News for today:
- [IRONSCALES] Early access to Anthropic’s Cyber Verification Program. IRONSCALES is the first email security vendor to receive formal verification to join Anthropic’s Cyber Verification Program. The verification gives IRONSCALES access to frontier AI capabilities for defense. Anthropic’s CVP is a credentialing pathway that grants verified security organizations access to advanced AI capabilities specifically designated for offensive cybersecurity operations. As frontier AI models introduce tighter safeguards to prevent misuse, Anthropic’s CVP ensures that legitimate defenders retain the ability to run adversarial simulations, generate real attack scenarios, and stress-test their own defenses at the same, or even higher, level of sophistication that real-world attackers deploy. IRONSCALES
- [Arctic Wolf] Next era of exposure management. Arctic Wolf announced Aurora Exposure Management, for identifying, prioritising, and reducing cyber risk via a more proactive cyber approach. It combines two previously separate solutions – covering vulnerability management and attack surface management. Aurora Exposure Management helps smaller and mid‑sized organizations establish a proactive security foundation with end‑to‑end vulnerability management. It also enables more mature enterprises to expand beyond vulnerability management by layering in full attack surface visibility and business risk context to make better security decisions — putting them on a path toward continuous threat exposure management and measurable risk reduction. Arctic Wolf
- [Veeam] AI scaling without evidence. Veeam released a maturity model on data and AI trust, showing that confidence around AI readiness at organizations is higher than the ability to govern and control AI expansion. The model evaluates AI maturity across 12 dimensions and maps progress across five stages, from ad hoc to leading. It enables organizations to identify where controls exist, where they break down under real‑world conditions, and what must be prioritized to strengthen trust, governance, and resilience. Data from 300 senior business and technology leaders forms a quantitative basis for the research. Veeam
- [Semperis] AI agent deployment outstripping identity guardrails. New research from Semperis shows that AI agents are gaining access to critical systems faster than organizations are protecting their systems and identities. A concerning revelation from the study is that AI is being placed close to sensitive identity infrastructure—and too few organizations are prepared for the potential consequences. More than a quarter of surveyed organizations (29%) already use AI agents to manage securityrelated help desk tickets including password resets and VPN access. Another 65% intend to do so within the next year. In parallel, 92% of respondents say that some percent of their workforce has AI installed on local machines where it can access SSH and encryption keys. Semperis
- [Absolute Security] 58% would pay to end ransomware. New research from Absolute Security found that 58% of CISOs would pay to end a ransomware attack, with avoiding operational downtime a significant factor. Ransomware continues to top CISOs’ ledgers as one of the most menacing threats they face, with their endpoint device infrastructures significantly vulnerable. Over the past 12-18 months, 57 percent reported their enterprises experienced an attack that originated on a remote, mobile, or hybrid device, with 58% in agreement that an incident left endpoints inoperable. Neither finding was unpredictable, when considering that additional telemetry-based research from millions of PCs revealed critical endpoint security controls fail to operate 20 percent of the time. Absolute Security