Enterprise Security Tech

We sat down with Jon David of NR Labs to challenge one of security’s most entrenched assumptions: that passing a pentest means you’re safer. Drawing on years of frontline breach response, David explains why traditional, vulnerability-centric testing no longer reflects how modern attackers actually operate, and why resilience today depends on understanding attack paths, identity abuse, and architectural weak points. David explores how organizations can move beyond compliance

For a brief moment, OpenClaw looked like the future of personal computing. One persistent AI agent. One conversational thread. A digital butler that moves seamlessly between WhatsApp, Slack, Telegram, and email, with the authority to act instead of merely advise. It can clean up servers, push code, reply to messages, book dinners, and rummage through files with the same casual confidence as a trusted colleague. That promise has helped make OpenClaw the fastest-growing AI tool

Tenable security researchers have uncovered a pair of previously unknown vulnerabilities in Google Looker that, when chained together, could allow attackers to take complete control of a Looker instance and, in cloud environments, potentially reach across customer boundaries. The flaws were were responsibly disclosed through Google’s Cloud Vulnerability Reward Program , and patched on Google-managed systems. The risk now falls squarely on organizations that run Looker them

Coinbase has confirmed a newly disclosed insider breach after a contractor improperly accessed sensitive customer data late last year, adding to a growing list of incidents that show how fragile trust boundaries can become when internal tools fall into the wrong hands. The cryptocurrency exchange said the incident occurred in December and affected roughly 30 customers. According to the company, the access was detected by its internal security team and tied to a single contra

As Data Privacy Day 2026 arrives, the conversation around protecting personal information is shifting in a way that feels both inevitable and unsettling. Data itself is no longer the first line of defense. Identity is. Across modern enterprises, identity has quietly become the control plane that governs access to systems, applications, and sensitive data. Attackers understand this reality better than most defenders, and the rapid spread of cloud services, non-human identitie

A massive trove of stolen login credentials, totaling nearly 150 million unique usernames and passwords, was recently found sitting exposed on the open internet, underscoring just how industrialized and fragile the modern credential theft ecosystem has become. The cache, uncovered by cybersecurity researcher Jeremiah Fowler at ExpressVPN , contained more than 149 million records and roughly 96 gigabytes of raw data. The database was neither encrypted nor protected by a passwo