👇🏽👇🏽👇🏽

🚨 Supply Chain Alert: guardrails-ai==0.10.1 on PyPI appears malicious. The package reportedly executes code on import, downloads transformers.pyz from git-tanstack[.]com, writes it to /tmp, and executes it via python3. This matches known supply-chain attack patterns tied to recent malicious npm/PyPI activity. Avoid this version immediately and investigate affected systems.

Crazy day! Here's a quick update regarding the latest supply chain attacks:

Want to know if you're affected by the latest supply chain attacks? Using the Upwind MCP server - It's possible! Watch a live MCP demo with Zak Harabedian 🏄‍♂️

10 Most Influential 🏆 CISOs You Should Follow in 2026 Read the full list on our blog ➡️reflectiz.com/blog/top-cisos… We're highlighting the security leaders who shaped how the industry thinks about exposure management, third-party risk, and enterprise security strategy. @philvenables @Myrna_Soto @rinkisethi Allison Miller @alexstamos @_mwc @BurkeyJoan78708 @AlyssaM_InfoSec Lena Smart @sounilyu They've secured platforms with billions of users, built frameworks practitioners carry into board meetings, and shifted the entire conversation from reactive threat chasing to proactive exposure management. The security industry is stronger because they lead it 🛡️ #Reflectiz #Cybersecurity #CISO #CTEM #WebSecurity #AppSec

The #AI era demands a different kind of #CISO ift.tt/hST2iZ3 #cybersecurity #tech #business #leadership #management #governance #organization #cyberresilience #cyberstrategy #CIO #CTO #CEO @CyberScoopNews @RinkiSethi @BetaMoroney @ChuckDBrooks @MikeFlache @Khulood_Almani @IngridVasiliu @JonBelsher @Timothy_Hughes @NafisAlam @YuHelenYu @RLDI_Lamy @MCLynd @OlKonol_oa @RigneySec @BenRothke @HWillert @AndrewinContact @TerenceLeungSF @Shi4Tech @enilev @Nicochan33 @SabineVdL @bimedotcom @IanLJones98 @FrRonconi @RiccardoBua @Eli_Krumova @NYIke @HaroldSinnott @SallyEaves @GlobalIQX @AntGrasso @AkwyZ @DinisGuarda @PVynckier @YvesMulkers @HaleChris @BillMew @RobMay70 @NigelTozer @m49D4ch3lly @Ronald_vanLoon @jeancayeux @NevilleGaunt @asokan_telecom @cybersecboardrm @RVP @QuePasaChico

Our @upwindsecurity threat research team just found a big supply chain attack in the wild. We are calling it Nodes to Snakes. Attackers exploited an NPM package (called Axios). Detailed blog below. If you need help to protect your environment, message me. upwind.io/feed/from-nodes-to…

Definitely didn’t start this.

Meet Rinki Sethi: Trailblazing Chief Security & Strategy Officer at Upwind Security Hey tech and security enthusiasts! If you're passionate about cybersecurity leadership and innovation in cloud security, allow me to introduce Rinki Sethi, the dynamic Chief Security & Strategy Officer (CSO) at Upwind Security. With over two decades of experience in the field, Rinki is a recognized powerhouse who has shaped security strategies at some of the world's biggest tech giants. She's not just a leader; she's a mentor, investor, and advocate for women in tech, bringing a unique blend of technical expertise and strategic vision to every role she takes on. Currently based in the San Francisco Bay Area, Rinki is multilingual, fluent in English, Spanish, Gujarati, and Hindi, and actively involved in organizations like the Society of Women Engineers. Rinki's career is a testament to her prowess in information security. She holds a bachelor's degree in Computer Science Engineering from the University of California, Davis (2004) and a master's in Information Security from Capella University (2006-2007). Her professional journey includes key positions such as Vice President and Chief Information Security Officer at Twitter, where she stepped in after the high-profile 2020 Bitcoin scam breach affecting accounts like those of Joe Biden, Elon Musk, and Bill Gates. Before that, she served as VP of Information Security at IBM, CISO at Rubrik, VP of Security Operations at Palo Alto Networks, and Director of Product Security at Intuit, with earlier roles at eBay, Walmart, and PG&E. Rinki has led global security programs, handled high-stakes incidents, and driven innovations in securing complex environments at scale. Beyond her executive roles, Rinki is deeply committed to the broader ecosystem. She's a Founding Partner at Lockstep, a board member at StrongDM and Vaultree, and formerly at ForgeRock. As an advisor to startups like LevelOps and Authomize, and organizations such as Women in Cybersecurity, she champions diversity and emerging talent in the field. Her accolades include the "Women of Influence - One to Watch" award from CSO Magazine and Alta Associates - Executive Women's Forum, highlighting her as an up-and-coming thought leader in information security, risk management, and privacy. Rinki's insights on topics like 'Shadow AI' and enterprise risks have made her a sought-after speaker and contributor in the industry. In June 2025, Rinki joined Upwind Security, a move that's accelerating the runtime security revolution. In her role, she leads the company's global Information Security and Technology functions while driving overall strategy, product development, go-to-market efforts, and customer advocacy. As a former Upwind customer, she brings a practitioner's perspective, emphasizing real-time context and actionable insights to tackle modern cloud challenges. Upwind's CEO, Amiram Shachar, praised her addition, saying, "Rinki isn't just one of the most respected security leaders in the industry, she's someone who's lived the challenges that CISOs face every day."If you're inspired by trailblazers like Rinki, follow her on X at @rinkisethi for the latest on cybersecurity trends and leadership. Who's ready to level up their security game? 🔒🚀

From posture to prioritization: The shift toward unified runtime platforms - helpnetsecurity.com/2025/06/… - @upwindsecurity @rinkisethi #ArtificialIntelligence #CISO #CloudSecurity #RiskManagement #CyberSecurity #netsec #InfoSecurity #ITsecurity #CyberSecurityNews #SecurityNews

Next week, we're gathering the female CISOs & security leaders in the Bay Area for breakfast! && I couldn't be more excited 🤗 Can't wait to see y'all there @angie_lal, @rinkisethi, @Lisa_H_ & so many others ✨

What do CISOs really want from startups? @rinkisethi (ex-Bill, Twitter) and @lucasmoody (Alteryx, ex-PANW) break down: → Why IAM is still chaos → How not to pitch a CISO → What makes a founder stand out Listen in 👉 open.spotify.com/episode/49N… #cybersecurity #startups #CISO #GTM #GenAI #infosec

Listen! Talking #WomenInCybersecurity at @RSAConference 2025 last week. Top global #CISO and #Cybersecurity expert @rinkisethi and Cybercrime Magazine's Deputy Editor @AmandaGlassner.

At #RSAC2025? @SiliconVlyBank, @forgepointcap and Wilson Sonsini Goodrich & Rosati are thrilled to come together Wed. 4/30 for "Rise and Shine: Women Ascending in Cybersecurity", a special leadership brunch & networking. Speakers: @rinkisethi @zatlyn @AnguloObieta DM for details!

Incredibly excited to have @rinkisethi 🙌✨ Thank you for accepting our request to join! 🙏🎉

🚀Cybersecurity Powerhouse Joins BSides Ahmedabad! 🚀 Thrilled to announce Rinki Sethi @rinkisethi joining BSides Ahmedabad as an Advisor! 🎉🚀 Rinki's journey as a CISO at BILL , Twitter, and Rubrik, coupled with her board experience, speaks volumes about her impact on cybersecurity 🔒. Her passion for innovation 💡 and community 🤝 aligns perfectly with our vision for BSides Ahmedabad. We're incredibly excited to have her guidance 🌟 as we elevate our conference and empower the next generation of security professionals 🧑‍💻👩‍💻. Welcome, Rinki! Let's build a stronger cybersecurity community together. 🔥🌐 #BSidesAhmedabad #cybersecurity #InfoSec #securitybsides #CISO #Advisor

Can't wait to host alongside @JohnCowgill & @JimWilsonSF as we get into security startup real talk with @rinkisethi, Patti Degnan, Prabhath Karanth, @georgegerchow & @tobiasboelter✨

Excited to share Part 1 of our analysis of security automation! While exploring how AI agents could shape cybersecurity, we (@MrRazzi17, @rinkisethi and @lucasmoody ) got curious about what's actually happening in the industry. Instead of making promises about revolutionary middle-out compression (HBO's Silicon Valley fans will get this 😉), we decided to let the data do the talking. We analyzed over 10,000 security job postings, and the results were eye-opening! Plot twist: while vendors promise magical no-code solutions, we found job descriptions asking for security unicorns who can code in five languages just to make these 'automated' tools work! Check out the full analysis to see what companies actually want versus what we think they need. Stay tuned for Part 2! And yes, Windsurf/@codeiumdev is super awesome! 🌊 open.substack.com/pub/popcor…

@ron_miller continuing to profile some amazing IT Executives at FastForward... @rinkisethi CIO and CISO @billcom sums it up well for security execs - "exciting and scary" fastforward.boldstart.vc/at-…

Welcome to CLARITY⭐ The show that brings you what you need to know now in the world of #CyberSecurity & #ArtificialIntelligence @rinkisethi @billcom @Matt_Rosenquist @MercuryRisk Discussing cybersecurity and #AI predictions for 2025 🔴👉FULL episode in comments