Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Even Google says you cannot do AI security on one platform

This week, Connie Loizos, editor in chief of TechCrunch, sat down backstage with Francis de Souza, COO of Google Cloud, for a piece on the state of enterprise AI security. The interview is worth reading in full. Three points in it should reshape how every CISO is thinking about the next twelve months.

Cybersecurity Operations Are Entering the AI-Native Era

Cybersecurity operations were already becoming increasingly difficult to scale long before AI-driven and increasingly agentic attacks began accelerating the threat landscape. Customer environments continued expanding across endpoints, identities, cloud services, SaaS applications, remote users, and operational infrastructure. More environments created more telemetry, more coordination, and more operational complexity for teams already operating near capacity.

NetSuite AI Connector: The governance layer your roles and permissions aren't ready for

The NetSuite AI Connector Service enables external AI agents to authenticate directly into NetSuite using real user identities and MCP-based tool execution. While Oracle limits elevated actions at the platform level, AI agents still inherit the full permission scope of the connected role. That shifts longstanding governance weaknesses, including over-permissioned roles, SoD conflicts, and undocumented customizations, into active operational risk.

Defending Against the Next Generation of Agentic Attacks

The attack lifecycle is compressing. Frontier AI models like Anthropic’s Mythos and OpenAI’s GPT-5.5-Cyber can help bad actors research vulnerabilities, test approaches, adapt code, and change delivery methods at machine speed and scale. That reduces the time, skill, and coordination needed to move from vulnerability discovery to active attack. When attacks behave this way, security needs to operate in real time with full visibility and context across the attack path.

Shadow AI Is Already In Your Company - What Can You Do About It?

In this video, you will learn why static domain-blocking strategies fail against the modern Shadow AI ecosystem, how Generative AI wrappers, browser extensions, and personal accounts bypass corporate firewalls without triggering an alert, and why network-layer inspection cannot distinguish proprietary code from public Stack Overflow snippets. We break down the limitations of traditional DLP at the clipboard layer, explain how data lineage replaces application allow-lists, and show how the "Glass House" model lets enterprises enable AI productivity while strictly gating sensitive data movement.

Our comments to NIST: AI agent security starts with human identity verification

AI agents have developed advanced capabilities faster than most would have imagined. In enterprise contexts, workforces are delegating more and more tasks to them. While the promise of increased productivity is enticing, the shift from deterministic automated tools to agentic autonomous systems introduces security risks that most enterprises haven’t prepared for.

OpenAI and the environment AI inherits

AI inherits the access permissions that accumulated quietly in organizations for years. Frontier models eliminate the obscurity that once limited what attackers, and even employees, could reach. Sensitive data, stale service accounts, and unreviewed permissions now surface in seconds. Governing identity and access before connecting AI determines whether frontier models become a force multiplier or a compounding risk.

GitGuardian Just Gave AI Coding Agents Secret Detection Skills

AI coding assistants like Claude Code and Cursor are helping developers write more code faster, but that also means more chances for secrets to slip into prompts, files, commits, and tool outputs. GitGuardian’s new open-source **agent-skills** repository teaches AI agents how to use **ggshield** directly inside the developer workflow: when to scan, how to read findings, and how to guide remediation for leaked credentials.

Legitimate-Looking Codex Remote UI Secretly Steals Your AI Tokens

There's a new playbook in the supply chain threat landscape, where an someone builds something genuinely useful, growing a real user base. But all while stealing credentials. codexui-android is a remote web UI for OpenAI Codex. Real GitHub repo. Active development. Polished enough to get 27.000 weekly downloads. And for the past month, every single invocation has been quietly exfiltrating your Codex authentication tokens to an attacker-controlled server.