According to Anthropic and other MCP adapter developers, the STDIO command execution behavior is by design and the responsibility of sanitizing MCP configurations falls with developers of client applications. While this might be true, in practice OX Security found that few developers have attempted to filter commands in MCP configs and even those who did...Read More
Key takeaways: Voice agents now execute transactions and workflows, turning minor errors into direct financial, operational, and compliance risks. Security must exist across every layer, from audio input to execution, not as a final checkpoint. Enterprises need measurable benchmarks such as FAR, hallucination rate, and attack success rate to validate the actual security of their...Read More
The idea of a fully autonomous security operations centre (SOC) has gained traction across the cybersecurity industry, fuelled by vendor promises of artificial intelligence capable of detecting and neutralising threats without human intervention. It’s an appealing vision for organisations grappling with escalating cyber risks and chronic skills shortages. Yet, beneath the marketing, industry leaders are...Read More
TrustCloud and ComplianceCow have released new AI native security and risk management applications built directly on the ServiceNow platform. TrustCloud’s Continuous Control Monitoring and ComplianceCow’s evidence and controls automation are now integrated within ServiceNow workflows. The applications follow ServiceNow’s investment in TrustCloud and point to deeper third party ecosystem development around enterprise security. For investors...Read More
The post Zero-Knowledge Proofs for Privacy-Preserving AI Tool Execution appeared first on Read the Gopher Security’s Quantum Safety Blog. The privacy gap in modern AI context sharing Ever notice how every time you use an AI tool, you’re basically handing over the keys to your private data just to get a simple answer? It feels...Read More
The EU AI Act cares about evidence, not intent When National Competent Authorities begin enforcement on August 2, 2026, they will ask organisations what AI systems they operate, how those systems are being used, and what controls are in place. Many organisations will struggle to answer these questions. The Shadow AI Problem is Bigger Than...Read More
A recent survey conducted by Rubrik Zero Labs highlights significant security challenges posed by AI agents, with 86% of organisations expecting these systems to surpass their security guardrails within the next year. The findings suggest that AI agents, while promising efficiency, require more manual oversight than they deliver, according to more than 80% of respondents....Read More
Zscaler Inc.‘s new partnership with OpenAI Group PBC has the potential to transform the security firm’s cloud-native zero-trust platform into an engine that can both harden its own stack and help customers deploy artificial intelligence with confidence at large scale. Understanding the news Zscaler has joined OpenAI’s Trusted Access for Cyber or TAC program, gaining access to security-tuned...Read More
Rubrik has published survey findings that point to widening security gaps as companies adopt AI agents. The research is based on responses from more than 1,600 IT and security leaders. The figures suggest many organisations are deploying autonomous systems faster than they can monitor or control them. Rubrik Zero Labs found that 86 per cent...Read More
When it comes to the EU AI Act, many organisations take a manual approach to auditing, which looks impressive on paper but collapses under regulatory scrutiny. They use policies, surveys, working groups, and a well-formatted risk register. However, a manual approach does not provide the continuous, automated, technical control needed to stay compliant under the...Read More
