Posts
OS Weekly: A Poisoned npm Package, CISA's Patch Deadline & AI's Double EdgeThe software supply chain stayed the softest target in the room this week: a poisoned npm package was quietly dropping …
// Security Intelligence · Weekly OS
Mental models, leadership frameworks, and threat intelligence for CISOs, security engineers, and the next generation of cyber leaders.
// Latest Intelligence
Posts
OS Weekly: A Poisoned npm Package, CISA's Patch Deadline & AI's Double EdgeThe software supply chain stayed the softest target in the room this week: a poisoned npm package was quietly dropping …
Posts
OS Weekly: Extortion Without Ransomware, a 2M-Device Botnet Takedown & AI's Double EdgeThis week showed how quickly cyber-extortion economics are shifting: a $1 million payout to a group with no evidence of …
Posts
Scattered Spider's Playbook Is Simple. Your Defense Needs to Be Simpler.On June 22, 2026, Thalha Jubair, 20, and Owen Flowers, 18 — both from the UK — walked into Woolwich Crown Court and …
Posts
OS Weekly: A Ransomware Access Broker, Stolen OAuth Tokens & the Human Factor in SecurityThis week’s stories share a theme: the fundamentals — access hygiene, token rotation, and security awareness — are …
Posts
AWS Security Agent: Continuous Penetration Testing and Threat Modeling for the AI Development EraMost security programs are still built around a calendar, not a codebase. A pen test gets scheduled once or twice a …
Posts
OS Weekly: Patch Deadlines, a Note-Free Ransomware, and AI Reshaping Security TeamsThis week brought two maximum-severity vulnerabilities with hard patch deadlines, a ransomware operator that changed the …