How to use NIST and ISO frameworks to govern AI agents - 惯性聚合

推荐订阅源

Java Code Geeks

有赞技术团队

Proofpoint News Feed

Microsoft Azure Blog

阮一峰的网络日志

Google DeepMind News

博客园 - 聂微东

MIT News - Artificial intelligence

博客园_首页

人人都是产品经理

Google Developers Blog

Help Net Security

Tailwind CSS Blog

博客园 - 叶小钗

aimingoo的专栏

宝玉的分享

Netflix TechBlog - Medium

News and Events Feed by Topic

博客园 - Franky

美团技术团队

Hugging Face - Blog

Blog — PlanetScale

The Cloudflare Blog

罗磊的独立博客

Stack Overflow Blog

Full Disclosure

The GitHub Blog

博客园 - 三生石上(FineUI控件)

Last Week in AI

About on SuperTechFans

Y Combinator Blog

Recorded Future

Apple Machine Learning Research

酷壳 – CoolShell

Help Net Security

Manage machine identities: The hidden privileged access layer you need to manage Cybersecurity jobs available right now: May 26, 2026 Anthropic adds 28 security and compliance integrations for Claude Cisco refines its risk-based vulnerability disclosure for the AI era Authorities seize 800 servers used for cyberattacks and disinformation US states step up cyber defenses to protect local communities Lessons for organizations from the Verizon 2026 Data Breach Investigations Report OpenHack: Open-source AI-powered vulnerability research Boards want cyber risk in dollars, not CVE counts Turns out the C-suite loves shadow AI Week in review: GitHub breached via poisoned VS Code extension, critical NGINX flaw exploited $20 per zero-day is already the WordPress plugin reality Deleted Google API keys keep working for up to 23 minutes, researchers warn Kore.ai unveils AI-native platform for enterprise multiagent systems Suspected KimWolf botnet admin arrested over DDoS-for-hire operation Versa extends zero trust principles to AI agents and MCP workflows GitLab 19.0 adds AI workflows, secrets management, and self-hosted model support Proton Pass adds monitored credential sharing for AI agents Keepnet contributes voice and SMS phishing data to the 2026 Verizon DBIR CISA’s new KEV nomination form opens reporting to vendors and researchers Microsoft 365 users targeted by new phishing threat that bypasses MFA Meet Fractal, an OS made for microarchitecture reverse engineering Downtime has become a $600 billion business problem The new economics of fraud: Cheaper, faster, more convincing New infosec products of the week: May 22, 2026 Microsoft open-sources tools for designing and testing AI agents Authorities dismantle First VPN, used by ransomware actors GitHub, Grafana Labs breaches traced back to TanStack supply chain compromise Microsoft Defender vulnerabilities exploited in the wild (CVE-2026-41091, CVE-2026-45498) Virtru centers file collaboration around data-level protection ASAPP expands adversarial testing for enterprise AI systems Tenable Hexa AI automates remediation across attack surfaces Riverbed introduces new Aternity tools for autonomous IT operations Forward launches Predict to test network changes before deployment CTERA brings AI insights and automation for unstructured data Terra adds continuous network exploitation validation to its platform Why AI changed the threat model for travel technology Most dark web activity revolves around a handful of topics AI red teaming agents change how LLMs get tested Product showcase: Bitdefender Mobile Security for iOS protects privacy where scams begin Cyber threats push SMBs to spend more on security Webworm APT targets European government organizations with new backdoors Verizon DBIR: Vulnerability exploitation is the dominant initial access vector NanoCo lands $12 million seed funding, launches enterprise assistant built on NanoClaw FBI: $388 million lost in crypto ATM scams in 2026 ArmorCode gives security teams AI workers for exposure and remediation Novata uses AI to map risk across portfolios and supply chains TeamPCP breached GitHub’s internal codebase via poisoned VS Code extension Trust3 AI focuses on AI agent risks with MCP Security layer Encryption Consulting launches CertSecure Manager v3.3 with zero-touch certificate renewals Darwinium updates mobile SDKs to detect remote access scam activity Microsoft provides mitigation for “YellowKey” BitLocker bypass flaw (CVE-2026-45585) Communicating cyber risk in dollars boards understand CVE Lite CLI: Open-source dependency vulnerability scanner When your AI assistant has the keys to production 7 hard truths security pros should know: 2026 DevOps Threats Report What happens when your identity provider becomes the kill chain PureLogs infostealer is stealing credentials worldwide Selector extends AI-driven observability into multi-cloud environments LaunchDarkly adds real-time controls for AI agents in production Canonical ships Ubuntu Core 26 with 15 years of security maintenance New macOS infostealer impersonates Apple, Microsoft, and Google in a single attack chain The end of unencrypted Discord calls is here Babel Street targets AI-driven threats with new agentic investigation capabilities iProov brings identity verification to video meetings to reduce fraud risks Egnyte unveils Email Capture and AI features to unify fragmented data Public Instagram posts provide raw material for AI phishing campaigns Earbud sensors can authenticate users by their heartbeat, study finds AI infrastructure is cracking under sovereignty demands Cybersecurity jobs available right now: May 19, 2026 AI is drowning software maintainers in junk security reports Game over for 74 suspected scammers after Dutch cops plastered their faces on billboards Attackers are exploiting critical NGINX vulnerability (CVE-2026-42945) SmartBear expands ReadyAPI with AI-powered API testing capabilities Attackers accessed, downloaded code from Grafana Labs’ GitHub 201 arrested in INTERPOL disruption of phishing and fraud networks The AI backdoor your security stack is not built to see Lyrie: Open-source autonomous pentesting agent AI shrinks vulnerability exploitation window to hours Product showcase: McAfee + ChatGPT integration turns doubt into a scam check When ransomware hits, confidence doesn’t restore endpoints Debian 13.5 point release lands with security fixes, bug patches Week in review: Cisco patches SD-WAN 0-day, unpatched Microsoft Exchange Server flaw exploited Google lets Workspace admins apply one policy across all SAML apps Critical MOVEit Automation auth bypass vulnerability fixed (CVE-2026-4670) Penske Logistics launches platform for real-time supply chain visibility DigiCert breached via malicious screensaver file Operant AI Endpoint Protector secures AI agents and MCP tools Owl IRD enables one-way forensic data transfer for incident response teams Multiple threat actors actively exploit cPanel vulnerability (CVE-2026-41940) Blend Autopilot MCP brings AI agent orchestration to lending platforms Two cybersecurity pros get prison time for helping ransomware gang Claude Security enters public beta with Opus 4.7 vulnerability scanning and patching 15-year-old detained over massive data breach at French government agency Lens Agents brings policy control to AI across cloud and desktop Brush shell 0.4.0 tightens script safety, widens platform support Pipelock: Open-source AI agent firewall Spotting third-party cyber risk before attackers do What researchers learned about building an LLM security workflow Your work apps are quietly handing 19 data points to someone

How to use NIST and ISO frameworks to govern AI agents

Help Net Security · 2026-06-12 · via Help Net Security

此内容由惯性聚合(RSS阅读器)自动聚合整理，仅供阅读参考。原文来自 — 版权归原作者所有。