Daily Cyber & AI Briefing with Michael Housch. This episode was published automatically and includes the assembled audio plus full transcript. TranscriptToday’s cyber and AI risk landscape is evolving faster than ever, and the pace of change is only accelerating. As we look across the enterprise security environment, several themes are emerging that demand attention from CISOs, risk executives, and security teams. At the heart of these trends are the challenges and opportunities brought by AI—especially in the form of AI agents, machine identities, and the growing prevalence of shadow AI. Alongside these, we’re seeing continued threats from traditional attack vectors, including large-scale data breaches and sophisticated malware campaigns. Meanwhile, the regulatory environment is struggling to keep up, with global leaders calling for greater oversight and clearer governance frameworks. Let’s break down the most pressing developments shaping today’s cyber risk landscape, explore their practical implications, and consider the strategic moves security leaders should be making right now. First, let’s talk about a major shift in identity management: the rise of AI agents and machine identities. ModelCop has just launched a dedicated security platform targeting this space, aiming to address the rapidly growing challenge of managing and securing machine identities. The numbers tell the story—this is now a $25 billion market, reflecting just how significant the challenge has become as enterprises deploy more autonomous AI agents. Why does this matter? AI agents are increasingly being used to automate business processes, analyze data, and even make decisions. They operate with a level of autonomy that traditional user accounts never had. But with that autonomy comes risk. If an AI agent’s identity is compromised, attackers could use it to access sensitive data, manipulate transactions, or move laterally within a network. The ModelCop platform is designed to help organizations inventory, monitor, and secure these AI agent identities as rigorously as they do for human users. This shift means that CISOs and security teams need to rethink their approach to identity governance. It’s no longer enough to focus solely on human credentials. Machine identities—especially those tied to AI agents—must be tracked, managed, and protected with the same level of scrutiny. This includes implementing least-privilege access, monitoring for unusual behavior, and ensuring that AI agents cannot escalate their privileges or act outside their intended scope. Building on this, it’s clear that AI agents themselves are creating a new frontier for identity-related security risks. Unlike traditional user accounts, AI agents can initiate actions, access sensitive information, and even interact with other systems—all without direct human oversight. This makes them attractive targets for attackers, who may seek to compromise an AI agent and use its credentials as a foothold within the network. The challenge is compounded by the fact that many organizations lack established controls for managing these non-human identities. Without proper governance, it’s all too easy for an AI agent to be granted excessive privileges or to be left unmonitored. This increases the risk of privilege escalation, lateral movement, and data exfiltration. Security leaders must adapt their identity governance frameworks to include AI agents, ensuring that every machine identity is accounted for and that access is granted on a strict need-to-know basis. But it’s not just sanctioned AI agents that are causing concern. The rise of “shadow AI”—AI systems deployed without formal oversight or approval—is creating a whole new set of risks. Shadow AI typically emerges when employees or departments implement AI tools outside the purview of IT or security teams. This can happen for any number of reasons: maybe a team wants to accelerate a project, or an employee finds a tool that promises to boost productivity. The problem is that these unsanctioned deployments often go unmonitored, leading to untracked data flows and potential compliance violations. Sensitive information can be processed—or even leaked—without anyone realizing it. Shadow AI can also introduce vulnerabilities if the tools being used haven’t been properly vetted for security or compliance. For CISOs, the priority must be to discover and govern these unsanctioned AI deployments. This means implementing processes and tools for AI discovery, establishing clear policies around AI use, and ensuring that all AI systems—whether officially sanctioned or not—are subject to the same governance and oversight as any other technology asset. Shifting gears, let’s look at a major data breach that’s making headlines: the Moody Bible Institute has suffered a breach that exposed 2.3 million email addresses. While the full scope of the compromised data is still being assessed, incidents like this have far-reaching consequences. Exposed email addresses can be used in targeted phishing campaigns, leading to identity theft, financial fraud, or further compromise of affected individuals. There’s also the reputational damage to consider, which can erode trust with students, donors, and the broader community. This breach is a stark reminder of the persistent threat posed by large-scale data exposures. Even as organizations invest in advanced security tools, attackers continue to find ways to exploit vulnerabilities—whether through phishing, credential stuffing, or exploiting unpatched systems. The lesson here is clear: robust data protection and incident response capabilities are non-negotiable. Organizations must be able to detect breaches quickly, contain the damage, and communicate transparently with those affected. Meanwhile, the threat landscape continues to evolve with the emergence of more sophisticated malware campaigns. A new campaign known as SilverFox is leveraging the ValleyRAT malware, now enhanced with multi-stage and rootkit capabilities. This evolution makes the malware more persistent and better able to evade detection, posing a heightened threat to enterprise environments. What does this mean in practice? Multi-stage malware can establish a foothold in a system, download additional payloads, and escalate its privileges over time. Rootkit capabilities allow it to hide from traditional detection tools, making it much harder to eradicate. Security teams need to stay vigilant—updating detection signatures, monitoring for anomalous behaviors, and ensuring that endpoint protection solutions are capable of detecting and blocking these advanced threats. On the defense side, we’re seeing new tools come to market that promise to help organizations manage the growing complexity of cyber risk. LTM has launched an AI-driven risk assessment platform designed to help enterprises identify and manage cybersecurity threats more effectively. By leveraging AI, the platform promises faster identification of vulnerabilities and more dynamic risk scoring. For CISOs, the appeal of AI-driven risk assessment tools is clear. They can augment existing risk management processes, providing deeper insights and more timely alerts. But it’s important to approach these solutions with a critical eye. Automated risk assessments can be powerful, but they’re not infallible. Organizations must validate the outputs, ensure that the underlying models are accurate, and avoid over-reliance on automation. Human oversight remains essential—especially when it comes to interpreting risk scores and deciding on appropriate mitigation strategies. Another area where AI is making an impact is in software development. As AI-generated code becomes more common, the risk of introducing insecure or non-compliant code into production environments increases. Quality Clouds has responded to this challenge with the launch of a governance platform specifically for managing AI-generated code. The platform provides visibility, policy enforcement, and auditability for AI-generated artifacts, supporting secure software supply chains. This is a critical capability as organizations increasingly rely on AI to accelerate development. Without proper governance, there’s a risk that code generated by AI could contain vulnerabilities, violate compliance requirements, or fail to meet internal quality standards. By implementing tools that provide visibility and control over AI-generated code, organizations can reduce these risks and ensure that their software supply chains remain secure. On the global stage, the regulatory environment is struggling to keep pace with the rapid development of AI technologies. The UN Secretary-General and other world leaders have warned that AI innovation is outpacing regulatory and governance efforts. Ongoing dialogues at the United Nations and related summits are focusing on the urgent need for international standards and oversight mechanisms. For risk executives, this signals that regulatory change is on the horizon. Organizations should be proactive in aligning their internal policies with emerging global norms, even before formal regulations are enacted. This means embedding transparency, accountability, and ethical considerations into AI deployments, and being prepared to demonstrate compliance with evolving standards. In response to the growing complexity of the threat landscape, LTM has also launched BlueVerse RightLogic, a platform aimed at helping enterprises address rising security threats—particularly those linked to AI and automation. The solution is positioned as a response to the increasingly complex attack surfaces that organizations face, and the need for integrated, AI-powered defense mechanisms. As threat actors leverage AI to automate and scale their attacks, it’s becoming clear that traditional security tools