
AI use in cybersecurity is on the rise — and so is burnout
The Life and Times of Cybersecurity Professionals study highlights a trend that has accelerated as cyber has become more complex.

The Life and Times of Cybersecurity Professionals study highlights a trend that has accelerated as cyber has become more complex.

The Magic Quadrant™ for Software Supply Chain Security is a 45-minute read. Here's what we feel security leaders need to pull from it.

With a ‘vulnpocalypse’ expected, AppSec leaders are calling for the companies to invest in a Great Refactor Fund to secure open source.

The Life and Times of Cybersecurity Professionals study highlights a trend that has accelerated as cyber has become more complex.

The Magic Quadrant™ for Software Supply Chain Security is a 45-minute read. Here's what we feel security leaders need to pull from it.

SSCS is a footnote that grew up, moved out, and got its own report.

With a ‘vulnpocalypse’ expected, AppSec leaders are calling for the companies to invest in a Great Refactor Fund to secure open source.

SecOps leaders must tackle cost and risk to deliver autonomous vulnerability operations. But with frontier AI, it's critical.

The first Magic Quadrant™ for Software Supply Chain Security comes as, we feel, the demand for greater supply chain visibility explodes.

Agentic AI is moving the perimeter from components to data — and most strategies aren't built for that.

Coding agents are privileged insiders — with keys to CI/CD pipelines even as they give rise to ‘slopsquatting.’ Here’s how to govern them.

Disabling scripts by default closes the vector worms like Shai-Hulud rely on. Here's what the update fixes — and what it doesn't.

The Microsoft 365 phishing campaign persuades victims to complete a real authentication process that authorizes an attacker-controlled device.

RL has documented CVE-2026-46316, and developed two YARA rules to help detect exploits of the multi-tenant cloud vulnerability.

The standard connecting AI agents to tools and data leaves security to others. Make it a do-over.

Agentic AI will disrupt how SOC teams are built — and the way CISOs hire. Here’s how to embrace AI.

RL has discovered two social engineering attack techniques targeting users via short-form videos. Here’s how they work.

The attack is notable for its breadth, flooding npm with malicious package versions.
Get your 14-day free trial of Spectra Assure for Software Supply Chain Security
Get Free TrialMore about Spectra Assure Free Trial