Access Control stories

CrackArmour flaws in AppArmour could let local Linux users gain root, bypass namespaces and weaken container isolation at scale.

Microsoft's March Patch Tuesday fixes 77 flaws, including a severe SQL Server bug that could grant attackers sysadmin rights remotely.

Thenvoi launches Agentic Mesh, a shared layer that lets disparate AI coding agents collaborate in real time across tools and teams.

Thenvoi debuts a platform to orchestrate distributed AI coding agents, promising shared context, easier collaboration and policy control.

SurePath AI launches real-time MCP policy controls to lock down AI tool access, aiming to secure fast-growing workplace agent workflows.

Cloud identity compromise now drives over 80% of cyber incidents, as attackers increasingly abuse trusted accounts and workplace tools.

monday.com now lets AI agents sign up and work as full platform users, with direct workspace access, shared governance and unified pricing.

Databricks launches Genie Code autonomous data agent and snaps up Quotient AI to boost real-world evaluation of AI agents in production.

Nakivo updates Backup & Replication to v11.2, adding support for VMware vSphere 9, Proxmox VE 9.x and OAuth 2.0 email authentication.

Datarails launches FinanceOS, a unified data layer and MCP link to AI tools, promising governed, real-time finance workflows at scale.

Gallagher will debut its AccessNow cloud platform at ISC West 2026, pitching an integrated vision for future access control design.

Bitwarden adds a one-click login policy that extends SSO-style access to unmanaged web apps, automating vault-based sign-ins via IdP dashboards.

1Kosmos named overall, product and innovation leader in KuppingerCole's 2026 passwordless authentication ranking after review of 26 vendors.

Google has launched Gemini Embedding 2, a multimodal AI model that unifies search and analysis across text, images, video, audio and documents.

Tetrate launches Built on Envoy, an open source extension hub to speed enterprise adoption of Envoy, especially for AI-heavy workloads.

Misconfigured Salesforce Experience Cloud guest profiles are being exploited for mass data harvesting, with up to 400 firms possibly affected.

Wireless flaws have surged 230-fold since 2010, as Bastille warns AI data centres and critical infrastructure face escalating unseen risks.

Thrive launches a governed AI workspace and phased adoption model to tame shadow AI, uniting access to 50-plus major language models.

Claroty again named a Leader in Gartner's 2026 CPS Protection Platforms Magic Quadrant as industrial cyber-physical threats intensify.

RingCentral debuts AIR Pro voice-first AI agents with no-code tools, aiming to move enterprises beyond basic IVR to scalable automation.