Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Why CISOs are right to be skeptical of AI - and what actually solves it

AI demos are easy. AI you’d actually trust near your control environment is not. If you’ve sat through a few of these pitches lately, you’ve probably landed on the same four questions every CISO we talk to is asking. And you’re right to ask them.

Before You Rethink Everything for Frontier AI, Measure What's Already Working

The recent wave of announcements surrounding Claude Mythos and Project Glasswing has certainly filled our feeds. While these developments are technically interesting, the real story for me lately has been what they reveal about where the cybersecurity market is heading and how quickly that evolution is reshaping the risk conversation.

How to Prevent AI Data Leakage

Artificial intelligence tools have completely revolutionized the way we work, boosting productivity to heights we couldn’t have imagined just a few years ago. But the upside comes with a high-stakes catch: every time an employee pastes proprietary code, financial records, or sensitive customer data into a public AI prompt, your company is at risk. As Shadow AI adoption skyrockets, implementing robust data leakage prevention is no longer an IT checklist item — it’s a business imperative.

BlueVoyant AI: Our Shared Security Roadmap

Today, we’re launching BlueVoyant AI. In my first months as CEO, I’ve had the chance to meet with many of you. What struck me most is the scope and importance of what you’re protecting, and how seriously you carry that responsibility. What also came through clearly is that your vision for the future of security aligns with ours.

How AI Is Changing Both Cyberattacks and Cyber Defense

Artificial intelligence is changing cybersecurity because it gives both attackers and defenders more speed, scale, and flexibility. Attackers can use AI to write better messages, test code, scan targets, and move through stolen data faster. Security teams can use similar technology to detect odd behavior, sort alerts, and respond before a small incident becomes a serious breach. The biggest shift is not that AI replaces every hacker or every analyst. Work that once required hours, special training, or a larger team can now be assisted by software.
Featured Post

The Control Paradox: Why Regulated Industries Must Rethink AI in Security Operations

For decades, highly regulated sectors have taken a cautious approach to cybersecurity, and for organisations in industries such as banking and finance, healthcare, insurance and critical national infrastructure, the instinct has been to retain ownership of security operations. That model is now under strain. Escalating cyber threats, regulatory scrutiny, and a growing skills shortage are exposing the limits of traditional Security Operations Centres (SOCs). At the same time, AI-driven technologies are maturing rapidly and forcing a strategic rethink.

CrowdStrike and Zscaler Bring Continuous Identity to Zero Trust Access

Modern adversaries are accelerating attacks across identities, endpoints, cloud environments, and SaaS applications, often moving faster than security teams can respond. Identity has become a primary attack vector as attackers leverage credential abuse to evade detection and expand their foothold. Stopping today’s threats requires visibility and context across every domain to accurately assess risk before adversaries can move laterally.

Agentic workflows: What they are and how enterprise teams govern them

Security and IT teams know the pattern: work spans dozens of tools that don't talk to each other, and people closest to the problem spend more time stitching together information than acting on it. Whether the job is provisioning access, triaging an anomaly, or closing out an incident, the reality is fragmented handoffs and brittle scripts. The data backs this up.

Claude Opus 4.8: Can It Finally Write Secure Code?

We put Anthropic’s new Claude Opus 4.8 to the test using our standard benchmark: building a secure, production-ready Notes app. Anthropic claims this model is four times less likely to let security flaws slip through. Operating on "Ultra Code" mode, the AI navigates environment blocks, writes its own E2E security test suite, and runs dependency audits. We walkthrough the final app and run a security scan using the Snyk CLI to see if Claude's code is truly safe to deploy.