Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

ggshield 1.51 is here with better support for AI-powered development and browser-less environments. This release adds Codex hook support, MCP server detection across Claude and Cursor, and `ggshield auth login --method oob` for SSH sessions and headless servers. It also strengthens trust in the ggshield supply chain with GitHub Artifact Attestations for release binaries, improves plugin management through your authenticated GitGuardian instance, adds a `vscode` alias for Copilot hook installation, and shows workspace ID in `ggshield api-status`.

Today’s adversaries move at the speed of AI, so defenders need to reason, decide, and act faster across every stage of security operations. Meet Charlotte AI AgentWorks, a no-code agent builder that enables teams to create mission-ready AI agents directly inside the CrowdStrike Falcon platform.

Learn how CrowdStrike Falcon Shield helps organizations harden their GitHub Enterprise environments against state-sponsored adversaries like FAMOUS CHOLLIMA. A DPRK-nexus threat actor actively targeting developer environments in 2026. This demo showcases how Falcon Shield continuously monitors GitHub Enterprise for misconfigurations, exposed CI/CD secrets, over-permissioned tokens, and other security risks that adversaries exploit to launch supply chain attacks.

Falcon Cloud Security Graph Explorer helps teams identify internet-exposed, unprotected, and exploitable cloud risks—and prioritize what to fix first. Subscribe and stay updated!

Modern adversaries do not break in loudly anymore. They log in, blend in, and move faster than most security teams can respond. In CrowdStrike’s 2026 Global Threat Report, the fastest observed breakout time was just 27 seconds, while 82% of detections were malware-free. Traditional defenses were not built for attacks that look like normal activity. This lightboard session breaks down why defenders are struggling to keep up, how modern adversaries operate across identities and cloud environments, and why the gap between intelligence and action continues to grow.

Modern SOCs face a difficult reality: attackers are moving faster while analysts are being asked to investigate more alerts than ever. Learn how agentic triage helps security teams move from alert overload to evidence-backed investigations. Rather than relying on opaque AI outputs, the approach uses expert-written playbooks and exposes the underlying queries and evidence so analysts can verify conclusions against raw network data.