惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

酷 壳 – CoolShell
酷 壳 – CoolShell
GbyAI
GbyAI
SecWiki News
SecWiki News
Project Zero
Project Zero
C
Cisco Blogs
Simon Willison's Weblog
Simon Willison's Weblog
P
Privacy International News Feed
D
Darknet – Hacking Tools, Hacker News & Cyber Security
Scott Helme
Scott Helme
A
Arctic Wolf
Security Latest
Security Latest
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
P
Privacy & Cybersecurity Law Blog
Apple Machine Learning Research
Apple Machine Learning Research
T
Tailwind CSS Blog
The Hacker News
The Hacker News
T
Tenable Blog
雷峰网
雷峰网
有赞技术团队
有赞技术团队
V
V2EX
C
CXSECURITY Database RSS Feed - CXSecurity.com
T
Threat Research - Cisco Blogs
T
Threatpost
AWS News Blog
AWS News Blog
L
LINUX DO - 热门话题
Application and Cybersecurity Blog
Application and Cybersecurity Blog
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO
S
SegmentFault 最新的问题
月光博客
月光博客
Spread Privacy
Spread Privacy
S
Secure Thoughts
宝玉的分享
宝玉的分享
博客园 - 三生石上(FineUI控件)
Forbes - Security
Forbes - Security
T
The Exploit Database - CXSecurity.com
G
GRAHAM CLULEY
The Last Watchdog
The Last Watchdog
Y
Y Combinator Blog
I
Intezer
博客园 - 【当耐特】
B
Blog RSS Feed
Attack and Defense Labs
Attack and Defense Labs
I
InfoQ
博客园 - 叶小钗
Cyberwarzone
Cyberwarzone
V2EX - 技术
V2EX - 技术
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
Hugging Face - Blog
Hugging Face - Blog
H
Help Net Security
C
CERT Recently Published Vulnerability Notes

Heimdal Security Blog

Top 6 Managed Detection and Response Providers Cyber-Aware Customers Are Raising the Bar for MSPs and Other Vendors Cyber-Aware Customers Are Raising the Bar for MSPs and Other Vendors How to scale your patches without scaling your team (the patch wave) AI didn't break patching. It showed us patching was already broken. Heimdal Launches MSP Onboarding Wizard to Help Partners Onboard Microsoft CSP Customers in 2 Minutes How Dynamic Defense shuts an attacker out without shutting down the business Static security has run out of road. The case for Dynamic Defense Breaking the MSP Echo Chamber: The Power of Community How attackers built a RAT on a Windows machine using its own .NET compiler Attacker enables RDP, creates admin, erases evidence in ten seconds Heimdal Survey: Executives Four Times More Confident About AI Risk Than the Teams Managing It Your Next Insider Threat May Be an AI Coworker Heimdal® Marks Six Years of Consecutive ISAE 3000 SOC 2 Type II Certification The State of AI Risk Management in 2026 AI Will Absorb 99.98% of SOC Triage Within a Year, as 79% of IT teams brace for AI-driven workload shift Top 10 Cybersecurity Companies in Europe Heimdal Expands AI Strategy with AI Wingman and Third-Party AI Containment You Only Know What You’ve Got When Its Gone Nordic MSPs Can Now Access Heimdal’s Unified Security and Compliance Platform Through Elovade OpenClaw Incidents Show Why AI Adoption Pressure Puts Companies at Risk Heimdal Claims Industry First With a Cyber Essentials Control Mapping for PEDM to Help Organisations Prove Least Privilege Five Predictions for Cyber Security Trends in 2026 Heimdal Achieves OPSWAT Gold Certification for Anti-Malware How to Avoid Holiday Shopping Scams (From a Former Cyber Detective) ITDR Best Practices: How to Detect, Prevent, and Contain Critical Identity Threats When Buyers Discount MSPs With One Big Customer You’re Not Technical? That Excuse Just Expired! Tool Sprawl Taxes Your Business More Than You Think Heimdal 5.1.0 RC Dashboard: Smarter Automation, Stronger Compliance, and Smoother Control Can Generative AI Be Weaponized for Cyberattacks? Digital Warfare and the New Geopolitical Frontline Nearly 40% of 2024 Ransomware Payouts May Have Gone to Russia, China & North Korea
The OSI Model and Its Two Missing Layers
Adam Pilton · 2026-06-10 · via Heimdal Security Blog

Cybersecurity failures now happen beyond the OSI stack. Faulty governance, the human factor, and AI tools create new attack surfaces.

After seven years working across cybersecurity, cloud infrastructure, and Zero Trust architecture, Jayal Yadav explains how we got here and what organizations still get wrong.

“The original seven layers of the OSI model still matter. But today, the biggest risks sit beyond them.”

Those risks live in what Jayal frames as two overlooked attack surfaces beyond the traditional OSI model: human behavior as Layer 8, and AI interfaces as Layer 9. Jayal further explains both.

Layer 8: Human behavior is part of the attack surface

“People joke about layer 8 being the human layer,” says Jayal. “But Verizon’s 2024 DBIR found that 68% of breaches involved a non-malicious human element”. That’s a part people keep underestimating: there’s almost always a human operator in the loop.

Everything from phishing to social engineering, credential misuse, misconfiguration, and faulty decisions is rooted in human behavior.

Jayal gave an example of a founder whose business collapsed after a breach.

He had some terms and condition issues with his cloud vendor. He hosted customer data, backups, and infrastructure with that same provider.
There was no risk assessment, no governance, no exit strategy. When things failed, they couldn’t recover.

That experience reshaped how Jayal thinks about modern security risk. In his own words, at this moment “The freedom to leave a vendor is now part of security.”

It’s not AI that creates chaos. AI just scales it

Regarding AI usage, Jayal says the human factor is also key to success or failure.

“We all talk about AI slop,” he says. “But AI slop isn’t an AI problem. It’s a human problem.”

Jayal explains that AI simply mirrors the quality, clarity, and intent of human input.

If people outsource both their work and their chaos to AI, they just automate more chaos.

The right way to use AI is to treat it like a verification layer, not a replacement for judgment.

I check outputs against research, cybersecurity principles, science, and market signals before sharing anything publicly.

Jayal also shows why context matters more than most people realize. Context details can help or confuse AI and humans alike.

We operate through context, memory, and identity. You communicate differently with colleagues than with family. AI reflects that same behavior.

Not offering enough context data in your prompt might have a negative impact on the outcome.

Know your workflows before adopting AI automation

Bad workflows can turn worse with AI.

Many companies onboard new AI tools simply because they are shiny new objects. Even when their current processes work, they pile on more tools, increase complexity, and end up in chaos.

One of Jayal’s strongest warnings is against rushing into AI automation before checking and understanding existing workflows.

He advises evaluating daily processes and overall operations before translating them into AI, whether through automation or hybrid models.

Before automating anything, make sure the manual process actually works.

Automating a faulty workflow will generate chaos.

Governance – Also a layer 8 issue

Jayal says governance is now the defining factor in cybersecurity resilience. He warns against treating compliance like a checklist.

This box is checked and that box is checked, but there is no actual governance behind it. Cybersecurity starts with real governance, not compliance theater.

Jayal remembers working with an organization that suffered a breach despite having certifications and compliance requirements in place.

The MSP identified and communicated the risks. So did the internal IT team. Yet, leadership delayed action because they didn’t want the cost.

Then the breach happened.

Certifications and compliance requirements were in place, but proper governance was lacking.  Although the risks had already been identified by both the IT team and the MSP, decision lag left the company exposed.

That was a clear layer 8 issue. However, it was not the leadership that took responsibility.

The operator became a scapegoat. Accountability without authority is a massive issue across the industry.

Layer 9: AI has opened a new attack gate

With Layer 9 – AI, human error risks are becoming even harder to control.

Jayal highlights that

We’re already seeing cases where AI systems are manipulated into actions like issuing massive refunds. These kinds of social engineering attacks will increasingly target public-facing AI connected to company infrastructure.

The solution is stronger governance.

He adds that organizations are moving too fast when adopting AI tools and shares a real-life example.

The story is about a founder who connected an AI meeting summarizer to his entire Google Workspace.

He just signed in to that AI summarizer tool and clicked ‘approved’ in just 6 minutes. He had no AI policy for it. He had no governance around it. No risk assessment.

The problem in that case wasn’t the tool itself, but how Layers 8 and 9 intertwined.

The MSP secured layers one to seven. But when you open a completely new gate into AI, that’s layer 9.

In many cases, that new AI access path sits outside the scope of a traditional MSP contract.

Updating security for the AI era

Jayal understands why parts of the industry resist changing the OSI model.

Some people built the systems we still rely on today. That deserves respect.

But he believes security frameworks must evolve alongside technology.

“This isn’t about replacing the old system,” Jayal explains. “It’s about updating security to reflect where the real risks exist now.”

That is the thread Jayal is now developing through his work on verification architecture: how organizations prove what happens between human intent, AI output, and business action.

Author Profile

Adam is the Cybersecurity Advisor at Heimdal. With over 15 years in law enforcement, where he served as a Detective Sergeant leading Covert Operations and Cyber Crime teams, Adam transitioned to cybersecurity in 2016. Known for simplifying complex topics, Adam leverages his investigative and communication experience to engage leaders and end users alike, driving stronger cyber resilience.