Germany approves draft law for active cyber defense

FortiBleed breaches 30k–73k Fortinet devices

Credential reuse just turned tens of thousands of edge devices into an attack platform. This episode breaks down how Fortinet systems were accessed without exploits, and why identity at the perimeter is now the real control plane. For security and IT leaders, the pattern is clear. Weak authentication at internet-facing systems is no longer a gap, it is a direct entry point. At the same time, AI platforms are shifting enforcement into runtime, where actions can be stopped before they execute. The combination of human and non-human identity risk is reshaping how security needs to be designed. We also cover Databricks moving AI governance into execution, Tenet Security's approach to preempting agent behavior, regulatory action in Australia tying poor security to financial penalties, and key signals from npm, CISA, and emerging AI-driven attacks. Learn more at https://crestvale.io Support the show [https://www.buzzsprout.com/2602483/support]

GitGuardian scans dev laptops for plaintext secrets

The security boundary is shifting from systems to identities, and endpoints are now at the center of that change. Developer machines are increasingly becoming the easiest path into production environments as credentials leak through logs, caches, and AI tooling. This matters because traditional security models still separate endpoint protection from identity control. That gap is now where most real-world breaches are happening. At the same time, active exploitation of Fortinet vulnerabilities shows how quickly attackers move once patches are released, while new policy from France is forcing organizations to accelerate plans for quantum-safe cryptography. AI agents are adding another layer of risk as untracked identities with real access begin to spread across environments. Also covered: Databricks reframing AI governance, CrowdStrike removing standing privileges for agents, Zscaler mapping AI access relationships, regulatory fines for weak controls, and continued SaaS-driven breach paths. Learn more at https://crestvale.io Support the show [https://www.buzzsprout.com/2602483/support]

NewCore raises $66M for AI agent IDs

AI agents are rapidly becoming first-class actors inside enterprise environments, and identity systems are struggling to keep up. This episode looks at NewCore's $66 million bet on rebuilding identity for a world where agents outnumber employees, and why that shift is already underway. For security and IT leaders, this is not just a tooling change. It is a shift in what identity means. Unmanaged AI agents introduce invisible access, persistent permissions, and new attack paths. At the same time, moves like 1Password acquiring Apono show that the market is pivoting toward real-time access governance, not just credential storage. We also cover a critical Splunk vulnerability that demands immediate patching, and a major phishing network takedown that highlights how industrialized fraud now operates. Learn more at https://crestvale.io Support the show [https://www.buzzsprout.com/2602483/support]

Microsoft pulls 73 GitHub repos after malware

A supply chain attack targeting developer tools forced Microsoft to remove dozens of GitHub repositories, highlighting a shift in where real risk now sits. This episode breaks down how attackers are moving closer to credentials through trusted workflows, and why AI development environments are becoming a high value target. For security and IT leaders, the implication is direct. Developer machines, repositories, and third party access paths now function as part of your identity perimeter. At the same time, passkeys are exposing operational gaps around recovery, and new research shows overreliance on AI can quietly degrade decision making across teams. We also cover a third party access lawsuit with cross client impact, shifts in AI economics, and growing geopolitical pressure on AI partnerships. Learn more at https://crestvale.io Support the show [https://www.buzzsprout.com/2602483/support]

US export controls shut off Anthropic models

AI access is no longer just a product feature. It is becoming controlled infrastructure. In this episode, we break down how U.S. export controls forced Anthropic to shut down major models globally, and what that signals for any team relying on third-party AI. The shift has real consequences. Security workflows can stop overnight. Vendor risk now includes geopolitical decisions. And at the same time, critical vulnerabilities like the Splunk remote code execution flaw show how quickly your core systems can become liabilities if exposed. We also cover Wallarm's push into full visibility for AWS environments, and a new regulatory move as state attorneys general subpoena OpenAI over model behavior and data handling. Plus, key updates on cyber training, AI governance, and the changing shape of security teams. Learn more at https://crestvale.io Support the show [https://www.buzzsprout.com/2602483/support]