Tech Updates

45 to 1. In the average enterprise, for every human user there are 45 machine identities. Every API key. Every service account. Every agent token. Every secret in every config file. Your IAM platform probably tracks about 2% of them. That's where the breaches are coming from now — Snowflake, GitHub PATs, Azure IMDS. This episode unpacks the NHI crisis, the vendor landscape, and the three control patterns that actually work this quarter.━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━📚 WHAT YOU'LL LEARN━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━✅ What counts as a non-human identity (it's more than service accounts)✅ The 45:1 ratio — and why it's 200:1 in agentic shops✅ Why "service account" is doing too much work (meet Dave)✅ How Snowflake, GitHub PAT theft, and Azure IMDS all trace to NHIs✅ Why your PAM solution doesn't cover any of this✅ The NHI vendor landscape — Astrix, Oasis, Clutch, Teleport, Natoma✅ The 3 control patterns that work (inventory, rotate, scope down)✅ Why agents make this 10× worse by 2027━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━⏱ CHAPTERS━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━0:00 Intro — the 45:1 ratio0:49 What is an NHI? (it's not just service accounts)2:05 Dave is your problem2:48 The breach file — Snowflake, GitHub PAT, Azure IMDS4:20 Why PAM doesn't cover this5:24 The NHI vendor landscape (still a 2-year-old category)6:30 The 3 control patterns that work7:46 Agents are NHIs — the 500:1 future━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━🎯 THE MEMORABLE LINES━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━• "A service account was created by Dave in 2017, has god-mode permissions, no rotation policy, is used by 42 systems nobody audited, and Dave left in 2020."• "Snowflake did what Snowflake was told to do. The instructions were 'trust this credential.' Guess what didn't have MFA."• "We are about to go from 45-to-1 to 500-to-1."• "Stop hardcoding secrets in your Git repos. Every scanner finds them in the first five minutes."━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━🛠 THE 3 FREE CONTROL PATTERNS━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━• Inventory — you can't secure what you can't see• Rotate — replace long-lived creds with short-lived alternatives• Scope down — every NHI has more perms than it needs━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━📡 TECH UPDATES · THE PODCAST━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━🔗 techupdates.it-learn.ioPrevious → EP20 · Typhoon Season, One Year LaterEnd of the EP17–21 arc. Thanks for listening.#TechUpdates #NHI #NonHumanIdentity #IAM #Snowflake #GitHub #PAM #Astrix #Oasis #Teleport #IdentitySecurity #CyberSecurity

In late 2024, Verizon, AT&T, and T-Mobile all admitted the same thing: their lawful-intercept systems — the ones they build for law enforcement — had been compromised by a Chinese state actor called Salt Typhoon. Years of dwell time. Wiretap infrastructure for politicians, including a presidential campaign. Sixteen months later, what have we actually fixed? Plus — why Volt Typhoon is the warning shot nobody's responding to, and why OT networks are still flat.━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━📚 WHAT YOU'LL LEARN━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━✅ The Salt / Volt / Flax Typhoon lineup — who they are, what they do✅ How Salt Typhoon abused CALEA — the FBI's own backdoor✅ Why Volt Typhoon is military pre-positioning, not espionage✅ CISA's Feb 2026 lessons-learned report — wins and ugly parts✅ Why OT networks remain "largely unchanged" from pre-2023 posture✅ The defensive playbook that ties to Network+ Obj 3.5 (out-of-band mgmt, jump servers)✅ Why this can't be fixed with a product purchase — it needs policy━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━⏱ CHAPTERS━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━0:00 Intro — 3 telecoms, same breach, same actor0:49 The Typhoon lineup — Salt, Volt, Flax2:07 CALEA — the 1994 law that became an attack surface3:42 CISA's 2026 report — wins and ugly parts5:06 OT is still flat — the uncomfortable truth6:51 The defensive playbook — segmentation, zero-trust OT, OOB mgmt8:45 The real lesson — this is policy, not a product━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━🎯 THE MEMORABLE LINES━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━• "The FBI's backdoor is also the PRC's backdoor."• "Predicted — by everyone. Dismissed — by everyone in government. Here we are."• "You don't get promoted for the attack that doesn't happen."• "Volt Typhoon is what happens when nobody replaces the kit."━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━📡 TECH UPDATES · THE PODCAST━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━🔗 techupdates.it-learn.ioPrevious → EP19 · AI Is Eating the GridUp next → EP21 · Non-Human Identities Are Eating Your Network#TechUpdates #SaltTyphoon #VoltTyphoon #CALEA #CriticalInfrastructure #OTSecurity #Telecoms #CISA #CyberPolicy #ChinaCybersecurity

In 2024, Microsoft signed a 20-year power purchase agreement to restart Three Mile Island. The nuclear plant. The one from the disaster. In 2025, Amazon bought a small modular reactor. In 2026, Meta locked up 20 years of natural gas at a cost nobody will put on record. We are watching hyperscalers become utilities. This episode covers the numbers, the deals, the grid bottleneck, the green accounting scandal, and the policy fight coming to your electric bill.━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━📚 WHAT YOU'LL LEARN━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━✅ The 2020 → 2030 data center power trajectory (spoiler: vertical)✅ Training energy costs for GPT-4 class vs GPT-5 class models✅ The PPA deals board — Microsoft/TMI, Amazon/SMR, Google/geo, Meta/gas✅ Why the US grid can't take it — 5-to-7-year interconnect queues✅ The Loudoun County story — one Virginia county, 35% of global cloud✅ The Scope 3 carbon accounting scandal✅ Who actually pays for this (hint: your electric bill)━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━⏱ CHAPTERS━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━0:00 Intro — Microsoft reopens Three Mile Island0:44 The data center power trajectory (2020 → 2030)2:00 The deals board — who bought what3:38 The grid breaks — PJM, ERCOT, interconnect queues5:10 Loudoun County, Virginia — the canary6:29 The green accounting scandal7:53 Who pays — your electric bill9:09 Watch list — the 2027 indicators━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━🎯 THE MEMORABLE LINES━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━• "The thing about nuclear is, everyone's pro-nuclear until it shows up next to their data."• "You cannot offset training a frontier model with forest credits. The carbon is burning. The trees are optional."• "By 2030, data centers will consume the electricity of an always-on Japan that does nothing but run AI."• "Most creative accounting since WeWork."━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━📡 TECH UPDATES · THE PODCAST━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━🔗 techupdates.it-learn.ioPrevious → EP18 · The Supply Chain Attack Nobody's Talking AboutUp next → EP20 · Typhoon Season, One Year Later#TechUpdates #AIPower #DataCenters #ThreeMileIsland #SMR #Hyperscalers #GridInfrastructure #Microsoft #AWS #Meta #Google #Sustainability

In February, a maintainer of a widely-used npm package pushed a release that shipped malware to 47,000 downstream applications. The maintainer's GitHub account had been compromised four months earlier. Nobody noticed. It happened again in March. Again in early April. This episode is the supply chain security story the vendors aren't telling you correctly.━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━📚 WHAT YOU'LL LEARN━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━✅ The 4 Q1 2026 supply chain incidents you may have missed✅ Maintainer takeover — the 5-step playbook attackers actually use✅ Why SBOM (Software Bill of Materials) doesn't prevent this✅ SLSA (pronounced "salsa") levels — and why <1% of enterprise hits Level 3✅ Sigstore adoption by registry — the ugly numbers✅ The pragmatic defense playbook for a 50-person shop✅ What package maintainers need to hear right now━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━⏱ CHAPTERS━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━0:00 Intro — the February npm incident0:49 The Q1 2026 timeline — 4 incidents, 4 vectors2:01 Maintainer takeover — the 5-step template3:39 SBOM theater vs reality4:35 SLSA adoption by level5:39 Sigstore adoption by registry6:36 The pragmatic defense — what to do this quarter8:29 To the maintainers watching — enable MFA. Please.━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━🎯 THE MEMORABLE LINES━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━• "An SBOM is a receipt. It's proof you bought the groceries. It does not mean you cooked dinner."• "94% of enterprise builds are still at SLSA Level 1."• "If your CI can push to npm, steal crypto wallets, and read your production database — that's not a CI account. That's a supervillain."• "We are collectively running on trust and good luck."━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━🛡 THE PRAGMATIC DEFENSE CHECKLIST━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━• Hard-pin every dependency · no floating ranges• Dependabot/Renovate with auto-merge OFF · review every diff• Dependency firewall (JFrog, Cloudsmith, Artifactory)• Minimize your supply chain — every dep is a trust decision• Segregate build credentials · principle of least privilege on CI━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━📡 TECH UPDATES · THE PODCAST━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━🔗 techupdates.it-learn.io🔔 Subscribe for the full EP17–21 run.Previous → EP17 · The Collapse of SaaSUp next → EP19 · AI Is Eating the Grid#TechUpdates #SupplyChainSecurity #npm #SBOM #SLSA #Sigstore #DevSecOps #OpenSource #MaintainerSecurity

"SaaS is dead." Satya Nadella said it on All-In in late 2024. Everyone laughed. Eighteen months later, Klarna went on the record — they fired Salesforce, fired Workday, and replaced them with Python scripts wired to Claude. ~$40M in annual SaaS spend. Gone. This episode breaks down what's actually happening to enterprise software, which layer is getting compressed, which layer is getting bigger, and what IT buyers should do Monday.━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━📚 WHAT YOU'LL LEARN━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━✅ What Nadella actually predicted vs what sounded absurd at the time✅ The Klarna playbook — exactly what got replaced, and with what✅ The 4 layers of every SaaS product (and which 3 are now commodity)✅ Which SaaS categories are getting compressed (middleware, dashboards, generic CRM/HRIS)✅ Which categories get bigger (infra, APIs-as-products, vertical SaaS, IAM, GRC)✅ The per-seat pricing collapse — what vendors are trying instead✅ What to actually do Monday if you're in IT leadership━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━⏱ CHAPTERS━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━0:00 Intro — "SaaS is dead"0:38 The Klarna teardown1:26 What SaaS actually sold — the 4 layers2:37 What's getting cooked — dying categories3:54 What survives — the layer that gets bigger5:15 Pricing model chaos6:26 What to do Monday — 5-step playbook7:52 The real story — the dashboard tax is dead━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━🎯 THE MEMORABLE LINES━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━• "Companies were paying two thousand dollars a seat for permissions and a log file."• "Buyer's market for the first time in a decade."• "The middle layer is getting compressed — infrastructure is bigger than ever."• "Do not sign a three-year SaaS deal in 2026. Do not."━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━📡 TECH UPDATES · THE PODCAST━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━Tech Updates covers the real stories behind enterprise tech — no hype, no vendor pitches. Host: Andrés Sarmiento.🔗 techupdates.it-learn.io🔔 Subscribe for the rest of the EP17–21 run: SaaS, Supply Chain, AI Power, Typhoons, NHIs.Up next → EP18 · The Supply Chain Attack Nobody's Talking About#TechUpdates #SaaS #Klarna #EnterpriseTech #AgenticAI #Nadella #ITLeadership #CIO #EnterpriseSaaS

Malware isn't just "a virus." It's a whole ecosystem of tools designed to damage, steal, spy, and extort — and in 2026 it's more dangerous than ever. This episode is your complete field guide.WHAT IS MALWARE?Malware (malicious software) is any program intentionally designed to harm a system, steal data, or gain unauthorized access. It's not accidental — it's engineered.THE 5 MAJOR TYPESViruses & WormsViruses attach to clean files and spread when a user runs them. Worms self-replicate without any user interaction — ILOVEYOU (2000) infected 50 million machines in 10 days.Trojans & RansomwareTrojans disguise themselves as legitimate software. Ransomware encrypts your files and demands payment — Colonial Pipeline paid $4.4M in 2021. Double extortion is now standard: pay or we publish your data.Spyware & KeyloggersSpyware silently monitors your activity. Keyloggers capture every keystroke — passwords, credit cards, everything. Pegasus (NSO Group) targeted journalists and world leaders via a single missed call.Rootkits & BotnetsRootkits hide deep in the OS or firmware — the only guaranteed fix is a full OS wipe. Botnets turn your device into a zombie for DDoS attacks, spam, and crypto mining. Mirai (2016) infected IoT cameras and routers, then took offline Twitter, Netflix, Reddit, and Amazon.HOW MALWARE GETS IN- Phishing emails — #1 delivery method- Drive-by downloads — visit a compromised site, malware auto-downloads- Malvertising — malicious ads on legitimate websites- USB drops — infected drives left in public places- Unpatched vulnerabilities — no user interaction needed- Supply chain attacks — SolarWinds (2020) hit 18,000 organizations including US government agenciesDEFENSE IN DEPTH — 7 LAYERS01. Patch everything — OS, apps, firmware02. Endpoint protection / EDR — behavioral detection catches what signatures miss03. Email filtering + sandboxing — detonate attachments before delivery04. Least privilege access — limits blast radius05. 3-2-1 Backups — 3 copies, 2 media types, 1 offsite, immutable06. Security awareness training — humans are the #1 attack surface07. Network segmentation / Zero Trust — never trust, always verify2024–2026 THREAT TRENDS- Ransomware-as-a-Service (RaaS): criminals rent malware like a SaaS subscription — no coding required- AI-powered malware: better phishing, polymorphic evasion that adapts to bypass defenses- IoT explosion: billions of unpatched smart devices are easy targets- Nation-state attacks: Stuxnet, Flame, Triton, Pegasus — government-grade malware in the wild- Average ransomware attack cost in 2024: $4.5 million (downtime, recovery, legal)- Reminder: paying the ransom does NOT guarantee you get your files backTHE BOTTOM LINEMalware is intentional. Understanding how each type works is the first step to defending against it. No single tool protects you — layers do.New episode every week. Subscribe on Spotify, Apple Podcasts, or YouTube.techupdates.it-learn.io

Description / Summary:Phishing remains the #1 initial access vector in 2026, now supercharged by generative AI, voice cloning, and multimodal deception. This episode dissects classic phishing, spear-phishing, smishing (SMS), vishing (voice), and emerging AI variants (hyper-personalized content, real-time voice synthesis, deepfake video calls).We walk through realistic attack scenarios with indicators of compromise (IOCs), attack chains, and living-off-the-land techniques—then deliver layered, modern defenses: phishing-resistant MFA, behavioral analytics, zero-trust controls, DMARC enforcement, and AI-native detection.Key Takeaways:Modern phishing uses perfect grammar, OSINT personalization, and urgency manipulation—no typos needed.AI variants generate tailored messages in seconds, clone voices from public audio, and simulate live video calls for multi-million BEC fraud.Core attack chains: credential harvesting → token/session replay → lateral movement or ransomware.Strongest defenses: FIDO2/passkeys (phishing-resistant), behavioral EDR rules (block anomalous process spawning), strict DMARC p=reject, continuous posture checks, and multi-vector simulated attacks.Organizations must assume AI acceleration—prioritize cryptographic MFA, URL rewriting/sandboxing, and verification protocols over awareness alone.LinksClassic & Spear-Phishing Scenarios:Microsoft Defender for Office 365 – Phishing Attack Chain Examples – https://learn.microsoft.com/en-us/defender-office-365/anti-phishing-protectionProofpoint 2025 State of the Phish Report (attack trends & indicators) – https://www.proofpoint.com/us/resources/threat-reports/state-of-the-phishSmishing & Vishing (including quishing):CISA – Smishing and Vishing Guidance (technical indicators & mitigations) – https://www.cisa.gov/news-events/news/smishing-and-vishingFBI Internet Crime Complaint Center (IC3) – Business Email Compromise & Voice Impersonation Alerts – https://www.ic3.gov/Media/Y2026/PSA250301AI-Enhanced Phishing & Deepfakes:Google Cloud Blog – AI-Powered Phishing Detection & Voice Cloning Risks (2026) – https://cloud.google.com/blog/topics/threat-intelligence/ai-enhanced-phishing-2026Dark Reading – Deepfake Video Calls Enable Record BEC Losses (case studies) – https://www.darkreading.com/cyberattacks-data-breaches/deepfake-video-calls-business-email-compromise Defenses & Phishing-Resistant MFA:NIST SP 800-63B – Digital Identity Guidelines (FIDO2 & phishing-resistant authenticators) – https://pages.nist.gov/800-63-3/sp800-63b.htmlYubico – Implementing Phishing-Resistant MFA (practical deployment guide) – https://www.yubico.com/authentication-standards/fido2/

Description / Summary:In this technical deep dive, we examine leading products for microsegmentation at the application and workload level—essential for stopping lateral movement in hybrid, multi-cloud, and containerized environments. As breaches become inevitable, these solutions enforce least-privilege policies based on process identities, behaviors, dependencies, and real-time telemetry, using host-based enforcement, AI-driven recommendations, and dynamic containment.We cover three standout platforms:Illumio Zero Trust Segmentation: Host/agentless visibility, AI-powered policy computation, and rapid breach isolation.Akamai Guardicore Segmentation: Process-level kernel enforcement, automated policy generation, and Osquery threat hunting.Cisco Secure Workload: Workload dependency graphing, eBPF tracing, and ACI/Kubernetes integration.Stay neutral as we highlight technical architectures, enforcement mechanisms, and 2025-2026 enhancements like agentless modes, ML anomaly detection, and scalability for thousands of workloads.Supporting Links:Illumio Zero Trust Segmentation Overview – https://www.illumio.com/illumio-segmentationAkamai Guardicore Segmentation Product Page – https://www.akamai.com/products/akamai-guardicore-segmentationCisco Secure Workload Documentation & Releases – https://www.cisco.com/c/en/us/support/security/tetration/products-release-notes-list.htmlGartner Peer Insights: Network Security Microsegmentation (2026 Customers' Choice mentions) – https://www.gartner.com/reviews/market/network-security-microsegmentationAkamai Segmentation Impact Study 2025 – https://www.akamai.com/site/en/documents/research-paper/segmentation-impact-study-2025.pdf

1. Palo Alto Networks Prisma AccessFeb 2025 (Prisma SD-WAN): Flow visualization, SGT propagation, GCM encryption, ION 9300 support.https://docs.paloaltonetworks.com/prisma-sd-wan/release-notes/new-features/prisma-sd-wan-release-information/prisma-sd-wan-features-introduced-in-2025/features-introduced-in-february-2025Aug 2025 (Strata Cloud Manager): Entity timestamps, region-based config management.https://docs.paloaltonetworks.com/content/techdocs/en_US/strata-cloud-manager/release-notes/new-features-strata-cloud-manager/new-features-in-august-20252. Zscaler2025 Upgrades (ZIA/ZPA/ZDX): EDM/IDM in email DLP, tenancy restrictions, Sandbox tokens, NSS exclusions.https://help.zscaler.com/zia/release-upgrade-summary-2025https://help.zscaler.com/zpa/release-upgrade-summary-2025Jan/Feb 2026: AI Security Suite, Client Connector 4.7/4.8 (strict enforcement, offload controls, DNS fixes, vuln mitigations). https://www.zscaler.com/press/zscaler-unveils-new-innovations-secure-enterprise-ai-adoptionhttps://help.zscaler.com/zscaler-client-connector/client-connector-app-release-summary-2026https://help.zscaler.com/zscaler-client-connector/release-upgrade-summary-2026ZPA Feb 2026: RHEL 8/9 RPMs, Private Service Edge VPN (IPsec/GRE, BGP).https://help.zscaler.com/zpa/release-upgrade-summary-20263. Cisco Secure Access2025: Universal ZTNA, trusted network detection, scheduled rules, endpoint/email DLP (ML inspection).https://www.cisco.com/site/us/en/products/security/secure-access/index.htmlhttps://www.cisco.com/c/en/us/td/docs/security/cdo/whats-new-for-cisco-defense-orchestrator/m-features-highlights-of-2025.htmlFeb 2026: AI Defense (supply chain governance, prompt injection protection), AI-Aware SASE, ThousandEyes app insights. https://newsroom.cisco.com/c/r/newsroom/en/us/a/y2026/m02/cisco-redefines-security-for-the-agentic-era.htmlAdditional: Hybrid ZTNA, AI Access, policy assurance, enterprise browser.https://www.ciscolive.com/c/dam/r/ciscolive/global-event/docs/2025/pdf/BRKSEC-2285.pdf

This week on Tech Updates:A critical 9.8 vulnerability in Honeywell CCTV systems.Ransomware groups increasingly targeting firewalls.And a surge of high-severity CVEs hitting infrastructure this week alone.The perimeter is no longer just a boundary — it’s the battlefield.If you manage firewalls, IoT, or internet-facing systems, this episode breaks down what happened, why it matters, and what you should be doing right now.Source LinksCVE-2026-1670 — Honeywell CCTV Camera Vulnerability👉 https://www.techradar.com/pro/security/honeywell-cctv-cameras-vulnerable-to-hijacking-which-allows-hackers-to-crack-passwords-easily Ransomware Targeting Firewalls Report👉 https://www.techradar.com/pro/security/batten-down-the-hatches-ransomware-attacks-are-increasingly-targeting-firewalls-experts-claim Recent High-Severity CVEs Published (NIST NVD overview)👉 https://nvd.nist.gov/general/nvd-dashboard

Show Notes — Cisco Live EMEA 2026 Recap📆 Event OverviewCisco Live EMEA 2026 took place Feb 9–13 in Amsterdam, bringing together over 21,000 attendees to explore AI-driven infrastructure, security, operations, and collaboration trends at the heart of enterprise tech. 🚀 Networking & AI InfrastructureCisco unveiled the Silicon One G300, a 102.4 Tbps programmable switching ASIC designed to power AI-scale data centers and accelerate GPU utilization. 🔗 https://newsroom.cisco.com/c/r/newsroom/en/us/a/y2026/m02/cisco-announces-new-silicon-one-g300.htmlThe new G300 powers next-generation Cisco N9000 and 8000 systems with liquid-cooled options and high-density optics, delivering improved energy efficiency and performance. Cisco also enhanced its data center networking stack with improved optics and unified management planes aimed at supporting AI fabrics. 🔐 Security & AI DefenseCisco delivered the largest expansion of its AI Defense portfolio, introducing new protections for AI supply chains, agent governance, runtime security, and integration with Secure Access Service Edge (AI-aware SASE). 🔗 https://newsroom.cisco.com/c/r/newsroom/en/us/a/y2026/m02/cisco-redefines-security-for-the-agentic-era.html🤖 Autonomous Operations — AgenticOpsCisco expanded AgenticOps, its AI-first operations model, with new agentic capabilities across networking, security, and observability designed to automate routine tasks with human oversight. 🔗 https://www.prnewswire.com/news-releases/cisco-expands-agenticops-innovations-across-portfolio-302683201.html💬 Collaboration & AI ExperiencesCisco showcased AI-powered collaboration enhancements, including AI-ready Webex devices and real-time speech translation that preserves tone and meaning — signaling a shift toward smart, hybrid-work experiences. 🧠 Analyst & Industry InsightsAnalysts and tech media highlighted Cisco’s broader strategic positioning in the AI era, focusing on AI platforms, sovereign infrastructure, and integrated data fabrics as the company’s next frontier. 🔗 https://futurumgroup.com/insights/cisco-live-emea-2026-can-a-networking-giant-become-an-ai-platform-company/Cisco’s networking innovations — especially the Silicon One G300 and updated Nexus One networking capabilities — signal a push to own and optimize AI networking at scale. 📺 Additional ResourcesCisco Live 2026 broadcast agenda and session catalog (keynotes, deep dives, and technical sessions): 🔗 https://www.ciscolive.com/emea/attend/broadcast-agenda.html

NSA Phase One & Two Zero Trust Guidance👉 https://www.meritalk.com/articles/nsa-releases-phase-one-two-zero-trust-guidelines/ Xage Security & LTIMindtree Zero Trust Partnership👉 https://industrialcyber.co/news/xage-security-ltimindtree-form-partnership-to-deliver-zero-trust-cybersecurity-for-critical-infrastructure/ Keeper Security Expands Federal Zero Trust Team👉 https://www.itpro.com/business/leadership/keeper-security-expands-federal-bench-with-latest-senior-hires

Cisco Live 2025 in San Diego showcased Cisco’s strategic vision for the coming era, centered onthe rise of AI and the need for fundamentally new approaches to networking and security.Cisco executives emphasized that we are entering the “agentic AI” era – a time when AI agents,bots, and autonomous applications will work alongside humans. This shift demands reimaginingnetwork architecture to handle unprecedented scales of data, automation, and securitychallenges.Cisco’s vision is to meet this challenge by unifying platforms and embedding intelligence acrossits portfolio, so networks can be more adaptive, secure, and easier to operate in the AI-drivenfuture.