"Implementing Secure AI Framework (#SAIF) Controls in Google Cloud" bit.ly/3KLShpR <- this blog launches a new paper on SAIF #AI controls in Google Cloud. More useful than fun, admittedly :-)

CISOs now face a new class of AI risks. The OWASP Top 10 for LLM Apps outlines the threats and how to prepare. Explore this Palo Alto Networks interactive guide with mitigation suggestions:  paloaltonetworks.com/resources/info…

👻GhostPoster: Malware Hidden in a Firefox Icon GhostPoster was a malicious Firefox extension disguised as Free VPN Forever, infecting over 50,000 users. Researchers at Koi found it hid malware in its PNG logo, using image bytes as covert data to trigger undetected routines.

Critical infrastructure owners and operators should be aware of the risks and benefits associated with adopting AI into OT environments. Review our recent joint CSI for guidance on safe and secure integration of AI into OT systems. media.defense.gov/2025/Dec/03/20…

I fell down the Kubernetes security rabbit hole. So I wrote a deep-dive on attack techniques, detection engineering, and scripts to test everything in a lab. Shoutout to @GrahamHelton and Rory McCune for their previous work! heilancoos.github.io/research/2025/…

This article describes how the author built an intelligent alert-handling system using Prometheus, n8n and OpenAI API to automate detection, diagnosis and remediation of common Kubernetes alerts ➤ ku.bz/YmCsvN59J

In this repository, you will find a roadmap to learn Kubernetes from scratch (beginner to advanced level) ➤ ku.bz/2SCbfS1td

"Розвідка: анонімності не існує" — нова книга Molfar Intelligence Institute З 2019 року Molfar виріс у десять разів. Разом із цим — досвід і робочі підходи. У книзі "Розвідка: анонімності не існує" ділимося тим, як будувати розвідувальну команду, працювати із даними і

New BSides Canberra 2025 talk by Ayman Sagy is now live: “Ding Dong The EDR is DEAD.” Watch here: youtu.be/kMENCPnpve8

Protect yourself this season! 🎄 Use Google TI searches and Livehunts for "delivery" lures & "urgent" gift card scams. #GoogleTIMondays

Vague detection notes are history. MITRE ATT&CK v18 brings actionable Analytics. Map to YARA-L, build Composite Rules, and use TIE to predict adversary moves. 👉 bit.ly/4qnIHsa

Stop the passive documentation and build a truly resilient system. Move your defenses to be proactive and check out our 4-step framework for scaling threat modeling. ⬇️ Learn more: goo.gle/4p6KgcW

Reminder... even Microsoft keeps decent red team documentation. learn.microsoft.com/en-us/entra/id…

𝗖𝗼𝗻𝗻𝗲𝗰𝘁𝗲𝗱 𝗔𝗴𝗲𝗻𝘁𝘀: 𝗧𝗵𝗲 𝗛𝗶𝗱𝗱𝗲𝗻 𝗕𝗮𝗰𝗸𝗱𝗼𝗼𝗿 𝗶𝗻 𝗬𝗼𝘂𝗿 𝗖𝗼𝗽𝗶𝗹𝗼𝘁 Zenity Labs’ article explains Microsoft Copilot Studio’s new Connected Agents feature, which allows agents to reuse each other’s logic and tools. While powerful for efficiency, it

🤖 AI MCP Activity Monitoring Did you know the Cloud App Catalog now includes a new “AI – MCP Server” category? As AI agent technologies rapidly expand across the Microsoft ecosystem, it’s more important than ever for security teams to establish strong Cloud App Governance

Kyiv is the only capital on earth where New Year arrives in silence. While the world celebrates with fireworks, Ukrainians have to listen for drones. Wherever you are in the world, think of Ukraine and remember who caused this

Happy New Year! 🎉 I’ve made an entire penetration testing course I previously created for a training platform (now defunct after an acquisition) freely available on YouTube. If you’re interested in hands-on, practical security training, you can watch the full course here: 👉

Anthropic виклали безкоштовний 2-годинний курс по Claude Code. Без води і теорії, практичні речі: контроль контексту, кастомні воркфлоу, MCP-сервери, автоматизація з GitHub, і багато іншого 👇 Курс тут: anthropic.skilljar.com/claude-code-in… Ми автоматизовуємо бізнес з АІ тут:

𝗔𝘇𝘂𝗿𝗲 Exams Materials👇🏽.: •      𝗔𝗭-𝟵𝟬𝟬: certpreps.com/exams/az900 •      𝗔𝗭-𝟭𝟰𝟬: certpreps.com/exams/az140/ •      𝗔𝗭-𝟱𝟬𝟬: certpreps.com/exams/az500/ •      𝗔𝗭-𝟭𝟬𝟰: certpreps.com/exams/az104/ •      𝗠𝗦-𝟵𝟬𝟬: certpreps.com/exams/ms900/ •      𝗦𝗖-𝟵𝟬𝟬:

Entra ID Rationalizes Session Revocation for User Accounts office365itpros.com/2026/01/09/rev… #MicrosofEntraID #Microsoft365 #MVPBuzz