unveils Autonomous Enterprise for AI-driven business operations

SAP introduced the Autonomous Enterprise to help enhance the world’s most critical business workflows, so that humans and AI work together to meet the accelerating demands of global business profitably, strategically and safely. “For the mission-critical processes of our customers, ‘almost right’ just isn’t good enough,” said Christian Klein, CEO of SAP SE. “By uniting…

Read more →

AI, Global Security News, Risk Management

Xurrent Intros MCP Server to Enhance AI Integration for ITOps

AI-powered service and operations management platform for corporate IT teams and enterprise MSPs, Xurrent, is launching its Model Context Protocol (MCP) server. This MCP standard enables Xurrent to act as a universal connector, enabling different AI models and digital agents to securely access Xurrent data and perform tasks within established workflows. AI models now connect…

Read more →

AI, Data Breaches, Endpoint, Global Security News, Network Security, Risk Management

Claude Code MCP Attack Enables Persistent Token Theft

AI coding assistants are becoming deeply integrated with enterprise SaaS platforms, but new research shows those connections may introduce hard-to-detect credential theft risks.   Researchers demonstrated a MitM attack targeting Anthropic’s Claude Code that abuses MCP integrations to steal OAuth tokens and maintain persistent access to connected SaaS platforms and APIs.  “AI agents used for code…

Read more →

AI, Global Security News

Red Hat extends open source technology into space

Red Hat and Voyager Technologies announced the successful deployment of Red Hat Enterprise Linux 10.1 and Red Hat Universal Base Image (UBI) to Voyager’s LEOcloud Space Edge IaaS Micro Datacenter aboard the International Space Station (ISS). This collaboration extends a container-optimized, enterprise Linux platform into orbit, providing a more consistent and hardened operating foundation for…

Read more →

AI, Global Security News, Network Security

GTT Channel Exec on 2026 Platform Strategy & Market Trends

GTT says growing AI and security demands are pushing enterprise customers to seek simpler technology strategies and closer partner relationships.  Sara Seegers, GTT’s channel chief, spoke with Channel Insider about the company’s platform-based approach to technology and how channel partners remain a core face of GTT’s growth strategy. GTT continues to serve partners seeking simplicity …

Read more →

Global Security News

One Missed Threat Per Week: What 25M Alerts Reveal About Low-Severity Risk

The dark secret of enterprise security operations is that defenders have quietly institutionalized the practice of not looking. This is not just anecdotal, but rather backed by a recent report investigating more than 25 million security alerts, including informational and low-severity, across live enterprise environments.  The dataset behind these findings includes 10 million monitored

Read more →

AI, Apps, china, Compliance, Endpoint, Exploits, Global Security News, malware, Network Security, Risk Management, Russia

Inside the World of Laptop Farms: How They Help Foreign Remote Workers Look U.S.-Based to Earn More Money

The expansion of remote work fundamentally altered enterprise security models. Organizations that once relied on tightly controlled office environments suddenly began shipping pre-configured corporate laptops to workers they would never physically meet. VPN enrollment, SaaS identity platforms, remote onboarding systems, and cloud collaboration tools rapidly became the new trust perimeter. Criminal organizations and state-sponsored operators…

Read more →

AI, Exploits, Global Security News, Network Security

Cisco patches high-severity flaws enabling SSRF, code execution attacks

Cisco fixed several high‑severity flaws in its enterprise products, including SSRF bugs in Unity Connection that could enable code execution or service disruption. Cisco released patches for multiple high‑severity vulnerabilities affecting its enterprise products. Successful exploitation could allow code execution, server‑side request forgery (SSRF), or denial‑of‑service attacks. Two notable flaws, CVE‑2026‑20034 and CVE‑2026‑20035, impact Cisco…

Read more →

AI, Global Security News, Network Security

Extreme Networks introduces Agent ONE for autonomous enterprise networking

Extreme Networks has introduced Extreme Agent ONE, a new class of AI agents for enterprise networking. Moving beyond generic, prompt-based AI, Extreme Agent ONE runs on the Extreme AI stack purpose-built for enterprise environments, which combines advanced AI reasoning, live network context, and operational expertise to transform enterprise networks into systems that detect, decide, and…

Read more →

AI, Apps, Cybersecurity, Global Security News, privacy, Risk Management

Microsoft, Google push AI agent governance into enterprise IT mainstream

Microsoft and Google are adding new controls for AI agents, as enterprise IT teams try to keep up with tools that can access corporate data and act across business applications. Microsoft’s Agent 365, made generally available for commercial customers on May 1, is designed to help organizations discover, govern, and secure AI agents, including those…

Read more →

AI, Apps, Cloud Security, Compliance, Endpoint, Global Security News, Network Security

Why most zero-trust architectures fail at the traffic layer

Zero trust has become one of the most widely adopted security models in enterprise environments. Organizations invest heavily in identity systems, access policies and modern security tooling. On paper, these environments look well-protected. Yet during incidents, a different reality often emerges. I have worked with organizations where zero-trust initiatives were fully implemented from an identity…

Read more →

Exploits, Global Security News

Weaver E-cology RCE Flaw CVE-2026-22679 Actively Exploited via Debug API

A critical security vulnerability in Weaver (Fanwei) E-cology, an enterprise office automation (OA) and collaboration platform, has come under active exploitation in the wild. The vulnerability (CVE-2026-22679, CVSS score: 9.8) relates to a case of unauthenticated remote code execution affecting Weaver E-cology 10.0 versions prior to 20260312. The issue resides in the “/papi/esearch/data/devops/

Read more →

AI, Global Security News, Risk Management

One in four MCP servers opens AI agent security to code execution risk

Enterprise deployments of AI agents lean on two extension mechanisms that introduce risk at different layers of the stack. MCP servers expose deterministic code functions with structured, loggable invocations. Skills load textual instruction sets directly into a model’s reasoning context, where their effect depends on conversational state and cannot be enumerated the way source code…

Read more →

AI, Apps, Global Security News, Network Security, privacy

Open-source privacy proxy masks PII before prompts reach external AI services

Enterprise developers routinely send prompts to external large language models that contain customer emails, support transcripts, and other identifying information, often without a sanitization layer between the application and the API. Dataiku has released Kiji Privacy Proxy, an open-source local gateway that detects and masks personally identifiable information before requests leave the network. The tool…

Read more →

AI, Apps, Data Breaches, Exploits, Global Security News, malware, Network Security, Risk Management

SAP npm Supply Chain Attack Targets Developer Credentials 

A supply chain attack targeting SAP npm packages is putting enterprise development environments at risk.  Aikido researchers discovered malicious code designed to steal credentials and secrets from developer systems and CI/CD pipelines.  The attack “… harvests local developer credentials, GitHub and npm tokens, GitHub Actions secrets, and cloud secrets from AWS, Azure, GCP, and Kubernetes,”…

Read more →

AI, Global Security News, Network Security, Risk Management

Tines Targets Partner-Led Growth in North America

Tines is expanding its channel and technology partner ecosystem as enterprise demand grows for intelligent workflows that connect automation, AI, and human decision-making across security and IT operations. The intelligent workflow platform announced 75 new technology partners for fiscal year 2026, along with 25% growth in its channel partner network.  The company said collaborations with…

Read more →

AI, Apps, Compliance, Data Breaches, Global Security News, Network Security, privacy, Risk Management

Securing RAG pipelines in enterprise SaaS

In the enterprise SaaS space, AI agents are becoming an integral part of the SaaS product. To make these intelligent agents truly useful, they need contextual, customer-specific knowledge, something standard Large Language Models (LLMs), open source or otherwise, inherently lack since they are not trained on customer proprietary data. Retrieval-Augmented Generation (RAG) is the bridge…

Read more →

AI, Apps, Cybersecurity, Data Breaches, Global Security News, Network Security, Risk Management

FIRESIDE CHAT: Leaked secrets are now the go-to attack vector — and AI is accelerating exposures

A consequential shift is underway in how enterprise breaches begin. The leaked credential — once treated as a hygiene problem — has become the primary on-ramp. Related: No easy fixes for AI risk Last August’s Salesloft campaign was the pattern in miniature. Stolen OAuth tokens from one chatbot vendor pulled Salesforce data from 760 enterprise…

Read more →

AI, Cybersecurity, Endpoint, Exploits, Global Security News, malware, Network Security, Risk Management

3 practical ways AI threat detection improves enterprise cyber resilience

Why “more alerts” isn’t the same as better security If you run security in an enterprise environment, you already know the problem. Generic detection tools generate thousands of alerts, most of them low value. Analysts spend hours chasing noise while attackers quietly move laterally using valid credentials and trusted tools. AI‑driven threat detection promises to…

Read more →

AI, Global Security News, Network Security

IP Fabric MCP server adds governance and control to enterprise AIOps workflows

IP Fabric has launched a new Model Context Protocol (MCP) server that removes key barriers to enterprise AIOps adoption, combining secure in-platform deployment with a built-in prompt library for network operations. While MCP servers and AI integrations are increasingly common, most fall short in enterprise environments where security, control and trusted data are non-negotiable. IP…

Read more →

AI, APAC, Apps, Global Security News, Network Security, Risk Management

Oracle Builds for AI While Channel Rivals Chase Share

Oracle is reshaping its enterprise strategy around AI, multicloud infrastructure, and deeper ties with hyperscale partners such as AWS. But as the company pours billions into data centers, pushes agentic AI across its portfolio, and cuts jobs to support that transition, rivals see an opening to compete more aggressively for Oracle-adjacent workloads. That opportunity is…

Read more →

AI, Cloud Security, Compliance, Cybersecurity, Endpoint, Exploits, Global Security News, Network Security, Risk Management

A technical walkthrough of multicloud full-stack security using AWS Security Hub Extended

Building on our recent announcement of AWS Security Hub Extended —our full-stack enterprise security offering — we want to show you how we’re simplifying security procurement and operations for your multicloud environments. Whether you’re a security architect evaluating solutions or a CISO looking to streamline vendor management, this post walks through the streamlined experience that…

Read more →

AI, Endpoint, Exploits, Global Security News, malware, Risk Management

Attackers abuse Microsoft Teams to impersonate the IT helpdesk in a new enterprise intrusion playbook

Attackers are increasingly exploiting enterprise collaboration platforms such as Microsoft Teams to gain initial access, impersonating IT helpdesk staff and persuading employees to grant remote control, according to new research from Microsoft. In a blog post, Microsoft described a “cross-tenant helpdesk impersonation” technique in which threat actors initiate conversations with employees via Teams’ external access…

Read more →

AI, Data Breaches, Exploits, Global Security News, Network Security, privacy, Risk Management

World ID expands its ‘proof of human’ vision for the AI era

Identity management is a critical concern for any enterprise, and it’s becoming ever more complex and convoluted with the advent of AI agents. World ID is taking a unique (and to some, controversial) approach to this challenge by building a ‘digital proof of human’ ecosystem for the internet. Today, at its “Lift Off” event, the…

Read more →

AI, Compliance, Global Security News, privacy

Webinar: The IT Leader’s Guide to AI Governance

Generative AI is moving from experimentation to everyday enterprise use, often faster than governance models were designed to support. As adoption accelerates, organizations are navigating the evolving landscape with new questions around security, data privacy, compliance, and control, all while being asked to enable innovation at speed. This 30 to 35-minute conversation offers practical perspectives…

Read more →

AI, Exploits, Global Security News

Copilot and Agentforce fall to form-based prompt injection tricks

Enterprise AI agents are supposed to streamline workflows. Instead, two fresh findings show they can just as easily streamline data exfiltration. Security researchers have uncovered prompt-injection vulnerabilities in both Microsoft Copilot Studio and Salesforce Agentforce that allow attackers to execute malicious instructions via seemingly harmless prompts. According to Capsule Security findings, SharePoint forms and public-facing…

Read more →

AI, Apps, Global Security News, Risk Management

Curity looks to reinvent IAM with runtime authorization for AI agents

In 2026, enterprise developers are building and deploying the first generation of powerful, increasingly autonomous AI agents at incredible speed. Now comes the hard part: working out how to secure them. Vendors in the space are facing multiple challenges. To begin with, traditional identity and access management (IAM) tools were never designed to secure anything…

Read more →

AI, Apps, Global Security News, Risk Management

Curity looks to reinvent IAM with runtime authorization for AI agents

In 2026, enterprise developers are building and deploying the first generation of powerful, increasingly autonomous AI agents at incredible speed. Now comes the hard part: working out how to secure them. Vendors in the space are facing multiple challenges. To begin with, traditional identity and access management (IAM) tools were never designed to secure anything…

Read more →

AI, Apps, Cloud Security, Compliance, Endpoint, Global Security News, Network Security

Why most zero-trust architectures fail at the traffic layer

Zero trust has become one of the most widely adopted security models in enterprise environments. Organizations invest heavily in identity systems, access policies, and modern security tooling. On paper, these environments look well-protected. Yet during incidents, a different reality often emerges. I have worked with organizations where zero-trust initiatives were fully implemented from an identity…

Read more →

AI, Apps, Cybersecurity, Europe, Global Security News, Government & Policy, Risk Management

FIRESIDE CHAT: Geopolitical turmoil, rising AI risk add a new layer to enterprise cyber defense

As if securing the enterprise against a tidal wave of AI tools wasn’t hard enough, it turns out the geopolitical instability of the moment is making things worse. That wasn’t the headline at RSAC 2026 last week — agentic AI dominated the agenda — but the stress was visible at the ground level if you…

Read more →

AI, Compliance, Cybersecurity, Data Breaches, Global Security News, Network Security, Risk Management

The State of AI Risk Management in 2026 Reveals a Growing Confidence Gap

As enterprise adoption of artificial intelligence accelerates, a new report warns that organizations may be far less prepared to manage AI risk than they believe.  The State of AI Risk Management 2026 report from the Purple Book Community highlights a widening disconnect between perceived control and operational reality, exposing critical gaps in how companies govern…

Read more →

AI, Cybersecurity, Global Security News, Network Security, Risk Management

Escaping the COTS trap

Over the years, enterprise cybersecurity environments have accumulated staggering numbers of commercial tools. Industry research converges on a consistent picture of tool proliferation that drives complexity, cost, and risk. The global cybersecurity market is valued at approximately $243 billion in 2024 and projected to surpass $520 billion annually by 2026. Commercial off-the-shelf (COTS) software promises…

Read more →

Apps, Global Security News, Network Security

IT talent looks the other way as wireless security incidents pile up

Enterprise wireless networks are supporting a growing mix of devices and applications, increasing operational demand and security exposure. The 2026 Cisco State of Wireless report reflects these conditions through rising incident rates, higher costs, and ongoing staffing challenges. Wireless investment continues to increase. Most organizations expanded spending over the past 5 years, and a large…

Read more →

Cybersecurity, Funding, Global Security News

5 Affordable Enterprise Internet Scalability Solutions in South Carolina Compared

In this post, I will show you 5 affordable enterprise Internet scalability solutions in South Carolina. South Carolina’s connectivity boom is here. Armed with $551.5 million in new BEAD funding, fiber crews are wiring Columbia, Charleston, and the Upstate according to the state’s broadband map release. For the first time, midsize firms can buy enterprise-grade…

Read more →

AI, Global Security News

New Red Hat subscription simplifies long-term enterprise Linux support

Red Hat has announced Red Hat Enterprise Linux Extended Life Cycle Premium, a new subscription that provides a predictable 14-year life cycle for major Red Hat Enterprise Linux releases. This stand-alone subscription consolidates extended support, simplifying the management of multiple support streams. It helps organizations maintain their most sensitive, change-averse workloads on a single, hardened…

Read more →

AI, Cybersecurity, Global Security News, malware

Researchers say credential-stealing campaign used AI to build evasion ‘at every stage’

A new malware-based credential-stealing campaign, which researchers are calling “DeepLoad,” has been infecting enterprise business IT environments over the past In a report released Monday, ReliaQuest AI researchers Thassanai McCabe and Andrew Currie say the most relevant feature of this attack is the way it uses artificial intelligence and other engineering “to defeat the controls…

Read more →

AI, Exploits, Global Security News, Network Security, Risk Management

Chained vulnerabilities in Cisco Catalyst switches could induce denial-of-service

Cisco’s widely deployed Catalyst 9300 Series enterprise switches have four security vulnerabilities, two of which could be chained to cause a denial-of-service outage, infrastructure security company Opswat has revealed. The two most operationally significant are CVE-2026-20114 and CVE-2026-20110, which the researchers found could be chained to make possible a dangerous privilege escalation. Opswat’s Unit 515…

Read more →

Cybersecurity, Data Breaches, Global Security News

Enterprise Security in 2026: Why Most Organizations Are Still Getting It Wrong

Enterprise security has never been more urgent — or more misunderstood. Despite ballooning security budgets, the average cost of a data breach hit a record high in 2024, and the trend hasn’t reversed. Organizations are spending more on tools than ever before, yet the breaches keep coming. The uncomfortable truth? Spending more isn’t the problem.…

Read more →