Regulatory
Policy updates, framework guidance, and enforcement actions that may affect your AI governance posture.
Verifiable Digital Credential Presentment
This blog post is #4 in our series on Verifiable Digital Credentials (VDCs). Our other posts can be found via Post #1, Post #2, and Post #3. In earlier posts, we discussed how verifiable digital credentials (VDCs) are issued and…
Source: NIST Cybersecurity — Read full article →
Incidents & Breaches
Real-world failures and breach reports — what happened when controls were absent or ignored.
Infosec professionals sour on automated pentesting tools
29% of security pros were open to fully autonomous pentesting last year; now only 9% are
Source: The Register — Security — Read full article →
Huntress CEO says threat hunter used ‘poor judgment’ in alerting ransomware crim about law enforcement probe
Ex-employee claims this ‘meets the definition of an insider threat’
Source: The Register — Security — Read full article →
Threat Intelligence
Active threats and vulnerabilities relevant to mid-market IT and security teams.
Delta Electronics DVP12SE PLC
View CSAF Summary Successful exploitation of these vulnerabilities could allow an attacker to remotely issue commands, modify operational values, interfere with control logic, and alter device behavior without authentication or privilege enforcement. The following versions of Delta Electronics DVP12SE PLC…
Source: CISA — Read full article →
Frangoteam FUXA SCADA/HMI
View CSAF Summary Successful exploitation of this vulnerability could allow an unauthenticated remote attacker to enumerate all user accounts and role assignments on a FUXA SCADA/HMI instance. The following versions of Frangoteam FUXA SCADA/HMI are affected: FUXA SCADA/HMI <=1.3.1 (CVE-2026-13207)…
Source: CISA — Read full article →
Vendor Updates
What enterprise AI vendors are shipping — tools already in your environment or heading there.
Accelerating the quantum-safe timeline
We’re accelerating quantum-safe readiness—and sharing what organizations can do now to transition earlier and with confidence. The post Accelerating the quantum-safe timeline appeared first on Microsoft Security Blog.
Source: Microsoft Security Blog — Read full article →
What’s new in Microsoft Security: June 2026
This month’s updates help security and IT teams strengthen identity and multicloud foundations, protect data wherever it lives, and secure the developer workflows powering AI innovation. The post What’s new in Microsoft Security: June 2026 appeared first on Microsoft Security…
Source: Microsoft Security Blog — Read full article →
Security News
General security industry news

China-Linked Group Targets Southeast Asia Critical Systems
The group compromised at least 10 regional organizations, including two state-owned entities, and deployed a new backdoor.
Source: Dark Reading — Read full article →

Fake Bug Report Hijacks AI Coding Agents at Scale
“Agentjacking” is the latest demonstration of how easily attackers can exploit an AI agent’s inability to differentiate between content and instructions.
Source: Dark Reading — Read full article →
InfoDefenders
Practitioner commentary and analysis from the InfoDefenders team.
AI Governance Audit Prep: Your 30-Day Plan
AI governance audit preparation in 30 days is possible. Here’s what auditors look for, what to document, and how to close gaps fast.
Source: InfoDefenders — Read full article →