<?xml version='1.0' encoding='UTF-8'?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>InfoSecRadar — Positive (Friend)</title>
    <link>https://infosecradar.com/feeds/positive.xml</link>
    <description>Good news for defenders</description>
    <atom:link href="https://infosecradar.com/feeds/positive.xml" rel="self"/>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>InfoSecRadar</generator>
    <language>en</language>
    <lastBuildDate>Fri, 17 Jul 2026 14:10:19 +0000</lastBuildDate>
    <item>
      <title>Thinking Fast and Slow in the SOC: The Case for Combining Autonomous AI with Analyst Copilots</title>
      <link>https://infosecradar.com/stories/2026/07/13/thinking-fast-and-slow-in-the-soc-the-case-for-combining-autonomous-ai-with-anal/</link>
      <description>This article discusses the integration of AI agents, specifically mentioning Claude, into Security Operations Centers (SOCs) to aid in investigations. It highlights the value seen in specific use cases but also raises questions about broader architectural design and the potential for combining autonomous AI with human analyst copilots.</description>
      <guid isPermaLink="false">https://thehackernews.com/2026/07/thinking-fast-and-slow-in-soc-case-for.html</guid>
      <pubDate>Mon, 13 Jul 2026 11:37:05 +0000</pubDate>
      <source url="https://thehackernews.com/2026/07/thinking-fast-and-slow-in-soc-case-for.html">The Hacker News</source>
    </item>
    <item>
      <title>Today’s 220-1201 CompTIA A+ Pop Quiz: Many colors to choose from</title>
      <link>https://infosecradar.com/stories/2026/07/13/todays-220-1201-comptia-a-pop-quiz-many-colors-to-choose-from/</link>
      <description>This article presents a pop quiz focused on the CompTIA A+ 220-1201 certification exam. It is part of a series of free training resources offered by Professor Messer to help individuals prepare for IT certifications.</description>
      <guid isPermaLink="false">https://www.professormesser.com/free-a-plus-training/220-1201/220-1201-pop-quizzes/many-colors-to-choose-from/</guid>
      <pubDate>Mon, 13 Jul 2026 12:00:51 +0000</pubDate>
      <source url="https://www.professormesser.com/free-a-plus-training/220-1201/220-1201-pop-quizzes/many-colors-to-choose-from/">Professor Messer</source>
    </item>
    <item>
      <title>Cybersecurity M&amp;A Roundup: 37 Deals Announced in June 2026</title>
      <link>https://infosecradar.com/stories/2026/07/13/cybersecurity-ma-roundup-37-deals-announced-in-june-2026/</link>
      <description>Cybersecurity mergers and acquisitions saw a significant increase in June 2026, with 37 deals announced. Notable transactions involved major players such as 1Password, Accenture, Cisco, F5, Rubrik, and SailPoint.</description>
      <guid isPermaLink="false">https://www.securityweek.com/cybersecurity-ma-roundup-37-deals-announced-in-june-2026/</guid>
      <pubDate>Mon, 13 Jul 2026 12:20:14 +0000</pubDate>
      <source url="https://www.securityweek.com/cybersecurity-ma-roundup-37-deals-announced-in-june-2026/">SecurityWeek</source>
    </item>
    <item>
      <title>Turning the Tables on Email Scammers With 'ScamBuster'</title>
      <link>https://infosecradar.com/stories/2026/07/13/turning-the-tables-on-email-scammers-with-scambuster/</link>
      <description>A new open-source, AI-driven system called 'ScamBuster' has been developed to combat email scammers. It engages with phishing attackers by adopting victim personas, enabling organizations and law enforcement to collect valuable data on cybercriminal activities.</description>
      <guid isPermaLink="false">https://www.darkreading.com/cyberattacks-data-breaches/turning-tables-email-scammers-scambuster</guid>
      <pubDate>Mon, 13 Jul 2026 13:00:00 +0000</pubDate>
      <source url="https://www.darkreading.com/cyberattacks-data-breaches/turning-tables-email-scammers-scambuster">Dark Reading</source>
    </item>
    <item>
      <title>EPIC, CFA, Fairplay Submit Recommendations Ahead of Potential Rulemaking for Colorado Automated Decision-Making and Chatbot Laws</title>
      <link>https://infosecradar.com/stories/2026/07/13/epic-cfa-fairplay-submit-recommendations-ahead-of-potential-rulemaking-for-color/</link>
      <description>Digital rights organizations EPIC, the Consumer Federation of America, and Fairplay have submitted recommendations to the Colorado Department of Law. These recommendations are in response to the state's request for stakeholder input on upcoming rulemaking for new laws concerning chatbot safety and the use of automated decision-making technology (ADMT) in consequential decisions.</description>
      <guid isPermaLink="false">https://epic.org/epic-cfa-fairplay-submit-recommendations-ahead-of-potential-rulemaking-for-colorado-automated-decision-making-and-chatbot-laws/</guid>
      <pubDate>Mon, 13 Jul 2026 13:32:29 +0000</pubDate>
      <source url="https://epic.org/epic-cfa-fairplay-submit-recommendations-ahead-of-potential-rulemaking-for-colorado-automated-decision-making-and-chatbot-laws/">EPIC</source>
    </item>
    <item>
      <title>The Five-Layer Stack Behind Every Defensible AI System</title>
      <link>https://infosecradar.com/stories/2026/07/13/the-five-layer-stack-behind-every-defensible-ai-system/</link>
      <description>This article introduces the AI Governance Stack, a five-layer operating model designed to ensure security and governance for enterprise AI systems. It spans data, models, system integration, control and monitoring, and audit and evidence, aiming to create a single source of truth for compliance and defensibility.</description>
      <guid isPermaLink="false">https://www.brighttalk.com/webcast/288/672276</guid>
      <pubDate>Mon, 13 Jul 2026 14:00:20 +0000</pubDate>
      <source url="https://www.brighttalk.com/webcast/288/672276">BrightTALK InfoSec</source>
    </item>
    <item>
      <title>Breach at the Beach: Play the Ultimate Entra ID CTF</title>
      <link>https://infosecradar.com/stories/2026/07/13/breach-at-the-beach-play-the-ultimate-entra-id-ctf/</link>
      <description>Varonis has launched a free, hands-on Capture the Flag (CTF) event called 'Breach at the Beach' designed to educate defenders on how attackers exploit Microsoft Entra ID. Participants will learn to investigate these attack techniques through realistic scenarios.</description>
      <guid isPermaLink="false">https://www.bleepingcomputer.com/news/security/breach-at-the-beach-play-the-ultimate-entra-id-ctf/</guid>
      <pubDate>Mon, 13 Jul 2026 14:01:11 +0000</pubDate>
      <source url="https://www.bleepingcomputer.com/news/security/breach-at-the-beach-play-the-ultimate-entra-id-ctf/">Bleeping Computer</source>
    </item>
    <item>
      <title>Hacker Conversations: Jesse McGraw (GhostExodus), From Blackhat Hacker to Redemption</title>
      <link>https://infosecradar.com/stories/2026/07/13/hacker-conversations-jesse-mcgraw-ghostexodus-from-blackhat-hacker-to-redemption/</link>
      <description>Jesse McGraw, formerly known as GhostExodus, details his transition from a blackhat hacker involved in high school hacking and facing prison time to becoming a cybersecurity advocate. The article highlights his personal journey of redemption and his current role in promoting cybersecurity awareness.</description>
      <guid isPermaLink="false">https://www.securityweek.com/hacker-conversations-jesse-mcgraw-ghostexodus-from-blackhat-hacker-to-redemption/</guid>
      <pubDate>Mon, 13 Jul 2026 14:30:00 +0000</pubDate>
      <source url="https://www.securityweek.com/hacker-conversations-jesse-mcgraw-ghostexodus-from-blackhat-hacker-to-redemption/">SecurityWeek</source>
    </item>
    <item>
      <title>Now, defenders are embracing the prompt injection, too</title>
      <link>https://infosecradar.com/stories/2026/07/13/now-defenders-are-embracing-the-prompt-injection-too/</link>
      <description>Defenders are adapting 'prompt injection' techniques, originally a tool for attackers, to a defensive strategy known as 'context bombing.' This method aims to confuse or disable malicious AI agents before they can execute harmful actions.</description>
      <guid isPermaLink="false">https://arstechnica.com/security/2026/07/now-defenders-are-embracing-the-prompt-injection-too/</guid>
      <pubDate>Mon, 13 Jul 2026 15:06:34 +0000</pubDate>
      <source url="https://arstechnica.com/security/2026/07/now-defenders-are-embracing-the-prompt-injection-too/">Ars Technica (Security)</source>
    </item>
    <item>
      <title>EPIC Urges D.C. Council to Strengthen Proposed Government Data Privacy and Protection Act</title>
      <link>https://infosecradar.com/stories/2026/07/13/epic-urges-dc-council-to-strengthen-proposed-government-data-privacy-and-protect/</link>
      <description>EPIC has submitted testimony to the D.C. Council, advocating for stronger provisions in the proposed DC Government Data Privacy and Protection Act of 2026. The organization aims to enhance data privacy and protection measures within the D.C. government.</description>
      <guid isPermaLink="false">https://epic.org/epic-urges-d-c-council-to-strengthen-proposed-government-data-privacy-and-protection-act/</guid>
      <pubDate>Mon, 13 Jul 2026 17:45:09 +0000</pubDate>
      <source url="https://epic.org/epic-urges-d-c-council-to-strengthen-proposed-government-data-privacy-and-protection-act/">EPIC</source>
    </item>
    <item>
      <title>Sophos Protected Browser Extension: Protection and visibility without changing browsers</title>
      <link>https://infosecradar.com/stories/2026/07/14/sophos-protected-browser-extension-protection-and-visibility-without-changing-br/</link>
      <description>Sophos has released a browser extension that adds policy enforcement, data protection, GenAI visibility, and web security controls to existing Chromium-based browsers on Windows and Mac. This extension aims to provide enhanced protection and visibility without requiring users to switch browsers.</description>
      <guid isPermaLink="false">https://www.sophos.com/en-us/blog/sophos-protected-browser-extension</guid>
      <pubDate>Tue, 14 Jul 2026 00:00:00 +0000</pubDate>
      <source url="https://www.sophos.com/en-us/blog/sophos-protected-browser-extension">Sophos News</source>
    </item>
    <item>
      <title>Pentagon Suspends CMMC Phase 2 as It Rethinks Contractor Cybersecurity Rules</title>
      <link>https://infosecradar.com/stories/2026/07/14/pentagon-suspends-cmmc-phase-2-as-it-rethinks-contractor-cybersecurity-rules/</link>
      <description>The Pentagon has temporarily halted Phase 2 of the Cybersecurity Maturity Model Certification (CMMC) program. A new task force has been established to conduct a comprehensive review and reform of the contractor cybersecurity rules.</description>
      <guid isPermaLink="false">https://www.securityweek.com/pentagon-suspends-cmmc-phase-2-as-it-rethinks-contractor-cybersecurity-rules/</guid>
      <pubDate>Tue, 14 Jul 2026 06:37:50 +0000</pubDate>
      <source url="https://www.securityweek.com/pentagon-suspends-cmmc-phase-2-as-it-rethinks-contractor-cybersecurity-rules/">SecurityWeek</source>
    </item>
    <item>
      <title>Valarian Raises $50 Million for Sovereign Infrastructure Control Layer</title>
      <link>https://infosecradar.com/stories/2026/07/14/valarian-raises-50-million-for-sovereign-infrastructure-control-layer/</link>
      <description>UK-based cybersecurity firm Valarian has secured $50 million in funding, bringing its total funding to $70 million. This capital will be used to further develop and deploy its ACRA technology, which focuses on sovereign infrastructure control.</description>
      <guid isPermaLink="false">https://www.securityweek.com/valarian-raises-50-million-for-sovereign-infrastructure-control-layer/</guid>
      <pubDate>Tue, 14 Jul 2026 09:32:15 +0000</pubDate>
      <source url="https://www.securityweek.com/valarian-raises-50-million-for-sovereign-infrastructure-control-layer/">SecurityWeek</source>
    </item>
    <item>
      <title>How Pentera Turns AI Security Workflows into Validation Engines</title>
      <link>https://infosecradar.com/stories/2026/07/14/how-pentera-turns-ai-security-workflows-into-validation-engines/</link>
      <description>Pentera is developing AI security agents that can influence real security decisions by summarizing findings, prioritizing remediation, and recommending next steps. These agents currently leverage fragmented risk signals from various sources like scanners and threat intelligence.</description>
      <guid isPermaLink="false">https://thehackernews.com/2026/07/how-pentera-turns-ai-security-workflows.html</guid>
      <pubDate>Tue, 14 Jul 2026 11:30:00 +0000</pubDate>
      <source url="https://thehackernews.com/2026/07/how-pentera-turns-ai-security-workflows.html">The Hacker News</source>
    </item>
    <item>
      <title>Today’s 220-1202 CompTIA A+ Pop Quiz: Recreating from scratch</title>
      <link>https://infosecradar.com/stories/2026/07/14/todays-220-1202-comptia-a-pop-quiz-recreating-from-scratch/</link>
      <description>Professor Messer has released a new pop quiz for the CompTIA A+ 220-1202 certification, focusing on the topic of 'Recreating from scratch'. This quiz is part of their free IT certification training resources.</description>
      <guid isPermaLink="false">https://www.professormesser.com/free-a-plus-training/220-1202/220-1202-pop-quizzes/recreating-from-scratch/</guid>
      <pubDate>Tue, 14 Jul 2026 12:00:41 +0000</pubDate>
      <source url="https://www.professormesser.com/free-a-plus-training/220-1202/220-1202-pop-quizzes/recreating-from-scratch/">Professor Messer</source>
    </item>
    <item>
      <title>Microsoft Entra ID gets passkeys default authentication starting September</title>
      <link>https://infosecradar.com/stories/2026/07/14/microsoft-entra-id-gets-passkeys-default-authentication-starting-september/</link>
      <description>Microsoft will make passkeys the default authentication method for Microsoft Entra ID starting in September 2026. This shift aims to enhance security by moving away from password-based authentication, which is susceptible to phishing and other credential-based attacks.</description>
      <guid isPermaLink="false">https://www.bleepingcomputer.com/news/microsoft/microsoft-entra-id-gets-passkeys-default-authentication-starting-september/</guid>
      <pubDate>Tue, 14 Jul 2026 12:49:56 +0000</pubDate>
      <source url="https://www.bleepingcomputer.com/news/microsoft/microsoft-entra-id-gets-passkeys-default-authentication-starting-september/">Bleeping Computer</source>
    </item>
    <item>
      <title>You Don't Have to Run an Exploit to Know If You're Vulnerable</title>
      <link>https://infosecradar.com/stories/2026/07/14/you-dont-have-to-run-an-exploit-to-know-if-youre-vulnerable/</link>
      <description>This article discusses the challenge of validating vulnerabilities without running live exploits, which is often impossible due to the lack of public exploits or the critical nature of affected systems. It introduces the concept of TTP chaining, a method to assess exploitability by validating the underlying attack techniques an exploit relies on, thus allowing for security posture validation without direct exploitation.</description>
      <guid isPermaLink="false">https://www.bleepingcomputer.com/news/security/you-dont-have-to-run-an-exploit-to-know-if-youre-vulnerable/</guid>
      <pubDate>Tue, 14 Jul 2026 14:00:10 +0000</pubDate>
      <source url="https://www.bleepingcomputer.com/news/security/you-dont-have-to-run-an-exploit-to-know-if-youre-vulnerable/">Bleeping Computer</source>
    </item>
    <item>
      <title>Today’s N10-009 CompTIA Network+ Pop Quiz: I’ll fix it on the screen</title>
      <link>https://infosecradar.com/stories/2026/07/14/todays-n10-009-comptia-network-pop-quiz-ill-fix-it-on-the-screen/</link>
      <description>This article presents a pop quiz for the CompTIA Network+ N10-009 certification exam, focusing on a specific topic that will be addressed on screen. It appears to be a learning aid for individuals preparing for the certification.</description>
      <guid isPermaLink="false">https://www.professormesser.com/network-plus/n10-009/n10-009-pop-quiz/ill-fix-it-on-the-screen/</guid>
      <pubDate>Tue, 14 Jul 2026 15:00:08 +0000</pubDate>
      <source url="https://www.professormesser.com/network-plus/n10-009/n10-009-pop-quiz/ill-fix-it-on-the-screen/">Professor Messer</source>
    </item>
    <item>
      <title>Upcoming Speaking Engagements</title>
      <link>https://infosecradar.com/stories/2026/07/14/upcoming-speaking-engagements/</link>
      <description>Bruce Schneier has announced a list of his upcoming speaking engagements at various cybersecurity and privacy-focused events. These include the Policy-Relevant Privacy Research Workshop, Boston Leadership Exchange, Cognitive Security Conference, and DEF CON 34. The events are scheduled for July and August 2026 in different locations.</description>
      <guid isPermaLink="false">https://www.schneier.com/blog/archives/2026/07/upcoming-speaking-engagements-58.html</guid>
      <pubDate>Tue, 14 Jul 2026 16:04:49 +0000</pubDate>
      <source url="https://www.schneier.com/blog/archives/2026/07/upcoming-speaking-engagements-58.html">Schneier on Security</source>
    </item>
    <item>
      <title>Windows 11 KB5101650 &amp; KB5099414 cumulative updates released</title>
      <link>https://infosecradar.com/stories/2026/07/14/windows-11-kb5101650-kb5099414-cumulative-updates-released/</link>
      <description>Microsoft has released Windows 11 cumulative updates KB5101650 and KB5099414 for different versions. These updates aim to address security vulnerabilities, resolve bugs, and introduce new features to the operating system.</description>
      <guid isPermaLink="false">https://www.bleepingcomputer.com/news/microsoft/windows-11-kb5101650-and-kb5099414-cumulative-updates-released/</guid>
      <pubDate>Tue, 14 Jul 2026 17:41:16 +0000</pubDate>
      <source url="https://www.bleepingcomputer.com/news/microsoft/windows-11-kb5101650-and-kb5099414-cumulative-updates-released/">Bleeping Computer</source>
    </item>
    <item>
      <title>Manage Vendor Risk in a Few Practical Steps</title>
      <link>https://infosecradar.com/stories/2026/07/14/manage-vendor-risk-in-a-few-practical-steps/</link>
      <description>Managing vendor risk is a complex but achievable task with disciplined governance. Key steps include defining risk tolerance, ensuring visibility into exposure, and maintaining board oversight. Implementing precise governance is crucial for effective third-party risk management.</description>
      <guid isPermaLink="false">https://www.darkreading.com/cyber-risk/manage-vendor-risk-in-a-few-practical-steps</guid>
      <pubDate>Tue, 14 Jul 2026 17:44:55 +0000</pubDate>
      <source url="https://www.darkreading.com/cyber-risk/manage-vendor-risk-in-a-few-practical-steps">Dark Reading</source>
    </item>
    <item>
      <title>Microsoft releases Windows 10 KB5099539 extended security update</title>
      <link>https://infosecradar.com/stories/2026/07/14/microsoft-releases-windows-10-kb5099539-extended-security-update/</link>
      <description>Microsoft has released the Windows 10 KB5099539 extended security update, which includes the July 2026 Patch Tuesday security updates addressing 570 vulnerabilities. This update also contains additional security fixes to enhance the overall security posture of Windows 10 systems.</description>
      <guid isPermaLink="false">https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-windows-10-kb5099539-extended-security-update/</guid>
      <pubDate>Tue, 14 Jul 2026 18:49:28 +0000</pubDate>
      <source url="https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-windows-10-kb5099539-extended-security-update/">Bleeping Computer</source>
    </item>
    <item>
      <title>European Court: Apple Can Not Shirk Off its Interoperability Requirements</title>
      <link>https://infosecradar.com/stories/2026/07/14/european-court-apple-can-not-shirk-off-its-interoperability-requirements/</link>
      <description>The General Court of the European Union has ruled against Apple, upholding its obligations under the Digital Markets Act (DMA) regarding interoperability. This decision ensures greater choice for developers and users in Europe by allowing applications from outside Apple's ecosystem and potentially facilitating research into Apple's operating systems.</description>
      <guid isPermaLink="false">https://www.eff.org/deeplinks/2026/07/european-court-apple-can-not-shirk-its-interoperability-requirements</guid>
      <pubDate>Tue, 14 Jul 2026 21:14:31 +0000</pubDate>
      <source url="https://www.eff.org/deeplinks/2026/07/european-court-apple-can-not-shirk-its-interoperability-requirements">EFF Deeplinks</source>
    </item>
    <item>
      <title>The stack had a good run. Defense systems are the future.</title>
      <link>https://infosecradar.com/stories/2026/07/15/the-stack-had-a-good-run-defense-systems-are-the-future/</link>
      <description>Sophos has launched Sophos Fusion, an AI-native cybersecurity defense system designed to replace traditional security stacks. This new system leverages artificial intelligence to provide comprehensive protection.</description>
      <guid isPermaLink="false">https://www.sophos.com/en-us/blog/sophos-fusion</guid>
      <pubDate>Wed, 15 Jul 2026 00:00:00 +0000</pubDate>
      <source url="https://www.sophos.com/en-us/blog/sophos-fusion">Sophos News</source>
    </item>
    <item>
      <title>Cribl Adds Agentic Detection Engineering &amp;amp; Boosts SecOps With CardinalOps Deal</title>
      <link>https://infosecradar.com/stories/2026/07/15/cribl-adds-agentic-detection-engineering-amp-boosts-secops-with-cardinalops-deal/</link>
      <description>Cribl has acquired CardinalOps, a company specializing in detection engineering. This integration aims to enhance Cribl's platform by enabling customers to map detection rules and security controls to the MITRE ATT&amp;CK framework, thereby identifying coverage gaps and operationalizing threat intelligence for SecOps teams.</description>
      <guid isPermaLink="false">https://www.darkreading.com/cybersecurity-operations/cribl-adds-agentic-detection-engineering-boosts-secops-with-cardinalops-deal</guid>
      <pubDate>Wed, 15 Jul 2026 00:05:31 +0000</pubDate>
      <source url="https://www.darkreading.com/cybersecurity-operations/cribl-adds-agentic-detection-engineering-boosts-secops-with-cardinalops-deal">Dark Reading</source>
    </item>
    <item>
      <title>Recent DShield SIEM Update, (Tue, Jul 14th)</title>
      <link>https://infosecradar.com/stories/2026/07/15/recent-dshield-siem-update-tue-jul-14th/</link>
      <description>The DShield SIEM has received an update, its first since September 2025. This new version incorporates ELK stack version 8.19.15, introducing additional dashboards and new log capabilities.</description>
      <guid isPermaLink="false">https://isc.sans.edu/diary/rss/33156</guid>
      <pubDate>Wed, 15 Jul 2026 01:38:43 +0000</pubDate>
      <source url="https://isc.sans.edu/diary/rss/33156">SANS Internet Storm Center</source>
    </item>
    <item>
      <title>Microsoft is forcing an enterprise transition to passkeys</title>
      <link>https://infosecradar.com/stories/2026/07/15/microsoft-is-forcing-an-enterprise-transition-to-passkeys/</link>
      <description>Microsoft will transition its Entra ID service to use passkeys as the default authentication method starting September 1, 2026, with SMS and voice authentication ending in February 2027. This move aims to bolster security against increasingly sophisticated AI-powered attacks that target traditional credentials.</description>
      <guid isPermaLink="false">https://www.csoonline.com/article/4197086/microsoft-is-forcing-an-enterprise-transition-to-passkeys-2.html</guid>
      <pubDate>Wed, 15 Jul 2026 02:08:45 +0000</pubDate>
      <source url="https://www.csoonline.com/article/4197086/microsoft-is-forcing-an-enterprise-transition-to-passkeys-2.html">CSO Online</source>
    </item>
    <item>
      <title>7 skills and traits of elite security engineers</title>
      <link>https://infosecradar.com/stories/2026/07/15/7-skills-and-traits-of-elite-security-engineers/</link>
      <description>The article outlines seven key skills and traits that define elite security engineers, emphasizing the growing importance of AI in both defense and attack landscapes. It highlights the need for engineers to understand and leverage AI-powered tools for predictive threat detection, as well as to comprehend the emerging threats posed by AI.</description>
      <guid isPermaLink="false">https://www.csoonline.com/article/4196428/7-skills-and-traits-of-elite-security-engineers.html</guid>
      <pubDate>Wed, 15 Jul 2026 07:00:00 +0000</pubDate>
      <source url="https://www.csoonline.com/article/4196428/7-skills-and-traits-of-elite-security-engineers.html">CSO Online</source>
    </item>
    <item>
      <title>White House Launches AI-Driven ‘Gold Eagle’ Vulnerability Coordination Initiative</title>
      <link>https://infosecradar.com/stories/2026/07/15/white-house-launches-ai-driven-gold-eagle-vulnerability-coordination-initiative/</link>
      <description>The White House has launched the 'Gold Eagle' initiative, an AI-driven program focused on coordinating vulnerability management. This initiative is a direct result of an AI-focused Executive Order signed by President Trump on June 2nd.</description>
      <guid isPermaLink="false">https://www.securityweek.com/white-house-launches-ai-driven-gold-eagle-vulnerability-coordination-initiative/</guid>
      <pubDate>Wed, 15 Jul 2026 10:18:25 +0000</pubDate>
      <source url="https://www.securityweek.com/white-house-launches-ai-driven-gold-eagle-vulnerability-coordination-initiative/">SecurityWeek</source>
    </item>
    <item>
      <title>New Webinar: Closing the Approval Gap in AI-Era Ad Tech</title>
      <link>https://infosecradar.com/stories/2026/07/15/new-webinar-closing-the-approval-gap-in-ai-era-ad-tech/</link>
      <description>This article announces an on-demand webinar that addresses the security risks associated with marketing tags in ad tech. It explains how a single approved tag can introduce unseen fourth-party code, potentially granting access to sensitive customer data and checkout pages.</description>
      <guid isPermaLink="false">https://thehackernews.com/2026/07/new-webinar-closing-approval-gap-in-ai.html</guid>
      <pubDate>Wed, 15 Jul 2026 11:06:57 +0000</pubDate>
      <source url="https://thehackernews.com/2026/07/new-webinar-closing-approval-gap-in-ai.html">The Hacker News</source>
    </item>
    <item>
      <title>Establishing a Coordinated Vulnerability Disclosure Program to Work With Security Researchers</title>
      <link>https://infosecradar.com/stories/2026/07/15/establishing-a-coordinated-vulnerability-disclosure-program-to-work-with-securit/</link>
      <description>CISA, NSA, and international partners have released guidance on establishing Coordinated Vulnerability Disclosure (CVD) programs. The guidance offers best practices for software manufacturers and online service providers to work with security researchers, including clear policies for reporting, triaging, and remediating vulnerabilities. It also suggests using third-party intermediaries to support these programs.</description>
      <guid isPermaLink="false">https://www.cisa.gov/resources-tools/resources/establishing-coordinated-vulnerability-disclosure-program-work-security-researchers</guid>
      <pubDate>Wed, 15 Jul 2026 12:00:00 +0000</pubDate>
      <source url="https://www.cisa.gov/resources-tools/resources/establishing-coordinated-vulnerability-disclosure-program-work-security-researchers">CISA Alerts</source>
    </item>
    <item>
      <title>Today’s 220-1201 CompTIA A+ Pop Quiz: Clap on</title>
      <link>https://infosecradar.com/stories/2026/07/15/todays-220-1201-comptia-a-pop-quiz-clap-on/</link>
      <description>Professor Messer is offering a free CompTIA A+ 220-1201 pop quiz focusing on the 'Clap On' topic. This quiz is part of his ongoing free training resources for IT certification.</description>
      <guid isPermaLink="false">https://www.professormesser.com/free-a-plus-training/220-1201/220-1201-pop-quizzes/clap-on/</guid>
      <pubDate>Wed, 15 Jul 2026 12:00:42 +0000</pubDate>
      <source url="https://www.professormesser.com/free-a-plus-training/220-1201/220-1201-pop-quizzes/clap-on/">Professor Messer</source>
    </item>
    <item>
      <title>White House launches AI-driven vulnerability clearinghouse to speed cyber remediation</title>
      <link>https://infosecradar.com/stories/2026/07/15/white-house-launches-ai-driven-vulnerability-clearinghouse-to-speed-cyber-remedi/</link>
      <description>The White House has launched the Gold Eagle initiative, an AI-driven vulnerability clearinghouse designed to accelerate the identification, prioritization, and remediation of software vulnerabilities for government agencies and critical infrastructure operators. This program aims to coordinate vulnerability reporting and remediation efforts across federal agencies, open-source communities, and the private sector, leveraging advanced AI capabilities.</description>
      <guid isPermaLink="false">https://www.csoonline.com/article/4197348/white-house-launches-ai-driven-vulnerability-clearinghouse-to-speed-cyber-remediation.html</guid>
      <pubDate>Wed, 15 Jul 2026 12:43:59 +0000</pubDate>
      <source url="https://www.csoonline.com/article/4197348/white-house-launches-ai-driven-vulnerability-clearinghouse-to-speed-cyber-remediation.html">CSO Online</source>
    </item>
    <item>
      <title>Virtual Event Today: Cloud &amp; Data Security Summit</title>
      <link>https://infosecradar.com/stories/2026/07/15/virtual-event-today-cloud-data-security-summit/</link>
      <description>A virtual Cloud &amp; Data Security Summit is taking place today, offering attendees the chance to interact with solution providers and peers. The event focuses on the challenges of securing various cloud deployments.</description>
      <guid isPermaLink="false">https://www.securityweek.com/virtual-event-today-cloud-data-security-summit/</guid>
      <pubDate>Wed, 15 Jul 2026 12:52:10 +0000</pubDate>
      <source url="https://www.securityweek.com/virtual-event-today-cloud-data-security-summit/">SecurityWeek</source>
    </item>
    <item>
      <title>KAPE 101: A Kroll Artifact Parser and Extractor Cheatsheet</title>
      <link>https://infosecradar.com/stories/2026/07/15/kape-101-a-kroll-artifact-parser-and-extractor-cheatsheet/</link>
      <description>This article provides a cheatsheet for KAPE (Kroll Artifact Parser and Extractor), a tool used for efficiently locating, extracting, and parsing Windows forensic artifacts. These artifacts can be crucial for identifying adversary activity within the operating system.</description>
      <guid isPermaLink="false">https://www.blackhillsinfosec.com/kape-cheatsheet/</guid>
      <pubDate>Wed, 15 Jul 2026 14:00:00 +0000</pubDate>
      <source url="https://www.blackhillsinfosec.com/kape-cheatsheet/">Black Hills Information Security</source>
    </item>
    <item>
      <title>Guten Tag, Bonjour, Hola to Our European Cyber Defenders!</title>
      <link>https://infosecradar.com/stories/2026/07/15/guten-tag-bonjour-hola-to-our-european-cyber-defenders/</link>
      <description>Dark Reading has launched a new 'DR Global' section to provide region-specific cybersecurity intelligence outside of North America. This expansion aims to offer tailored insights for European cyber defenders, acknowledging the diverse threat landscape and unique challenges faced globally.</description>
      <guid isPermaLink="false">https://www.darkreading.com/threat-intelligence/guten-tag-bonjour-hola-european-cyber-defenders</guid>
      <pubDate>Wed, 15 Jul 2026 18:08:56 +0000</pubDate>
      <source url="https://www.darkreading.com/threat-intelligence/guten-tag-bonjour-hola-european-cyber-defenders">Dark Reading</source>
    </item>
    <item>
      <title>OpenAI’s GPT-Red Automates Prompt Injection Testing to Harden GPT-5.6 Sol</title>
      <link>https://infosecradar.com/stories/2026/07/16/openais-gpt-red-automates-prompt-injection-testing-to-harden-gpt-56-sol/</link>
      <description>OpenAI has developed an internal automated red-teaming model called GPT-Red to identify and fix prompt injection vulnerabilities in their AI models. This model has proven effective in finding weaknesses, prompting OpenAI to use it for adversarial training to improve the security of their AI systems.</description>
      <guid isPermaLink="false">https://thehackernews.com/2026/07/openais-gpt-red-automates-prompt.html</guid>
      <pubDate>Thu, 16 Jul 2026 08:42:31 +0000</pubDate>
      <source url="https://thehackernews.com/2026/07/openais-gpt-red-automates-prompt.html">The Hacker News</source>
    </item>
    <item>
      <title>AI Can Find Bugs, But Human Knowledge Still Proves Them</title>
      <link>https://infosecradar.com/stories/2026/07/16/ai-can-find-bugs-but-human-knowledge-still-proves-them/</link>
      <description>AI tools are significantly enhancing offensive security by rapidly analyzing code, generating payloads, and automating testing. However, human expertise remains crucial for validating AI-generated findings and ensuring their practical applicability in security.</description>
      <guid isPermaLink="false">https://thehackernews.com/2026/07/ai-can-find-bugs-but-human-knowledge.html</guid>
      <pubDate>Thu, 16 Jul 2026 10:10:00 +0000</pubDate>
      <source url="https://thehackernews.com/2026/07/ai-can-find-bugs-but-human-knowledge.html">The Hacker News</source>
    </item>
    <item>
      <title>CISA urges software vendors to formalize vulnerability disclosure programs</title>
      <link>https://infosecradar.com/stories/2026/07/16/cisa-urges-software-vendors-to-formalize-vulnerability-disclosure-programs/</link>
      <description>CISA, alongside international cybersecurity agencies, has released guidance urging software vendors and online service providers to establish formal Coordinated Vulnerability Disclosure (CVD) programs. These programs aim to improve vulnerability management and product security by structuring how organizations receive, assess, and respond to reports from security researchers.</description>
      <guid isPermaLink="false">https://www.csoonline.com/article/4197733/cisa-urges-software-vendors-to-formalize-vulnerability-disclosure-programs.html</guid>
      <pubDate>Thu, 16 Jul 2026 10:48:58 +0000</pubDate>
      <source url="https://www.csoonline.com/article/4197733/cisa-urges-software-vendors-to-formalize-vulnerability-disclosure-programs.html">CSO Online</source>
    </item>
    <item>
      <title>Oak Emerges From Stealth Mode With $60 Million in Funding</title>
      <link>https://infosecradar.com/stories/2026/07/16/oak-emerges-from-stealth-mode-with-60-million-in-funding/</link>
      <description>Cybersecurity startup Oak has announced it has emerged from stealth mode after securing $60 million in funding. The company has developed an AI-powered Identity Operating System designed to manage all identities within an organization's environment.</description>
      <guid isPermaLink="false">https://www.securityweek.com/oak-emerges-from-stealth-mode-with-60-million-in-funding/</guid>
      <pubDate>Thu, 16 Jul 2026 11:23:56 +0000</pubDate>
      <source url="https://www.securityweek.com/oak-emerges-from-stealth-mode-with-60-million-in-funding/">SecurityWeek</source>
    </item>
    <item>
      <title>Today’s 220-1202 CompTIA A+ Pop Quiz: The map is not working</title>
      <link>https://infosecradar.com/stories/2026/07/16/todays-220-1202-comptia-a-pop-quiz-the-map-is-not-working/</link>
      <description>This article presents a pop quiz for the CompTIA A+ certification, specifically focusing on the 220-1202 exam objectives. The quiz is designed to test a candidate's knowledge on a particular topic, presented as a challenge to ensure understanding.</description>
      <guid isPermaLink="false">https://www.professormesser.com/free-a-plus-training/220-1202/220-1202-pop-quizzes/the-map-is-not-working/</guid>
      <pubDate>Thu, 16 Jul 2026 12:00:00 +0000</pubDate>
      <source url="https://www.professormesser.com/free-a-plus-training/220-1202/220-1202-pop-quizzes/the-map-is-not-working/">Professor Messer</source>
    </item>
    <item>
      <title>Protecting Privacy in an AI Era</title>
      <link>https://infosecradar.com/stories/2026/07/16/protecting-privacy-in-an-ai-era/</link>
      <description>Daniel Solove argues that individual control over personal data is insufficient for regulating privacy in the AI era. He proposes holding companies accountable through measures like data minimization, fiduciary duties, and liability for harmful technological design and algorithms.</description>
      <guid isPermaLink="false">https://www.schneier.com/blog/archives/2026/07/protecting-privacy-in-an-ai-era.html</guid>
      <pubDate>Thu, 16 Jul 2026 14:34:31 +0000</pubDate>
      <source url="https://www.schneier.com/blog/archives/2026/07/protecting-privacy-in-an-ai-era.html">Schneier on Security</source>
    </item>
    <item>
      <title>Today’s SY0-701 CompTIA Security+ Pop Quiz: I’m very familiar</title>
      <link>https://infosecradar.com/stories/2026/07/16/todays-sy0-701-comptia-security-pop-quiz-im-very-familiar/</link>
      <description>Professor Messer is offering a pop quiz focused on the SY0-701 CompTIA Security+ certification exam. This quiz aims to help individuals test their knowledge and familiarity with the exam's objectives. It's presented as a learning tool for those preparing for the certification.</description>
      <guid isPermaLink="false">https://www.professormesser.com/security-plus/sy0-701/sy0-701-pop-quiz/im-very-familiar/</guid>
      <pubDate>Thu, 16 Jul 2026 15:00:14 +0000</pubDate>
      <source url="https://www.professormesser.com/security-plus/sy0-701/sy0-701-pop-quiz/im-very-familiar/">Professor Messer</source>
    </item>
    <item>
      <title>South Korea making its own security-centric AI model</title>
      <link>https://infosecradar.com/stories/2026/07/17/south-korea-making-its-own-security-centric-ai-model/</link>
      <description>South Korea is developing its own security-focused artificial intelligence model, adapting a local large language model project for security and sovereignty. The initiative aims to create an AI that can compete with advanced models like Mythos.</description>
      <guid isPermaLink="false">https://www.theregister.com/ai-and-ml/2026/07/17/south-korea-making-its-own-security-centric-ai-model/5274034</guid>
      <pubDate>Fri, 17 Jul 2026 01:56:40 +0000</pubDate>
      <source url="https://www.theregister.com/ai-and-ml/2026/07/17/south-korea-making-its-own-security-centric-ai-model/5274034">The Register (Security)</source>
    </item>
    <item>
      <title>Risk Ledger Raises $32 Million in Series B Funding</title>
      <link>https://infosecradar.com/stories/2026/07/17/risk-ledger-raises-32-million-in-series-b-funding/</link>
      <description>Risk Ledger, a British company, has successfully raised $32 million in Series B funding. The company's platform focuses on assisting organizations in managing and mitigating supply chain security risks.</description>
      <guid isPermaLink="false">https://www.securityweek.com/risk-ledger-raises-32-million-in-series-b-funding/</guid>
      <pubDate>Fri, 17 Jul 2026 08:31:00 +0000</pubDate>
      <source url="https://www.securityweek.com/risk-ledger-raises-32-million-in-series-b-funding/">SecurityWeek</source>
    </item>
    <item>
      <title>Details of Alan Turing’s Voice Encryption System</title>
      <link>https://infosecradar.com/stories/2026/07/17/details-of-alan-turings-voice-encryption-system/</link>
      <description>A recent auction revealed a cache of papers detailing Alan Turing's "Delilah" project, a portable voice encryption system developed during World War II. These papers, handwritten by Turing and annotated by his colleague Donald Bayley, shed light on his work in cryptographic history.</description>
      <guid isPermaLink="false">https://www.schneier.com/blog/archives/2026/07/details-of-alan-turings-voice-encryption-system.html</guid>
      <pubDate>Fri, 17 Jul 2026 11:02:21 +0000</pubDate>
      <source url="https://www.schneier.com/blog/archives/2026/07/details-of-alan-turings-voice-encryption-system.html">Schneier on Security</source>
    </item>
    <item>
      <title>Industry Reactions to Pentagon Suspending CMMC Phase 2: Feedback Friday</title>
      <link>https://infosecradar.com/stories/2026/07/17/industry-reactions-to-pentagon-suspending-cmmc-phase-2-feedback-friday/</link>
      <description>The Pentagon's suspension of CMMC Phase 2 audits has been met with broad agreement from industry professionals that the legal obligation to protect CUI remains. While audits are paused, companies must still adhere to the underlying security requirements.</description>
      <guid isPermaLink="false">https://www.securityweek.com/industry-reactions-to-pentagon-suspending-cmmc-phase-2-feedback-friday/</guid>
      <pubDate>Fri, 17 Jul 2026 11:08:04 +0000</pubDate>
      <source url="https://www.securityweek.com/industry-reactions-to-pentagon-suspending-cmmc-phase-2-feedback-friday/">SecurityWeek</source>
    </item>
    <item>
      <title>Beacon Security Raises $13 Million for Security Data Platform</title>
      <link>https://infosecradar.com/stories/2026/07/17/beacon-security-raises-13-million-for-security-data-platform/</link>
      <description>Beacon Security, a startup focused on security data platforms, has successfully raised $13 million in funding. Their platform is designed to help organizations detect, hunt, and protect their assets at machine speed across various environments.</description>
      <guid isPermaLink="false">https://www.securityweek.com/beacon-security-raises-13-million-for-security-data-platform/</guid>
      <pubDate>Fri, 17 Jul 2026 11:43:36 +0000</pubDate>
      <source url="https://www.securityweek.com/beacon-security-raises-13-million-for-security-data-platform/">SecurityWeek</source>
    </item>
    <item>
      <title>Google Bets 'Agentic Defense' Strategy Can Outpace Attackers</title>
      <link>https://infosecradar.com/stories/2026/07/17/google-bets-agentic-defense-strategy-can-outpace-attackers/</link>
      <description>Google Cloud is implementing an "agentic defense" strategy, integrating capabilities from Wiz into its platform to automate threat detection and response. This approach aims to proactively counter AI-driven cyberattacks.</description>
      <guid isPermaLink="false">https://www.darkreading.com/cloud-security/google-bets-agentic-defense-strategy-outpace-attackers</guid>
      <pubDate>Fri, 17 Jul 2026 11:50:25 +0000</pubDate>
      <source url="https://www.darkreading.com/cloud-security/google-bets-agentic-defense-strategy-outpace-attackers">Dark Reading</source>
    </item>
    <item>
      <title>Gold Eagle Clearinghouse Targets Security Gap, But How Is Unclear</title>
      <link>https://infosecradar.com/stories/2026/07/17/gold-eagle-clearinghouse-targets-security-gap-but-how-is-unclear/</link>
      <description>The White House has launched the Gold Eagle Clearinghouse initiative to improve the coordination of vulnerability responses within the rapidly evolving AI landscape. However, significant questions remain regarding the specific implementation details and operational effectiveness of this new program.</description>
      <guid isPermaLink="false">https://www.darkreading.com/vulnerabilities-threats/gold-eagle-clearinghouse-targets-security-gap</guid>
      <pubDate>Fri, 17 Jul 2026 13:00:00 +0000</pubDate>
      <source url="https://www.darkreading.com/vulnerabilities-threats/gold-eagle-clearinghouse-targets-security-gap">Dark Reading</source>
    </item>
  </channel>
</rss>
