Forward-looking threat analysis suggests cybercrime is shifting beyond traditional ransomware toward AI-assisted automation, fraud convergence, and abuse of cloud and API ecosystems.

Projected trends include agent-driven extortion, session hijacking at scale, and increased reliance on impersonation and trust exploitation. Defensive strategies are evolving in parallel, with greater emphasis on SOC-fraud convergence, real-time intelligence sharing, and explainable AI.

Interested in practitioner perspectives on what defensive capability gaps remain.

Follow TechNadu for practical, unbiased cybersecurity analysis.

#InfoSec #CyberThreats #AIinSecurity #FraudIntelligence #SOC #ThreatForecasting

Forward-looking threat analysis suggests cybercrime is shifting beyond traditional ransomware toward AI-assisted automation, fraud convergence, and abuse of cloud and API ecosystems.

Projected trends include agent-driven extortion, session hijacking at scale, and increased reliance on impersonation and trust exploitation. Defensive strategies are evolving in parallel, with greater emphasis on SOC-fraud convergence, real-time intelligence sharing, and explainable AI.

Interested in practitioner perspectives on what defensive capability gaps remain.
Follow TechNadu for practical, unbiased cybersecurity analysis.

Source: https://www.linkedin.com/pulse/whats-coming-after-ransomware-look-cybercrime-2026-group-ib-049xc/?trackingId=XGsQWaksyQuZeTVhCoTGSg%3D%3D

#InfoSec #CyberThreats #AIinSecurity #FraudIntelligence #SOC #ThreatForecasting

Check out ˗ˏˋ ⭒ https://lnkd.in/gE2wUqgc ⭒ ˎˊ˗ to see my intro whilst you listen.

I'm thus re-naming this work as "CVE Keeper - Security at x+1; rethinking vulnerability management beyond CVSS & scanners". I must also thank @andrewpollock for reviewing several of my verbose drafts. 🫡

So, Security at x+1; rethinking vulnerability management beyond CVSS & scanners -

Most vulnerability tooling today is optimized for disclosure and alert volume, not for making correct decisions on real systems. CVEs arrive faster than teams can evaluate them, scores are generic, context arrives late, and we still struggle to answer the only question that matters: does this actually put my system at risk right now?

Over the last few years working close to CVE lifecycle automation, I’ve been designing an open architecture that treats vulnerability management as a continuous, system-specific reasoning problem rather than a static scoring task. The goal is to assess impact on the same day for 0-days using minimal upstream data, refine accuracy over time as context improves, reason across dependencies and compound vulnerabilities, and couple automation with explicit human verification instead of replacing it.

This work explores:

⤇ 1• Same-day triage of newly disclosed and 0-day vulnerabilities
⤇ 2• Dependency-aware and compound vulnerability impact assessment
⤇ 3• Correlating classical CVSS with AI-specific threat vectors
⤇ 4• Reducing operational noise, unnecessary reboots, and security burnout
⤇ 5• Making high-quality vulnerability intelligence accessible beyond enterprise teams

The core belief is simple: most security failures come from misjudged impact, not missed vulnerabilities. Accuracy, context, and accountability matter more than volume.

I’m sharing this to invite feedback from folks working in CVE, OSV, vulnerability disclosure, AI security, infra, and systems research. Disagreement and critique are welcome. This problem affects everyone, and I don’t think incremental tooling alone will solve it.

P.S.

• Super appreciate everyone that's spent time reviewing my drafts and reading all my essays lol. I owe you 🫶🏻
• ... and GoogleLM. These slides would have taken me forever to make otherwise.

Take my CVE-data User Survey to allow me to tailor your needs into my design - lnkd.in/gcyvnZeE
See more at - lnkd.in/gGWQfBW5
lnkd.in/gE2wUqgc

#VulnerabilityManagement #Risk #ThreatModeling #CVE #CyberSecurity #Infosec #VulnerabilityManagement #ThreatIntelligence #ApplicationSecurity #SecurityOperations #ZeroDay #RiskManagement #DevSecOps #CVE #CVEAnalysis #VulnerabilityDisclosure #SecurityData #CVSS #VulnerabilityAssessment #PatchManagement #AI #AIML #AISecurity #MachineLearning #AIThreats #AIinSecurity #SecureAI #OSS #Rust #ZeroTrust #Security

https://www.linkedin.com/feed/update/urn:li:activity:7409399623087370240

OpenAI has released GPT-5.2-Codex, positioning it as a more capable agentic coding system for long-horizon engineering and defensive cybersecurity workflows.

The company reports improvements in vulnerability research support, terminal-based task execution, and large-scale code reasoning, while also emphasizing controlled access and safeguards due to dual-use implications.

As AI becomes more embedded in security tooling, the focus increasingly shifts to governance, validation, and responsible deployment.

Source: https://openai.com/index/introducing-gpt-5-2-codex/

How do you see agentic AI fitting into real-world security operations?

Share your insights and follow TechNadu for grounded InfoSec coverage.

#InfoSec #CyberDefense #AIinSecurity #SecureCoding #ThreatResearch #ResponsibleDisclosure #TechNadu

Microsoft’s upcoming 2026 security features highlight a shift many organizations are already experiencing: collaboration platforms and identity workflows are now prime attack paths.

From Teams-based impersonation to AI-driven data exposure, these updates address behaviors attackers are actively abusing — often without malware or zero-days. Security leaders should treat this roadmap as a planning signal, not a future wish list.

Read our blog for a full breakdown: https://www.lmgsecurity.com/5-new-ish-microsoft-security-features-what-they-reveal-about-todays-threats/

#Microsoft365 #CollaborationTools #IdentityAndAccess #AIinSecurity #CISO #SecurityOperations #ThreatDetection #CyberDefense

November’s @THOR_Collective Dispatch Debrief is live with SCADA weirdness, Taylor’s Version SOC vibes, and purple team chaos.

Come thrunt with us.

https://dispatch.thorcollective.com/p/dispatch-debrief-november-2025

#threathunting #cybersecurity #thrunting #soc #blueteam #detectionengineering #incidentresponse #cyberdefense #aiinsecurity #agenticai #scada #otsecurity #purpleteam #grc #peakframework #THORcollective #dispatchdebrief

AI-driven fraud is hitting holiday shoppers at machine speed. In today’s Cyberside Chats episode, Sherri Davidoff and Matt Durrin unpack what that looks like in the real world. They discuss how phishing kits, prebuilt configs, and bot-driven takeovers are giving attackers a near-instant launchpad for credential abuse.

This breakdown shows how quickly these tools scale—and why teams need to shore up people, passwords, and payments before the rush.

Listen here: https://www.chatcyberside.com/e/holiday-hack-alert-ai-bots-phishing-and-the-gift-card-scam-surge/

Watch the video: https://youtu.be/TpMD5v5JUNc

Or find Cyberside Chats wherever you get your podcasts.

#CyberDefense #SecurityAwareness #OnlineFraud #DigitalRisk #ThreatResearch #AIinSecurity #Malvertising #HolidayThreats