Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Introducing AI-assisted query creation in 1Password Device Trust

Today we're shipping a new capability directly into 1Password Device Trust that lets admins query their fleets faster, without needing to be SQL experts. Now you can describe what you want to investigate in plain English, and Device Trust generates a ready-to-run SQL query you can execute across your devices in a single click.

Monitoring Agents and SaaS AI Platforms with Microsoft Agent 365 [Part 1]

Agent usage is exploding and in Microsoft 365, agents aren’t monitored by default. Even though it’s early days for tools that can monitor agents, Microsoft’s newly released Agent 365 evolves this new category with some powerful capabilities. Here are some tips for using Microsoft Agent 365 and related tools to monitor agents. Solutions discussed in this post: This is part 1 of a two-part series.

5 Agentic AI Security Use Cases Every Security Leader Must Know in 2026

A human employee who wants to delete a customer record, issue a refund, or push a config change has to ask, click, and confirm. An AI agent doing the same thing can plan, decide, and execute the action in one pass, often through a tool it picked itself, in a sequence no one explicitly approved. That shift, from systems that respond to systems that act, is why most application security stacks fall short the moment agentic AI enters the picture.

AI changed what you ship. It also changed what you have to secure.

Two years ago, your teams shipped software. Today they ship two different things. They ship software that AI mostly wrote. And they ship AI systems they built themselves: models, agents, features that reason and act. Most security programs are still scoped for the first and blind to the second. That gap is not a tooling problem. It is a category problem. And the way the industry is drawing the categories is making it worse.

Decoding the Copilot Ecosystem

Microsoft’s approach of generative artificial intelligence has fundamentally redefined corporate productivity. The "Copilot" brand has become synonymous with workplace efficiency, promising to accelerate everything from writing software to summarizing executive board meetings. For a security analyst, however, this widespread integration introduces significant challenges to the attack surface they manage.

The 2026 Enterprise AI Security Index

The writing is on the wall: artificial intelligence has moved past the experimental phase and has cemented its place as a core component of the modern enterprise stack. For CISOs, the playbook of flat firewall blocking is ineffective—bans don’t halt adoption, they simply drive usage underground into unmanaged shadow streams. To protect corporate assets without stalling business velocity, security leaders are seeing the need to shift from blind obstruction to active, structured guidance.

The Architecture of an AI-Powered Breach: The Shadow Supply Chain

CISOs and security analysts understand that the narrative surrounding artificial intelligence risk has changed. The old assumption that AI risk begins and ends with an employee copying and pasting a sensitive paragraph into a public ChatGPT prompt has dissipated, and we now see that AI has rapidly transitioned from an occasional consumer novelty into a deeply embedded, departmental infrastructure.

How to layer fraud checks on top of Anthropic's KYC Screener agent

Anthropic released a pre-built KYC Screener agent last month. It runs a four-step workflow on onboarding records to extract structured data from KYC documents, evaluate that data against a firm's KYC rules, screen named parties, and escalate exceptions to a compliance file for human review. The Anthropic template is purpose-built for meeting basic KYC compliance requirements during onboarding, and it lowers the cost of getting it right.

20,000 Instagram accounts hacked with AI tool abuse

A bug in Meta's AI-powered account recovery tool compromised 20,000 Instagram accounts. In this week's Intel Chat, Chris and Matt discuss how the flaw allowed attackers to bypass email verification. Meta patched the tool after discovering the abuse on May 31st. Matt's takeaway: tools given broad API access become attractive targets. Meta should have caught this in basic testing, yet it took an adversary to expose the weakness.

The Claude Fable Saga - The 443 Podcast - Episode 375

This week on the podcast, we unpack the Claude Fable 5 release and subsequent revocation following an export control directive from the US federal government. After that, we cover the recent FortiBleed credential dump, discussing its likely origins, before reviewing the most recent Windows 0day disclosed by Nightmare Eclipse.