5 days, 120 CISOs from around the globe, one Village. I was proud to take part in Team8 CISO Village Summit 2026, a gathering that reminded me why this community matters so much. We spent the week discussing AI, nation-state threats, insider risk, identity, exposure management, resilience, and the changing role of the CISO, but the real value was not only in the agenda. It was in the trust built among people facing the same hard questions from different angles. AI is reshaping cybersecurity, no doubt. It is changing how attackers move, how defenders respond, how software is built, and how risk is understood. But the strongest lesson from this week was that in the age of machines, the human network becomes even more important. The open conversations, the shared lessons, the uncomfortable questions, the willingness to say what is really happening inside our organizations, that is what turns a group of leaders into a Village. Thank you, Team8 CISO Village, for bringing together an extraordinary community of security leaders. In a world moving faster than any one organization can handle alone, the Village is not just a community. It is part of the defense. It takes a Village. #Team8CISOVillage @team8group

⏳ LESS THAN 4 DAYS AWAY ‼️ Join security leaders & practitioners from @awscloud, @Poshmarkapp, @mondaydotcom, @AlphaSenseInc, @fastly, @latiotech, @rain_capital and... be part of the conversation shaping the future of security. 🔗 ox.security/vibeseccon-ret… 📅 Tues - June 16, 2026 ⏰ 12PM ET | 9AM PT | 6PM CEST

The Mythos Era isn't defined by more CVEs — it's defined by understanding how vulnerabilities connect, compound, and evolve into exploitable attack paths. Join us as we unpack the emerging patterns shaping the AI-driven threat landscape: 🔬 𝐑𝐞𝐬𝐞𝐚𝐫𝐜𝐡 𝐒𝐞𝐬𝐬𝐢𝐨𝐧 From Standalone CVEs to Exploit Chains: What the CVE Flood Actually Means featuring @OX__Security's very own: ⚡ @MosheTov | Security Research Team Leader ⚡ Matt Hines | Head of Product Marketing ox.security/vibeseccon-retur… ⌛ ONLY 4 DAYS LEFT TO REGISTER ⌛

🔥HOT TAKE >> will one platform rule them all? is it the future of cybersecurity? or is it a convenient myth? we asked Kevin Jackson, CEO @Level6Cyber, for his take — and his answer may surprise you! #CyberSecurity #AppSec #PlatformEngineering #RSAC

🏆 OX Security has been named the Best DevSecOps Platform in the Cybersecurity Stars Awards 2026! Huge thanks to @TheHackersNews for the recognition 🙌 Proud to be helping organizations unify AppSec, prioritize real risk, and accelerate remediation ⚡ FULL ARTICLE: awards.thehackernews.com/win… #CyberSecurity #AppSec #DevSecOps

AI is reshaping software development, forcing organizations to balance innovation, governance, and security while managing the growing risks that come with increased speed, automation, and scale. join the security leaders at the forefront of AI adoption as they discuss the real-world tradeoffs between innovation, governance, and risk: 🛠️ 𝐎𝐩𝐞𝐫𝐚𝐭𝐢𝐨𝐧𝐚𝐥 𝐒𝐞𝐬𝐬𝐢𝐨𝐧 Balancing Speed and Safety: Untangling the AI Security Tradeoff 🚀 @begimher | Sr. Security Engineer, @awscloud 🚀 @JamesBerthoty | Founder & CEO, @latiotech 🚀 @pmungse | Head of Security, @Poshmarkapp ⚡ Moderated by: Boaz Barzel | Field CTO, @OX__Security 📍ox.security/vibeseccon-retur… Tues - June 16, 2026 12PM ET | 9AM PT | 6PM CEST VibeSecCon: The Security Summit Running From Prompt to Runtime

@AppSec_Village keeps growing! Welcome @OX__Security as our newest Bronze Sponsor 💀 Check them out ⬇️ ox.security/?utm_source=defc… #AppSecVillage #AppSec #ASPM #Shoutout #Sponsor

Agentic AI is rewriting the rules of security, introducing autonomous systems that can independently plan, act, and adapt across tools, environments, and workflows — often in ways security teams can't fully predict. Who better to discuss the future of Agentic AI security than the leaders navigating it today? 🧠 Strategic Session Governing What You Can't Predict: A CISO's Framework for Agentic Risk ⚡ Moderated by: @chenxiwang | Managing General Partner, @rain_capital Featuring a panel of veteran CISOs: 🛡️ Daniel Liber | CISO, @mondaydotcom 🛡️ Samir Sherif | Global Field CISO, @fastly 🛡️ Pieter VanIperen | CISO, @AlphaSenseInc 🎟️ 𝙍𝙚𝙜𝙞𝙨𝙩𝙚𝙧 𝙏𝙤𝙙𝙖𝙮 - 𝘿𝙤𝙣'𝙩 𝙈𝙞𝙨𝙨 𝙊𝙪𝙩! ox.security/vibeseccon-retur… Tues - June 16, 2026 12PM ET | 9AM PT | 6PM CEST VibeSecCon: The Security Summit Running From Prompt to Runtime

🚨 JUST ANNOUNCED 🚨 VibeSecCon Returns on Tuesday - June 16th with: 🚀 @begimher | Sr. Security Engineer, @awscloud ⚡ @JamesBerthoty  | Founder & CEO, @latiotech 🚀 @pmungse | Head of Security, @Poshmarkapp ⚡ @chenxiwang | Managing General Partner, @rain_capital 🚀 @neatsun | CEO & Co-Founder, OX Security ⚡ @MosheTov | Security Research Team Leader 🚀 and more rockstars from @OX__Security, @mondaydotcom, @fastly, @AlphaSenseInc 🎟️ REGISTER TODAY 📍 ox.security/vibeseccon-retur…

🚨 Breaking: Miasma Malware Goes Open Source (Hades / Shai-Hulud Variants) TeamPCP's decision to open-source Shai-Hulud has spawned even more copycats, giving threat actors more tools to spread supply chain malware online. Thanks to @KirkDerpca for bringing this to our attention!

🚨 The future of security isn't AI vs humans... it's AI vs AI 🥊 Autonomous agents are already writing, fixing, and deploying code. The question isn't whether they'll make mistakes. It's whether security can keep up. 🎥 insights from our Field CTO, Boaz Barzel. #CyberSecurity #AIAgents #AppSec

OX Security researchers have analyzed and confirmed that the attack on the Azure GitHub repositories is part of the Miasma supply chain attack. Our analysis shows that the new infection repository string, "Hades - The End for the Damned," has replaced "Miasma - The Spreading Blight" and the prior "Shai-Hulud: Here We Go Again" strings. According to @ossmalware, a total of 73 repositories were compromised in the attack. We are currently investigating this attack, and more details will follow.

SPICY TAKE 🌶️🔥 who gets replaced first by AI? 👀 You? Your boss? Or both? Who's more exposed to AI disruption over the next 5 years? #AI #CyberSecurity #FutureOfWork #Leadership

🚨 WAVE #3: the Miasma Shai-Hulud campaign infecting even more packages. Another wave of new malicious npm packages have been identified, adding to a growing list of compromised dependencies affecting the open source ecosystem. github-archiver@1.5.6 @ethlete/query@5.43.2 @ethlete/dsp@0.3.1 @ethlete/cdk@4.71.2 @ethlete/theming@2.7.1 @ethlete/cli@2.0.1 @ethlete/contentful@3.9.1 @ethlete/types@1.11.4 @ethlete/core@4.31.1 @ethlete/components@3.3.1 @forjacms/analytics@1.8.5 @forjacms/client@1.8.5 @forjacms/sections@1.8.5 @forjacms/sections-react@1.8.5 We are actively tracking the infections as they unfold and updating our research blog with the latest information. You can read more details here: ⬇️ ox.security/blog/600000-mont…

🚨 BREAKING: the Miasma Shai-Hulud campaign is still spreading. New malicious npm packages have been identified, adding to a growing list of compromised dependencies affecting the open source ecosystem. We are actively tracking the infections as they unfold and updating our research with the latest indicators, affected packages, and attack activity. we’ve we updated the list of malicious packages on our blog ⬇️ ox.security/blog/600000-mont…

🔥 Three categories. One OX. Proud to be recognized as a Sample Vendor in the Gartner® Hype Cycle™ for Secure Software Engineering, 2026 for: ⚡ Agentic Coding Security ⚡ ASPM ⚡ Software Supply Chain Security we're just getting started 🚀 FULL BLOG ox.security/blog/ox-security…

have you registered yet? ⬇️ VibeSecCon returns with three sessions on what’s keeping security teams up right now: faster exploitation, higher CVE volumes, and what happens when both attackers and defenders run on agents. 🔗 ox.security/vibeseccon-retur… 📅 Tuesday - June 16, 2026 ⏰ 12:00 PM ET | 9:00 AM PT | 6:00 PM CEST 🎯 VibeSecCon Returns: The Security Summit Running From Prompt to Runtime 𝙁𝙚𝙖𝙩𝙪𝙧𝙞𝙣𝙜 𝙧𝙤𝙘𝙠𝙨𝙩𝙖𝙧 𝙨𝙥𝙚𝙖𝙠𝙚𝙧𝙨: 🔸 @MosheTov | Security Research Team Leader, @OX__Security 🔸 @JamesBerthoty  | Founder & CEO, @latiotech 🔸 @chenxiwang | Managing General Partner, @rain_capital 🔸 @begimher | Sr. Security Engineer, @awscloud ... full speaker lineup drops next week 🤘

🚨 Miasma Returns: 600K Downloads at Risk 57 npm packages compromised ~647K monthly downloads 🎯 Executes via binding.gyp 💥 Steals GitHub, npm & cloud creds 🛡️ Rotate keys, enable 2FA, assume compromise FULL REPORT: ox.security/blog/600000-mont… #CyberSecurity #SupplyChainSecurity #AppSec