Insights

Latest Articles

Cybersecurity

Your AI Tool Doesn’t Know Who It’s Talking To. Neither Do You.

A free tool on GitHub silently swaps Anthropic's Claude Code for cheaper models, and the developer never knows. No hacking. No breach. Just a design gap with a track record. The AI client trusts whatever server it points at. That assumption is now the supply chain.

Apr 2026 · 5 min read
Cybersecurity

The Open Secret About How Cyber Practitioners Handle Secrets

Credentials are still scattered across developer machines, build pipelines, configuration files, and AI agent directories. Unaudited, unrotated, and unprotected. This article reflects my first-hand experience. Root cause, real exposure, and a practical path forward, for both leadership and engineering teams. And it makes the case for a board-and-management mandate on credential security management even more urgent.

Apr 2026 · 9 min read

Powered by
Necessary cookies enable essential site features like secure log-ins and consent preference adjustments. They do not store personal data.
None
Functional cookies support features like content sharing on social media, collecting feedback, and enabling third-party tools.
None
Analytical cookies track visitor interactions, providing insights on metrics like visitor count, bounce rate, and traffic sources.
None
Advertisement cookies deliver personalized ads based on your previous visits and analyze the effectiveness of ad campaigns.
None
Powered by