Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

I Faked a Receipt with ChatGPT

Generative AI can produce realistic taxi receipts, complete with stains and wear, which blend into digital expense workflows that expect only a quick photo upload. As more organisations move to app based reimbursement, synthetic documents slip through unless controls, audits and behavioural checks keep pace with these tools. ⸻ For more information about us or if you have any questions you would like us to discuss email podcast@razorthorn.com. We give our clients a personalised, integrated approach to information security, driven by our belief in quality and discretion..

I Read Cursor's Security Agent Prompts, So You Don't Have To

Cursor's security team built four autonomous agents that review 3,000+ PRs per week, catch 200+ vulnerabilities, and open fix PRs automatically. The engineering is impressive, and the prompts are shockingly simple. But there's a meaningful gap between "LLM agents reviewing PRs" and "enterprise security program," and that gap is exactly where things get interesting.

Why Marketing Teams Are Rethinking the Way Customer Personas Are Built

How well do marketing teams really understand their customers today? For years, businesses have relied on buyer personas (detailed profiles representing their ideal customers) to guide messaging, campaigns, and product positioning. And the concept has clearly gained traction: studies show that 44% of marketers already use buyer personas, while another 29% plan to adopt them soon.

How to Protect Sensitive Data from LLMs | AI Data Privacy Demo

AI tools like ChatGPT, Gemini and other LLMs are powerful — but what happens when sensitive data gets sent to them? In this video, we demonstrate how Protecto AI prevents sensitive information from reaching LLMs using Masking APIs and Unmasking APIs. You’ll see a real workflow where user prompts containing credit card details and personal data are automatically masked before being processed by an AI model like Gemini 2.5 Flash.

WhatsApp Is the Latest Example Of Why Every New AI Feature Outpaces Legacy DLP

Every new AI feature that ships into a platform your employees already use is a security question your stack probably can't answer yet. It sounds like hyperbole, but it's the structural reality of how AI adoption works in 2026. A recent update to WhatsApp is a useful illustration of why.

AI Workload Security on AWS: Evaluating Native Tools vs Third-Party Solutions

Your Bedrock agent running on EKS receives a prompt through your RAG pipeline. CloudTrail logs it as a normal bedrock:InvokeModel event—status 200, authorized IAM role, expected endpoint. But inside the container, the agent’s response triggers a tool call that spawns curl to an external IP, exfiltrating the context window. GuardDuty doesn’t flag it because the connection routes through a permitted VPC endpoint. You open your AWS console and see a healthy API call.

How to Evaluate AI Workload Security Tools for Enterprise Teams

You’ve sat through three vendor demos this week. Vendor A showed you an AI-SPM dashboard with a pie chart of misconfigurations. Vendor B showed you a nearly identical dashboard with different branding and a slightly wider set of compliance frameworks. Vendor C showed you posture findings with an “AI workload” tag that wasn’t in their product last quarter.

Code Review That Learns: Inside Cato R&D's Self-Evolving PR Review Agent

Agentic AI promises to improve work processes in all domains and industries. R&D is no different. Recently, Cato R&D built an internal self-evolving pull request (PR) review agent that keeps reviewers in flow by commenting only on high-impact, high-confidence issues, validating every change against its spec from the PR and Jira, and learning continuously from developer feedback through long-term, episodic memory. What were the results?

See through document fraud with Document AI Enhanced Fraud Detection

On April 2, 1796, a full house packed the Drury Lane Theatre in London, eager to witness the first showing of a newly discovered Shakespeare play. The problem was that William Henry Ireland wrote the play, Vortigern, and the entire production was a hoax. Although there was some controversy before opening day, several experts reviewed the manuscript and supporting documents and confirmed that the play was a long-lost Shakespeare original.