InfoSec Relations
Online/Digital
InfoSec Relations features expert commentary and contributed analysis because the publication's core argument that cybersecurity and geopolitics are inseparable can only be made credibly by people who have operated at that intersection directly. These are the people whose insight makes the difference between analysis that sounds right and analysis that is right. Source
Actions
Media Outlet details
| Scope | National |
|---|---|
| Language | English |
| Country | United States of America |
|
Similarweb UVM |
Request pricing |
|
Comscore UVM |
Request pricing |
Recent Articles
Search ArticlesFive Eyes Warning on AI Speed, with a Military Veteran and CISO
On June 22, 2026, the cyber security agencies of the Five Eyes alliance, the United States, United Kingdom, Canada, Australia, and New Zealand, took the rare step of issuing a joint statement warning that AI is transforming cyber risk on a timeline of months, not years. When five of the world's most capable cyber defense agencies speak with one voice, it is a signal that something has shifted.
Every US-Linked Org Is Now a Cyberattack Target
In March, an Iran-linked group calling itself Handala claimed a cyberattack on the medical device maker Stryker, disrupting a company most people would never connect to a conflict in the Middle East. Weeks later, CISA and the FBI reported Iranian-affiliated actors disrupting programmable logic controllers across US water, energy, and government systems.
Securing Agentic AI Against Data Leakage
AI agents no longer just answer questions. They browse the web, call APIs, write code, and access enterprise data, often with minimal human intervention. That shift from passive tool to autonomous actor is one of the most exciting developments in the field, and it opens a class of security risk that existing frameworks were never designed to handle.
Attacking the Cloud Control Plane
How do attackers actually reach the cloud control plane, and why is it the layer that matters most to them? Siri Varma Vegiraju, a tech lead on Microsoft Azure Security, joins Offensive Engineering to walk through the real attack paths against cloud infrastructure, from stolen secondary credentials to token abuse, and to explain what defenders consistently assume they have covered when they do not.
Cyber Operations as Statecraft
A former US diplomat and senior Pentagon official breaks down how Iran turns cyber operations into statecraft, and the seven things CISOs should do about it. How do states turn cyber operations into instruments of power? Former US diplomat and senior Department of Defense official Armand Cucciniello III joins InfoSec Leadership to break down how nation-states use cyber as a tool of signaling, coercion, and statecraft, using Iran as the case study.
Agentic Security Is Governing the Wrong Layer
Security governance for agentic AI has focused almost entirely on the reasoning layer. What agents decide, which detections they act on, whether a human signs off before a consequential action runs. That work matters, and it is not finished. But it leaves a different problem building underneath it. The Model Context Protocol layer connects agents to the tools, data sources, and APIs they need to function.
Agentic AI is Exposing the Accountability Gap in Cloud Security Governance
Attackers and State-sponsored groups have for years used automated tools against cloud infrastructure. But the speed of that threat has with the advancements in AI changed structurally. VulnCheck data cited in Sysdig's 2026 Cloud Native Security and Usage Report shows that in 2018, attackers took nearly a year to weaponize disclosed vulnerabilities. By 2023 it was eight days. At the end of 2025, React2Shell was being actively exploited only hours after public disclosure.
Moonlight Maze Explains Autonomous AI Dangers Today
Government research networks exist to move information. They connect classified systems across agencies, share data between military contractors and federal institutions, and provide researchers across the Department of Defense, NASA, and the Department of Energy with persistent, authenticated access to sensitive materials. For the organizations that built them, this connectivity was an operational necessity.
Zero Trust for AI is a Governance Imperative for the Networked World
The perimeter-based security model that most governments and institutions built their digital defenses around rested on a single assumption that held long enough to become doctrine. Internal networks were trusted. External traffic was suspect. The job of the security infrastructure was to keep the outside out, and everything inside the boundary was, by definition, safe enough to work with.