Geek-Guy.com

Tag: In

AI, Apps, Cybersecurity, Endpoint, Exploits, Global Security News, malware, Network Security, Risk Management

Windows 11 Smart App Control explained

In the ever-evolving cybersecurity landscape, Microsoft has introduced various new features in Windows 11 designed to protect users from modern workplace threats. Among such features, Smart App Control (SAC) changes how Windows devices handle, and occasionally block, unwanted or potentially malicious applications. But what exactly is Smart App Control? How does it work, who benefits…

Read more →

AI, Cybersecurity, Data Breaches, Global Security News, Network Security, Risk Management

Cybersecurity trends in SEC filings

In 2023, the Securities and Exchange Commission (SEC) required public companies to include a new section in their 10-K annual filings that is devoted to cybersecurity. This section is meant to address “cybersecurity risk management, strategy, governance and incidents.” I got curious as to what senior cybersecurity executives are conveying about their companies in these…

Read more →

AI, Apps, Compliance, Data Breaches, Global Security News, Network Security, privacy, Risk Management

Securing RAG pipelines in enterprise SaaS

In the enterprise SaaS space, AI agents are becoming an integral part of the SaaS product. To make these intelligent agents truly useful, they need contextual, customer-specific knowledge, something standard Large Language Models (LLMs), open source or otherwise, inherently lack since they are not trained on customer proprietary data. Retrieval-Augmented Generation (RAG) is the bridge…

Read more →

AI, Apps, Cybersecurity, Data Breaches, Endpoint, Europe, Exploits, Global Security News, Network Security, Risk Management

Palo Alto’s Helmut Reisinger sees a cyber sea change ahead as AI advances

In two decades, Palo Alto Networks has evolved from a next-generation niche player to one of the largest global cybersecurity giants today. Under its mantra of “platformization,” the company has catapulted its revenues over its closest competitors and boosted its stock valuation to over $130 billion. No stranger to AI use in cybersecurity, Palo Alto recently announced…

Read more →

AI, Apps, Global Security News, Risk Management

Curity looks to reinvent IAM with runtime authorization for AI agents

In 2026, enterprise developers are building and deploying the first generation of powerful, increasingly autonomous AI agents at incredible speed. Now comes the hard part: working out how to secure them. Vendors in the space are facing multiple challenges. To begin with, traditional identity and access management (IAM) tools were never designed to secure anything…

Read more →

AI, Apps, Global Security News, Risk Management

Curity looks to reinvent IAM with runtime authorization for AI agents

In 2026, enterprise developers are building and deploying the first generation of powerful, increasingly autonomous AI agents at incredible speed. Now comes the hard part: working out how to secure them. Vendors in the space are facing multiple challenges. To begin with, traditional identity and access management (IAM) tools were never designed to secure anything…

Read more →

AI, Global Security News

Video: SotaTek US CEO on AI Infrastructure Mistakes MSPs Must Fix

In this Channel Insider Partner POV episode, Katie Bavoso sits down with MK Tong, CEO of SotaTek USA, to break down why infrastructure—not AI models—is the real bottleneck for enterprise success. As AI workloads grow more complex, many organizations are rushing deployments without rethinking their infrastructure strategy. Tong shares where companies go wrong, how infrastructure…

Read more →

AI, Compliance, Cybersecurity, Data Breaches, Global Security News, Network Security, privacy, Russia

The tabletop exercise grows up

In the early 1800s, Prussian officers began rehearsing battles around sand tables. They called it Kriegsspiel, and it worked because it forced them to make high-stakes decisions under pressure. Fast forward to today, and that same concept has become cybersecurity’s go-to tool for crisis preparedness: the tabletop exercise. For good reason: it still works. Full…

Read more →

AI, Compliance, Cybersecurity, Data Breaches, Global Security News, Network Security, privacy, Russia

The tabletop exercise grows up

In the early 1800s, Prussian officers began rehearsing battles around sand tables. They called it Kriegsspiel, and it worked because it forced them to make high-stakes decisions under pressure. Fast forward to today, and that same concept has become cybersecurity’s go-to tool for crisis preparedness: the tabletop exercise. For good reason: it still works. Full…

Read more →

AI, Apps, Compliance, Endpoint, Exploits, Global Security News, malware, Network Security

Why Kubernetes controllers are the perfect backdoor

In my years securing cloud-native environments, I’ve noticed a recurring blind spot. We obsess over the “front doors” such as exposed dashboards, misconfigured RBAC, or unpatched container vulnerabilities. We harden the perimeter, but we often ignore the machinery humming inside.  Sophisticated adversaries have moved beyond simple smash-and-grab tactics. They don’t just want to run a…

Read more →

AI, Apps, Compliance, Cybersecurity, Global Security News, Risk Management

Video: SecurityBridge CEO on SAP Security, AI Risks & 2026 Priorities

In this Channel Insider Partner POV interview, host Katie Bavoso sits down with Jesper Zerlang, CEO of SecurityBridge, to discuss SAP cybersecurity, AI-driven threats like data poisoning, and why channel-first strategies will define partner growth in 2026. Zerlang shares insights on securing mission-critical SAP environments, evolving compliance challenges for CISOs and CIOs, and how partners…

Read more →

AI, Global Security News

Is MacBook Neo the Mac’s iPhone moment?

In news that will strike a chill to the heart of competing PC makers, Apple has effectively confirmed that demand for its new MacBook Neo is massively exceeding expectations. “Mac just had its best launch week ever for first-time Mac customers,” Apple CEO Tim Cook wrote on X. “We love seeing the enthusiasm!”  Apple also introduced new MacBook…

Read more →

AI, Apps, Cybersecurity, Data Breaches, Endpoint, Exploits, Global Security News, Risk Management

AI use is changing how much companies pay for cyber insurance

In July 2025, McDonald’s had an unexpected problem on the menu, one involving McHire, its AI-powered platform used to recruit and screen job applicants. The system, developed by Paradox.ai, featured a rookie-level security flaw: the backend for restaurant operators accepted “123456” as both username and password, and lacked multi-factor authentication. As a result, the personal…

Read more →

AI, Apps, Data Breaches, Exploits, Global Security News, Network Security, Risk Management

Why access decisions are becoming the weakest link in identity security

In my nearly two decades leading identity and risk programs, I’ve learned a sobering truth that every CISO eventually confronts: hackers don’t hack in — they log in. We often obsess over the perimeter and the sophistication of technical exploits, but many of the most damaging security failures I’ve witnessed didn’t involve a zero-day or…

Read more →

AI, Apps, Cybersecurity, Exploits, Global Security News, malware, Network Security, Risk Management

14 old software bugs that took way too long to squash

In 2021, a vulnerability was revealed in a system that lay at the foundation of modern computing. An attacker could force the system to execute arbitrary code. Shockingly, the vulnerable code was almost 54 years old — and there was no patch available, and no expectation that one would be forthcoming. Fortunately, that’s because the…

Read more →

AI, Apps, Global Security News, Government & Policy, Politics, Risk Management

Anthropic to Department of Defense: Drop dead

In recent weeks, AI giant Anthropic has been locked in a high‑stakes confrontation with the Trump administration’s Department of Defense (DoD) over new standard terms the Pentagon wants to impose on AI vendors. Defense Secretary Pete Hegseth had demanded contract language that would give the military “any lawful use” of Anthropic’s models, effectively stripping out…

Read more →

AI, Compliance, Global Security News, Government & Policy

NATO approves iPhone and iPad to handle classified info

In an impressive and unique industry first that reflects the work Apple has done on mobile device security since the first iPhone arrived almost 20 years ago, the North Atlantic Treaty Organization (NATO) says iPhones and iPads running iOS 26 are secure enough to handle classified information in NATO-restricted environments — pretty much out-of-the-box. That’s going…

Read more →

AI, Cybersecurity, Global Security News, Network Security, Risk Management

Video: Harbor IT on NENS Acquisition and Why the Generalist MSP Model Is Dying

In this episode of Channel Insider: Partner POV, host Katie Bavoso sits down with leaders from Harbor IT to discuss the company’s acquisition of New England Network Solutions, better known as NENS, and what it means for the future of managed services. CFO Hannah Paige and newly appointed CRO Michael Kourkoulakos, the former CEO of…

Read more →

AI, Data Breaches, Exploits, Global Security News, Network Security, Risk Management

The ephemeral infrastructure paradox: Why short-lived systems need stronger identity governance

In my experience leading engineering projects, I have encountered the same pattern repeatedly. We obsess over deployment speed. We measure success in commit velocity and uptime. But we rarely pause to ask the most uncomfortable question in the room: Who actually owns the identities we just spun up? This silence isn’t malicious; it’s structural. We…

Read more →

AI, Apps, Compliance, Cybersecurity, Exploits, Global Security News, Penetration Testing, Risk Management, Security, Security Practices, Risk Management

The hard part of purple teaming starts after detection

In my recent articles for CSO, I’ve talked about the limits of current SOC models and the importance of rehearsal. This time, I want to focus on something that’s becoming increasingly clear: purple teaming has lost its depth. We’ve turned one of the most powerful tools for resilience into a transactional exercise that feels reassuring…

Read more →

AI, APAC, Cybersecurity, Exploits, Global Security News, Patch Management Software, Risk Management, Security, Threat and Vulnerability Management, Risk Management

CISOs must separate signal from noise as CVE volume soars

In 2026, the cybersecurity industry is expected to cross a threshold it has never reached before: More than 50,000 publicly disclosed software vulnerabilities in a single year. According to a new forecast from the Forum of Incident Response and Security Teams (FIRST), the median projection for 2026 is roughly 59,000 Common Vulnerabilities and Exposures (CVEs).…

Read more →

AI, Endpoint, Endpoint Protection, Security, Vulnerabilities, Windows Security, Exploits, Global Security News, malware

Attackers exploit decade‑old Windows driver flaw to shut down modern EDR defenses

In a recent incident, attackers abused a legitimate but vulnerable Windows kernel driver to shut down endpoint security tools during an ongoing incident response. According to a Huntress report, the activity was observed during a customer investigation in early 2026 and involved the use of an old EnCase forensic driver (by Guidance Software) as part…

Read more →