https://ku5e.com/tags/infosec/Recent content in InfoSec on ku5e | Cybersecurity PortfolioHugo -- 0.162.1en-usMon, 13 Apr 2026 20:18:00 +0000https://ku5e.com/blog/the-attacker-in-your-network-is-not-in-your-inbox/Mon, 13 Apr 2026 20:18:00 +0000https://ku5e.com/blog/the-attacker-in-your-network-is-not-in-your-inbox/description: Cisco Talos reported that 40% of all intrusions in Q4 2025 came from exploited vulnerabilities, not phishing. The monitoring infrastructure at most organizations was built for phishing. That design gap is where attackers are living.https://ku5e.com/blog/193-applications-taught-me-that-hr-ai-agents-are-an-unmonitored-attack-surface/Mon, 13 Apr 2026 20:09:00 +0000https://ku5e.com/blog/193-applications-taught-me-that-hr-ai-agents-are-an-unmonitored-attack-surface/description: HR AI agents are running application screeners, confirmation senders, denial generators, and support chats. They read unstructured external input and route it into internal processes. That is an injection surface. Most companies did not buy them as security infrastructure.https://ku5e.com/blog/your-dlp-policy-does-not-know-what-your-employees-are-running/Sun, 12 Apr 2026 22:22:00 +0000https://ku5e.com/blog/your-dlp-policy-does-not-know-what-your-employees-are-running/76% of organizations now call shadow AI a definite or probable problem. The tools deployed against it have the same blind spot that plagiarism detectors have against a student who knows humanizer tools exist.