Cloud Security Alliance

Survey of 900+ security leaders shows runtime is the breach battlefield Even pre-production controls are not stopping known vulnerabilities in the AI age, as 82% of organizations lack real-time visibility into AI runtime behavior.   NEW YORK, June 2, 2026 – The Cloud Security Alliance (CSA), the world’s leading not-for-profit organization committed to AI, cloud, and Zero Trust cybersecurity education, has released the 2026 State of Modern Application & AI Security Report. …

A secure-by-construction approach to nine-pillar agentic AI design, integrated with the Cloud Security Alliance MAESTRO threat modeling framework   Introduction: Security as a Structural Property Most security failures in software systems come from treating security as something added on top of an otherwise-complete design. A team builds the application, then adds authentication; ships the feature, then writes the audit log; designs the architecture, then performs a penetration …

Originally published by Akto.   If there’s one product that has quietly embedded itself into how your employees actually work, it’s Claude. Two years ago, it was summarizing meetings. Today, it’s reading local files, running shell commands, browsing the web with employee session cookies, and connecting to your Slack, GitHub, and production databases. What started as a productivity shortcut now operates with the same privileges as the person using it, and in many organizations, s…

I have seen this movie three times in my career. First, in 2007, IT leaders tried to ban the iPhone to protect the “security” of the Blackberry. Later in 2015, CISOs argued that the “cloud thing” would never touch the enterprise. Today, we are standing at the edge of the third and largest shift in computing history: Agentic AI. This is not just another software update; it is a new species of user. For 30 years, we have secured “deterministic” systems – machines that do exactly what the …

Enterprise AI systems are no longer simply running models that predict or classify; they’re now deploying agents that plan, reason, and act autonomously. These agentic systems have the ability to browse the web, write and execute code, make purchasing decisions, and interact with other systems across your organization, often with minimal human oversight involved. This shift toward more autonomous AI systems complicates the risk profile and system vulnerabilities within an enterprise env…

Attackers are using AI to break into AWS environments and then turning around and using your AI — Bedrock and SageMaker — as the target. Posture alone can’t keep up. Here’s how cloud detection and response (CDR) solutions and AI-powered threat stories close the gap. TL;DR In November 2025, an attacker went from leaked AWS credentials to full administrator access in under 10 minutes — using LLMs to automate the attack and abusing Amazon Bedrock for LLMjacking along t…

Since OpenAI released ChatGPT 3.5 in late 2022, language models have advanced at a remarkable pace. What began as tools for text generation have quickly evolved into systems capable of reasoning, supervision, and automation across enterprise workflows. The first commercially available large language models (LLMs) arrived in late 2023. Since then, companies have expanded their use far beyond conversational interfaces—powering copilot-style interaction, agentic automation f…

The Cloud Security Alliance compares this moment to Y2K: a systemic threat with a hard deadline that demands urgent, disciplined response. They’re right — and for OT, the clock is ticking even louder. On April 12, the CSA published an expedited strategy briefing signed by Jen Easterly (CEO, RSAC; former Director, CISA), Bruce Schneier (Chief of Security Architecture, Inrupt; Harvard Kennedy School), Heather Adkins (CISO, Google), Rob Joyce (former Cybersecurity Director, NSA), and Phil V…

  TL;DR When a hybrid threat lands, the first question a SOC has to answer isn’t “what happened?” It’s “how far can this go?” That’s the blast radius question — and getting to a fast, accurate answer is the difference between a contained incident and a multi-million-dollar breach. Key takeaways Blast radius is the set of assets, identities, and data an attacker can reach from a single compromised asset. In hybrid environments, that radius almost always cross…

The findings in this blog are taken from Darktrace’s annual State of AI Cybersecurity Report 2026. AI is already embedded in day-to-day enterprise activity, with 78% of participants in one recent survey reporting that their organizations are using generative AI in at least one business function. Generative AI now acts as an always-on assistant, researcher, creator, and coach across an expanding array of departments and functions. Autonomous agents are performing multi-step operational wo…

  A Closer Look for Franchise and Multi-Location Operators Artificial intelligence has quickly become the centerpiece of modern cybersecurity marketing. Many Managed Detection and Response (MDR) vendors now promise “AI SOCs,” “autonomous incident response,” or fully automated security operations. For CIOs, CISOs, and IT leaders responsible for protecting distributed enterprises (multi-location retailers, restaurant and hospitality groups, healthcare networks, financial services wi…

  Executive Summary AI agents are approving loans, giving legal advice, triaging patients, and controlling physical systems. When they cause harm, courts ask: can you prove who authorized the agent, what it was permitted to do, and produce the trail? Most enterprises cannot. The attribution gap is the distance between what an agent did and your ability to prove who authorized it and what it was permitted to do. It maps directly to regulatory text across eight frameworks on bo…

  TL;DR Coverage percentages make for nice slides. They don’t stop cloud breaches. Here’s how to use MITRE ATT&CK to build detection coverage that actually maps to how attackers operate in AWS, Azure, OCI, and GCP — and where cloud detection and response solutions fit in. Key takeaways MITRE ATT&CK for Cloud is part of the Enterprise matrix — it covers IaaS (AWS, Azure, GCP), SaaS, identity providers, and Office Suite platforms. Credential abuse i…

The shadow AI conversation that started two years ago was about data leakage. An employee pasted a customer list into ChatGPT. A developer dropped proprietary code into a chat window. The risk was real, but the shape of it was familiar. Security teams responded with the controls they already had: Data loss prevention guardrails for the prompt, CASB for the SaaS session, and training for the employee. That shape changed in the past twelve months. The same employees who used to paste data…

Cybersecurity incidents are often framed as enterprise problems: contained within corporate systems, isolated to IT teams, and addressed through technical remediation. In reality, their impact is far broader. When a medical device manufacturer is breached, the consequences extend beyond internal disruption. Orders are delayed. Supply chains are affected. Patient care timelines can shift. Sensitive health data may be exposed. What begins as a security incident at the organizational level …

It’s hard to overstate how quickly generative AI is evolving and changing how we do business. Capabilities change weekly, making cloud computing look slow by comparison. In my 25 years in technology I’ve never seen such rapid widespread adoption. In some cases, we even see adoption exceeding defined desired business outcomes. It’s messy, it’s fast, and yet we, in security, still need to manage its risks. AI adoption inside enterprises is moving faster than security programs can keep up. …

TAISE and Valid-AI-ted programs earn Silver Awards for innovation in AI credentialing and compliance assurance SEATTLE – June 14, 2026 — The Cloud Security Alliance (CSA), the world’s leading not-for-profit organization committed to AI, cloud, and Zero Trust cybersecurity education, is pleased to announce that two of its leading AI assurance and certification programs have been named winners as part of the 2026 Globee® Awards for Artificial Intelligence. The Trusted AI Safety Expert (TAI…

The security industry has a deeply ingrained reflex: when the threat landscape accelerates, the answer is to move faster. Patch faster. Scan faster. Remediate faster. It is an understandable instinct, and for most of the past decade, it has been a reasonable one. But Mythos changes the equation in a way that makes speed alone not just insufficient, it makes it dangerous. Mythos is an AI-powered vulnerability discovery and exploit generation system capable of surfacing new CVEs at a rate…

Written by Philip Griffiths, Head of Strategic Sales, NetFoundry. The reason CSA started updating the SDP guidance more than a year ago is now playing out in real time. The internet is moving from human-speed exploitation to AI-speed exploitation, while most enterprise connectivity, patching, firewall, VPN, and approval workflows still operate on human-speed change cycles. At the recent DoW Zero Trust Symposium, I opened my talk, Why Traditional Networking Fails Agentic AI: Ident…

Security research lives in PDFs. PDFs are good for humans and useless to machines. That mismatch was annoying a few years ago. It’s expensive today. Detection engineers are feeding those PDFs into RAG pipelines so their copilots can answer questions about threat actors, control mappings, and risk decisions. The pipelines are pulling text out of multi-column layouts, splitting paragraphs at chunk boundaries, and dropping the structure that made the prose comprehensible in the first place…