Geek-Guy.com

Tag: “secure

Global Security News, Government & Policy

RSA extends passwordless authentication to Linux environments

RSA has expanded its passwordless authentication capabilities to Linux environments, advancing its goal of delivering secure, password-free access for every user in every environment. Linux is ubiquitous in enterprise infrastructure, powering servers, developer workstations, and critical operational environments across industries from financial services to government. Despite its reach, Linux users have historically been underserved by…

Read more →

AI, Global Security News, Risk Management

Secure Code Warrior connects developer training to AI usage and code risks

Secure Code Warrior has introduced Adaptive Learning, a capability designed to help organizations support AI software governance through targeted training based on identified risks. The feature delivers contextual microlearning and tracks outcomes at the code commit level. Software development is going through its biggest shift ever, from human-written code, to AI-assisted coding, to fully agentic…

Read more →

AI, Global Security News

Digimarc adds provenance, audit, and verification controls for AI agent workflows

Digimarc has announced new provenance and verification infrastructure designed to secure autonomous and AI-enabled workflows. As enterprises increasingly adopt AI systems capable of generating content, orchestrating workflows, and taking action with minimal human intervention, establishing trusted provenance and verifiable authenticity is becoming mission critical. Digimarc’s new capabilities are designed to help organizations determine whether digital…

Read more →

AI, Apps, Global Security News

Microsoft’s new cloud PCs place AI agents under enterprise controls

Microsoft’s Windows 365 for Agents, a cloud PC platform for agentic workloads, runs AI agents in secure environments. Organizations can direct agents with natural language to interact with applications, browsers, files, and enterprise systems. The platform is available in public preview. A conceptual computer-using agent architecture. (Source: Microsoft) Users will be able to automate workflows…

Read more →

AI, Apps, Endpoint, Global Security News, Risk Management

AI security needs a shift from models to systems, researchers argue

Enterprises cannot secure AI agents by making the underlying models more robust and must instead enforce security controls at the system level around them, researchers behind a paper published this month argued, warning that traditional AI-security approaches are increasingly misaligned with how autonomous agents actually operate inside enterprise environments. The paper argues that enterprises should…

Read more →

Endpoint, Exploits, Global Security News

Cisco Patches CVSS 10.0 Secure Workload REST API Flaw Enabling Data Access

Cisco has rolled out updates for a maximum-severity security flaw impacting Secure Workload that could allow an unauthenticated, remote attacker to access sensitive data. Tracked as CVE-2026-20223 (CVSS score: 10.0), the vulnerability arises from insufficient validation and authentication when accessing REST API endpoints. “An attacker could exploit this vulnerability if they are able to send

Read more →

AI, china, Endpoint, Exploits, Global Security News, Network Security

Critical vulnerability in Cisco Secure Workload rated at maximum severity

A critical vulnerability in the on-premises version of the Cisco Secure Workload security platform could allow a threat actor to obtain the privileges of a site admin, enabling them to compromise endpoints and read or modify configuration data. “CSOs need to drop what they are doing and patch this immediately,” warned consultant Robert Enderle, who…

Read more →

AI, Endpoint, Exploits, Global Security News, Risk Management

Cisco fixed maximum severity flaw CVE-2026-20223 in Secure Workload

Cisco fixed a critical Secure Workload flaw (CVE-2026-20223) that could let attackers gain Site Admin privileges through crafted API requests. Cisco released patches for a critical vulnerability, tracked as CVE-2026-20223 (CVSS score of 10.0), in Secure Workload. The flaw stems from insufficient validation and authentication in REST API endpoints. According to Cisco, remote attackers could…

Read more →

AI, Exploits, Global Security News, Network Security

SEPPMail Secure E-Mail Gateway Vulnerabilities Enable RCE and Mail Traffic Access

Critical security vulnerabilities have been disclosed in SEPPMail Secure E-Mail Gateway, an enterprise-grade email security solution, that could be exploited to achieve remote code execution and enable an attacker to read arbitrary mails from the virtual appliance. “These vulnerabilities could have been exploited to read all mail traffic or as an entry vector into the…

Read more →

Global Security News, Government & Policy

Apricorn hardens ASK3 encrypted USB drive for extreme conditions

Apricorn has announced enhancements to its Aegis Secure Key 3.0 (ASK3), delivering faster performance and new environmental protection capabilities designed to secure the device and its data in the most demanding physical circumstances. The ASK3 was updated to meet and exceed the latest NIST Cryptographic Module Validation Program (CMVP) for FIPS 140-3 Level 3 validation,…

Read more →

Global Security News

Citrix moves secure access to a flexible, credit-based consumption model

Citrix has introduced Citrix Platform Flex, a secure access platform that combines software, management, and infrastructure to deliver managed desktops, enterprise browsing, and zero-trust access in a single offering. Built around workforce personas, Platform Flex replaces one-size-fits-all licensing with a flexible consumption model. Customers purchase a shared pool of Flex credits and allocate them based…

Read more →

AI, Apps, Compliance, Cybersecurity, Data Breaches, Global Security News, Risk Management

Breach Secure Now Helps MSPs Secure SMB AI Use

Breach Secure Now is launching its AI Risk to Adoption Program, a new channel-focused offering designed to help managed service providers guide small and midsize businesses from unmanaged AI use toward secure, structured adoption. Art Gross, founder and CEO of Breach Secure Now (BSN), said MSPs are well-positioned to lead those conversations because AI risk…

Read more →

AI, Apps, Endpoint, Global Security News

SailPoint Agentic Fabric expands identity governance to autonomous AI agents

SailPoint has introduced SailPoint Agentic Fabric, a new platform designed to help enterprises secure AI agents and other non-human identities at scale. As organizations deploy autonomous AI agents across cloud environments, applications, and endpoints, they face a growing governance gap. Unlike traditional users, AI agents can act at machine speed, often without clear ownership, oversight,…

Read more →

AI, Compliance, Cybersecurity, Global Security News, Network Security, privacy

News alert: LuxSci launches HIPAA-compliant email platform for mid-size healthcare market

CAMBRIDGE, Mass., May 5, 2026, CyberNewswire—LuxSci, a leading provider of HIPAA compliant secure healthcare communications, today announced the launch of LuxSci Secure High Volume Email for mid-sized healthcare organizations, the industry’s trusted HIPPA-compliant email solution now packaged and priced for mid-size healthcare organizations. Regional health systems, health plans, specialty group practices, urgent care networks, and…

Read more →

AI, Apps, Global Security News

Penske Logistics launches platform for real-time supply chain visibility

Penske Logistics has announced the launch of Supply Chain Insight, a secure technology platform and mobile application that provides customers with a real-time view of their supply chain operations across transportation and warehousing. Supply chain leaders are under increased pressure to drive greater operational efficiency in the face of rising fuel costs, evolving regulations and…

Read more →

AI, Apps, Compliance, Global Security News, Network Security

Access control with IAM Identity Center session tags

As organizations expand their Amazon Web Services (AWS) footprint, managing secure, scalable, and cost-efficient access across multiple accounts becomes increasingly important. AWS IAM Identity Center offers a centralized, unified solution for managing workforce access to AWS accounts. It simplifies authentication, enhances security, and provides a seamless user sign-in experience to AWS services across diverse environments.…

Read more →

AI, Compliance, Cybersecurity, Data Breaches, Endpoint, Global Security News, Network Security, Risk Management

Enterprise VPN Solutions Every Business Should Know in 2026

This guide is for IT leaders, security teams, and growing businesses that need secure remote access to corporate systems. It highlights the top enterprise VPN solutions in 2026 that protect data, control access, and support reliable connectivity. Think of your enterprise network as a busy airport. Every employee, device, and data packet is trying to…

Read more →

AI, Apps, Compliance, Data Breaches, Endpoint, Global Security News, Network Security, privacy

Attacking the MCP Trust Boundary

Every secure API draws a line between code and data. HTTP separates headers from bodies. SQL has prepared statements. Even email distinguishes the envelope from the message. The Model Context Protocol (MCP), the fast-growing standard for connecting AI agents to external services, inherits that gap from the models it sits on top of. Its central…

Read more →

AI, Global Security News, Risk Management

Ivanti Neurons AI automates IT operations, reducing manual work and security risk

Ivanti has revealed new solution capabilities, focusing on enabling autonomous IT operations and organizations to secure their environments more efficiently at scale. With these advancements, Ivanti enables IT and security operations to detect, decide, and act autonomously without sacrificing trust, governance, or control. AI capabilities and the threat landscape are changing quickly, and IT and…

Read more →

AI, Apps, Cybersecurity, Exploits, Global Security News, malware, Network Security, Risk Management

April Patch Tuesday roundup: Zero day vulnerabilities and critical bugs

A critical hole in Windows Internet Key Exchange for secure communications, an actively exploited zero day in Microsoft SharePoint and a critical SQL injection vulnerability in a SAP product are the focus of the April Patch Tuesday releases requiring immediate attention from IT security teams. “April’s threat landscape is defined by immediate, real-world exploitation rather…

Read more →

AI, Europe, Global Security News, Network Security

Cato Networks Joins Westcon-Comstor’s AWS Marketplace Program

Global IT distributor Westcon-Comstor has announced that Cato Networks, a provider of Secure Access Service Edge (SASE) solutions, is joining its AWS Marketplace program. Launched in 2024, the distributor program helps partners close deals faster and reduce the procurement friction in AWS Marketplace. Adding Cato Networks to the program is meant to unlock “new growth…

Read more →

AI, Compliance, Global Security News, Network Security, Risk Management

Minimus Taps Yael Nardi to Lead Strategic Operations as Chief Business Officer

New York, United States: Minimus, a provider of hardened and secure container images designed to mitigate CVE risk, today announced the appointment of Yael Nardi as Chief Business Officer (CBO). In this newly created role, Nardi will lead the company’s next phase of scale, overseeing top-of-funnel growth strategy, operations, and corporate development. As the market landscape evolves…

Read more →

AI, Compliance, Global Security News, Network Security, Risk Management

Minimus Appoints Tech Dealmaker Yael Nardi as Chief Business Officer to Drive Hyper-Growth

NEW YORK, NY – April 7, 2026 – Minimus, a leading provider of hardened container images and secure container images designed to eliminate CVE risk, today announced the appointment of Yael Nardi as Chief Business Officer (CBO). In this newly created role, Nardi will architect the company’s next phase of scale, overseeing a high-velocity top-of-funnel…

Read more →

Global Security News

Windows Security app gets Secure Boot certificate status indicators as 2026 expiration approaches

Microsoft’s Secure Boot certificates, issued in 2011, are approaching expiration in 2026. To help IT administrators track whether devices have received replacement certificates, Microsoft has added new status indicators to the Windows Security app, under Device security > Secure Boot. Updated 2023 certificates are being delivered automatically through Windows Update to consumer devices and some…

Read more →

AI, Cybersecurity, Global Security News

The Ultimate Guide to Secure Sweepstakes Gaming Platforms

Discover the most secure sweepstakes gaming platforms. Learn how fair play technology and encrypted social casino platforms protect your virtual currency entertainment. The digital entertainment landscape has shifted dramatically, with social casinos becoming a powerhouse of online play. However, as the industry grows, so does the importance of discernment. Choosing secure sweepstakes gaming platforms isn’t…

Read more →

AI, Global Security News, Network Security

Codenotary introduces AgentX for autonomous Linux infrastructure security

Codenotary has announced the availability of AgentX, an autonomous platform designed to manage, secure, and protect large-scale Linux infrastructure in the cloud or on-premises through coordinated networks of AI agents. AgentX introduces a new approach to infrastructure operations by allowing distributed AI agents to collaborate, automating security enforcement, operational tasks, and lifecycle management while maintaining…

Read more →

AI, Endpoint, Global Security News

BeyondTrust Delivers Industry’s First Unified Privileged Identity Solution for AI Agent Coworkers and Workloads, From the Desktop to the Cloud

COMPANY NEWS:  New capabilities in the BeyondTrust Pathfinder Platform secure AI agent coworkers on endpoints and AI agent workloads across cloud infrastructure and SaaS platforms Security teams gain visibility into AI agent identities, privileges, and secrets across platforms including OpenAI, AWS Bedrock, Salesforce Agentforce, ServiceNow, and Google Vertex AI

Read more →

AI, Global Security News

Straiker enables visibility and runtime protection for enterprise AI agents

Straiker has launched Discover AI and expanded Defend AI to secure coding agents, productivity agents, and custom-built agent platforms. Agents are operating across enterprise systems with broad access, growing autonomy, and zero security oversight. That’s why Straiker built Discover AI and Defend AI: to give security teams visibility into what agents are running and protection…

Read more →

AI, Global Security News

Rubrik SAGE enables semantic governance for enterprise AI agents at scale

Rubrik has unveiled its Semantic AI Governance Engine (SAGE), designed to secure and control autonomous agents in real time. SAGE powers Rubrik Agent Cloud, replacing static, manual oversight with intent-driven governance to safely scale the enterprise AI workforce while maintaining full control over agent behavior. Enterprise AI deployment is stalling at a governance bottleneck, as…

Read more →

Global Security News, Network Security

AppGate delivers identity-based ZTNA for secure access across OT systems

AppGate has announced the launch of its Operational Technology (OT) ZTNA solution. Designed to secure industrial control systems, manufacturing plants, energy facilities, and other critical infrastructure, the offering extends AppGate’s direct-routed ZTNA architecture into OT environments. It enables secure remote access without compromising performance or operational stability. As IT and OT systems grow increasingly interconnected,…

Read more →

AI, Exploits, Global Security News

Cisco FMC flaw was exploited by Interlock weeks before patch (CVE-2026-20131)

A critical vulnerability (CVE-2026-20131) in Cisco Secure Firewall Management Center (FMC) that Cisco disclosed and patched in early March 2026 has been exploited as a zero-day by the Interlock ransomware gang, Amazon CISO and VP of Security Engineering CJ Moses revealed. “Our research [using Amazon’s MadPot system of honeypots] found that Interlock was exploiting this…

Read more →

AI, Apps, Global Security News

Bonfy ACS 2.0 helps organizations control data use in AI environments

Bonfy.AI announced Bonfy Adaptive Content Security (Bonfy ACS) 2.0, a platform built to secure enterprise content across all systems, applications, and AI agents – anywhere data moves, resides, or is processed. As organizations race to deploy copilots, custom AI apps, and increasingly autonomous AI agents, security leaders are struggling with blind spots around how these…

Read more →

AI, Apps, Global Security News

Versa Secure Enterprise Browser delivers browser-native security for enterprise apps

Versa has revealed early access to Versa Secure Enterprise Browser, a new browser-native security capability within the VersaONE Universal SASE Platform that protects employees, contractors, and partner users as they access web, SaaS, and enterprise AI applications by enforcing security, access, and data protection policies directly within the browser session. The browser has become the…

Read more →

AI, Global Security News

Menlo Security delivers unified governance and threat prevention for AI agents and humans

Menlo Security has unveiled the Browser Security Platform, purpose-built to secure the agentic enterprise, where autonomous AI agents will outnumber human employees and the browser has become the operating system for both. Menlo provides unified control plane to apply machine-speed governance and threat prevention to both human and non-human actors, deployed globally on Menlo’s elastic…

Read more →

AI, Global Security News, Risk Management

SCW Trust Agent: AI tracks AI influence in code to reduce software risk

Secure Code Warrior has announced SCW Trust Agent: AI, a governance solution designed to make AI influence in software development visible, attributable, and enforceable at the point of commit, enabling enterprises to scale AI coding tools with measurable control over software risk. Organizations can trace which AI models influenced specific commits, correlate that influence with…

Read more →

AI, Data Security, Global Security News, Risk Management

Microsoft zeroes in on AI-driven data risks in Fabric

New Microsoft Purview innovations for Microsoft Fabric help organizations secure data and accelerate AI adoption. The updates focus on identifying risks, preventing data oversharing, and strengthening governance and data quality across the data estate. Integration between Microsoft Purview and Microsoft Fabric delivers unified data security and governance, enabling protection of sensitive data, maintaining visibility across…

Read more →

AI, Apps, Exploits, Global Security News, Risk Management

ENISA Technical Advisory on Secure Package Managers: Essential DevSecOps Guidance

ENISA’s first Technical Advisory on Secure Package Managers helps developers safely use third-party packages. ENISA has released its first Technical Advisory on Package Managers, focusing on how developers can safely consume third-party packages. The document (March 2026, v1.1) follows public feedback incorporating 15 contributions from stakeholders, experts, and the open-source community. “This document focuses on…

Read more →

AI, Compliance, Global Security News

Secureframe automates CMMC compliance with secure infrastructure and AI SSPs

Secureframe has launched Secureframe Defense, an end-to-end solution for CMMC certification. It provides secure infrastructure deployment, AI-generated System Security Plans (SSPs), policies, and comprehensive monitoring that Defense Industrial Base (DIB) organizations need to achieve and maintain certification faster, without unnecessary cost or complexity. With CMMC enforcement underway, readiness across the DIB remains critically low. The…

Read more →

Cybersecurity, Global Security News

Secure Cloud Storage for Photographers Featuring Smart RAW File Compression Technology

In this post, I will talk about the secure cloud storage for photographers featuring smart RAW file compression technology. Digital technology has made photographers produce huge quantities of data every day, particularly when they shoot in RAW formats, which preserve the best quality of images. The management, storage, and safeguarding these huge documents poses a…

Read more →

AI, Apps, Data Breaches, Endpoint, Exploits, Global Security News, Network Security, Risk Management

Cisco Firewall Management Flaw Enables Remote Code Execution

Cisco has reported a vulnerability in its Secure Firewall Management Center (FMC) software that could allow attackers to remotely execute code and take full control of affected systems.  The flaw does not require user interaction or authentication. “An attacker could exploit this vulnerability by sending a crafted serialized Java object to the web-based management interface…

Read more →

AI, Apps, Exploits, Global Security News, malware, Network Security

Cisco fixes maximum-severity Secure FMC bugs threatening firewall security

Cisco patched two critical Secure FMC vulnerabilities that could let attackers gain root access to managed firewalls. Cisco addressed two maximum-severity vulnerabilities in its Secure Firewall Management Center (FMC) that could allow attackers to gain root access. Cisco Secure Firewall Management Center (FMC) is a centralized management platform for Cisco firewalls. It lets administrators configure,…

Read more →

AI, Global Security News

RecordPoint MCP Server standardizes and secures AI access to compliant data

RecordPoint has unveiled its model context protocol (MCP) server, giving enterprises a secure, standardized way to expose governed data to external AI agents and platforms. The RecordPoint MCP Server allows any AI system, copilot, agent, or custom LLM app to safely access governed, compliant data from the RecordPoint platform without custom integrations or elevated permissions.…

Read more →

AI, Apps, Cybersecurity, Global Security News, Risk Management

DeepKeep Launches AI Agent Security Scanner

DeepKeep on Tuesday introduced a new AI Agent Scanner designed to help enterprises identify and secure the growing attack surface created by AI agents embedded in business workflows. The Tel Aviv-based AI security vendor said its latest release provides structured attack surface scanning and discovery for agentic AI environments, where large language model (LLM)-based agents…

Read more →

AI, Global Security News, Network Security, Risk Management

Google Develops Merkle Tree Certificates to Enable Quantum-Resistant HTTPS in Chrome

Google has announced a new program in its Chrome browser to ensure that HTTPS certificates are secure against the future risk posed by quantum computers. “To ensure the scalability and efficiency of the ecosystem, Chrome has no immediate plan to add traditional X.509 certificates containing post-quantum cryptography to the Chrome Root Store,” the Chrome Secure…

Read more →