Netskope(NTSK)

We’re fast approaching the midway point in 2026, and AI security (and more specifically AI Guardrails) are top of the agenda for a lot of enterprise security leaders as their end users adopt the AI app du jour. It is becoming clear, however, that for many, native AI applications are not the scariest AI use […]

The npm packages @tanstack/history (1.161.9, 1.161.12) and more than 50 other packages across the @tanstack, @mistralai, @uipath, @squawk, and safe-action namespaces have been compromised and use a classic drop-and-execute attack pattern to run an infostealer that harvests GitHub credentials and cloud secrets. The attack patterns are similar to past Shai-Hulud compromises and the recent [email protected] […]

It is a scenario playing out in security operations centers everywhere. A team establishes acceptable use policies for an artificial intelligence web application, only to realize that the same AI model is now being accessed via a command-line interface (CLI), embedded in a third-party integration, or running autonomously as an agent. The tentacles of AI […]

Summary DirtyFrag is a Linux local privilege escalation disclosed on May 7, 2026, exploiting two kernel page-cache write vulnerabilities–CVE-2026-43284 (xfrm-ESP, patched in mainline only) and CVE-2026-43500 (RxRPC, no patch merged into any kernel tree as of disclosure)–that affect every major Linux distribution: Ubuntu, RHEL, Fedora, CentOS Stream, AlmaLinux, and openSUSE. Both bugs belong to the […]

It is a familiar story across enterprises today. A business unit started piloting a new artificial intelligence tool in January, but come May the project is still stuck in a security review. The CFO is asking for results, but the broader rollout is blocked. The security team has valid questions about data retention and model […]

Netskope Threat Labs has found a fake OpenClaw installer delivering red-team-grade capabilities—all pointed at stealing credentials from over 250 crypto wallet and password manager extensions. The dropper’s manifest doesn’t hide the intent: “Hologram – Decoy entity generator for tactical misdirection.” Summary Hologram is dropper-delivered via a fake OpenClaw installer, undetected by automated sandboxes. The operator […]

Security and network operations teams are reaching a breaking point, with operational demands consistently outpacing human capacity. Environments (and the policies that govern them) are becoming more complex, and more threats mean more alerts. The scale of the issue is significant: A staggering 40% of security alerts go entirely uninvestigated due to lack of capacity, […]

Netskope One AgentSkope is an intelligent operational layer of the Netskope One platform, forming the architectural foundation that allows organizations to easily deploy Netskope AI agents. In today’s companion blog, I discussed AgentSkope generally, and focused on the security operations agents that had launched today. To catch you up: Netskope One AgentSkope provides a shared […]

Summary The Intercom TypeScript Library [email protected] (published at 2026-04-30 at 14:41:04.098Z) has been compromised and uses a classic drop-and-execute attack pattern to run an infostealer that harvests GitHub Credentials. The attack patterns are similar to past Shai-Hulud compromises, which behave like a worm, automatically leveraging stolen credentials to infect additional npm packages. This worm behavior, […]

As the digital landscape shifts, the need for clear, actionable, and expert-driven information has never been greater. That is why we are thrilled to announce the launch of our brand-new content hub: The Lens.

Enterprises no longer need to be convinced that 5G is real. The debate is over. The harder question now is practical: How do you actually operationalize 5G across distributed enterprise branches— and make it work as a true WAN, rather than just as a contingency link that sits idle until your primary fails? For years, […]