We may earn a commission from links on this page. Deal pricing and availability subject to change after time of publication.

Invariably, the best time to buy one of Amazon's devices, from Blink video doorbells to Echo smart speakers, is during one of the mega-retailer's semi-annual sale events, and the ongoing Big Spring Sale is no exception. That means, of course, that it's a great time to be in the market for a Kindle e-reader. While these aren't the lowest prices these devices are likely to hit in 2026, this is your best chance at scoring a decent discount without waiting for Prime Day this summer or Black Friday in the fall.

While most Kindles are seeing discounts of at least 15% (including the Kindle Paperwhite with ads and the Kindle Kids), this year Amazon is offering the biggest discounts on its more premium models. For an extra $25 over the cost of the standard Paperwhite, you can splurge on the Signature Edition and get double the storage, an auto-adjusting front light, and wireless charging—or spend an extra $10 and get the Kindle Colorsoft, the better to enjoy your comics, cookbooks, and other image-heavy texts.

Here are the best deals on Kindle devices during the Big Spring Sale.

Kindle Paperwhite Signature Edition

$159.99 at Amazon

$199.99 Save $40.00

$159.99 at Amazon

$199.99 Save $40.00

Kindle Colorsoft 16GB

$169.99 at Amazon

$249.99 Save $80.00

$169.99 at Amazon

$249.99 Save $80.00

Kindle Scribe 16GB (2024)

$249.99 at Amazon

$399.99 Save $150.00

$249.99 at Amazon

$399.99 Save $150.00

Amazon Kindle 16GB

$94.99 at Amazon

$109.99 Save $15.00

$94.99 at Amazon

$109.99 Save $15.00

Amazon Kindle Paperwhite (2024)

$134.99 at Amazon

$159.99 Save $25.00

$134.99 at Amazon

$159.99 Save $25.00

Kindle Kids 16GB Bundle

$109.99 at Amazon

$129.99 Save $20.00

$109.99 at Amazon

$129.99 Save $20.00

The 16GB entry level Kindle is 14% off

The entry-level, ad-supported Kindle is still a great e-reader, with a crisp 300 ppi screen and a front light so you can read anywhere. It's $95 right now, down from the usual $110.

The Kindle Kids bundle is 15% off

If you've got little ones—or even if you don't—the Kindle Kids bundle is a good option. It's the same device as the entry-level Kindle, minus ads, and it comes with a cute cover and a promise from Amazon to replace it if it breaks. It's $110 right now, down $20 from the usual price.

The Kindle Paperwhite is 16% off

This ad-supported Kindle Paperwhite offers 16GB of storage, a temperature adjustable front light, and up to 12 weeks of battery life. It's $135, down from the $160 you'd normally pay.

The Kindle Paperwhite Signature Edition is 20% off

Upgrade to the Paperwhite Signature Edition and you'll get 32GB of storage, wireless charging, a sensor that can automatically adjust the lighting for you, and, oh yeah, no lock screen ads. You can choose from black, pink, or green for $160, down from the usual $200.

The Kindle Colorsoft is only $10 more

If you read a lot of comics or books with photos, or even if you just like seeing your covers in color, the Kindle Colorsoft has the best color e-ink screen you can buy. Right now, it's only $10 more than the Signature Edition, offering 16GB of storage, temperature adjustable lighting, and no ads for $170.

The previous generation Kindle Scribe is $150 off

If you are looking for a serviceable digital notebook to take notes or write in your books, the Kindle Scribe is a decent pick, especially if you're all-in on the Amazon ecosystem. Right now, the 2024 edition with the upgraded Premium Pen and 16GB of storage is $250, 38% off the usual $400 asking price.

from Lifehacker https://ift.tt/YEcskCu

We may earn a commission from links on this page. Deal pricing and availability subject to change after time of publication.

Peloton equipment is discounted for Amazon’s Big Spring Sale, which means we’re seeing some of the lowest-ever prices for the new “Cross-Training” line of equipment. The regular Bike is $400 off, the Bike+ is $600 off, and the Tread is also $600 off.

Peloton Cross Training Bike+

$2,095.00 at Amazon

$2,695.00 Save $600.00

$2,095.00 at Amazon

$2,695.00 Save $600.00

The new Cross-Training line launched in the fall of 2025, so it’s still pretty new. We have a breakdown here showing where the Cross-Training equipment improves upon the older models, and where it’s the same. A few differences worth nothing: 

• The Cross-Training Bike has the same size of screen and the same main features as the original Bike, but adds a swivel mount to the screen, a more comfortable seat, and upgraded internals: better quality audio, a faster processor, and better wifi and Bluetooth connections. It’s normally $1,695 and is now $1,295.

• The Cross-Training Bike+ has similarly upgraded internals compared to the regular Bike+. It adds a movement-tracking camera for AI-based form coaching in strength workouts, and can take voice commands. It also has a fan and a phone tray. (It has a swivel mount, too, but that’s not new for the Bike+.) It’s normally $2,695 and is now $2,095.

• The Cross-Training Tread, like the Cross-Training Bike, adds a swivel mount and upgraded internals. It’s normally $3,295 and is now $2,695. 

The older models are no longer available new, although they are available from Peloton as refurbished and rental models. There’s also a robust market for used Pelotons, although you’d have to pay a $95 activation fee to set up the used Bike you buy. All of the devices I’ve mentioned require a $49.99/month subscription. This gets you the streaming content, but also most of the software features of the device, such as syncing rides to your Peloton account. 

Our Best Editor-Vetted Amazon Big Spring Sale Deals Right Now

Apple AirPods Pro 3 Noise Cancelling Heart Rate Wireless Earbuds — $199.00 (List Price $249.00)

Apple iPad 11" 128GB A16 WiFi Tablet (Blue, 2025) — $299.00 (List Price $349.00)

Sony WH1000XM6- Best Wireless Noise Canceling Headphones — $398.00 (List Price $459.99)

Apple Watch Series 11 (GPS, 42mm, S/M Black Sport Band) — $299.00 (List Price $399.00)

Blink Video Doorbell Wireless (Newest Model) + Sync Module Core — $35.99 (List Price $69.99)

Ring Indoor Cam Plus 2K Wired Security Camera (White) — $39.99 (List Price $59.99)

Fire TV Stick 4K Max Streaming Player With Remote — $34.99 (List Price $59.99)

Amazon Kindle Colorsoft 16GB 7" eReader (Black) — $169.99 (List Price $249.99)

Deals are selected by our commerce team

from Lifehacker https://ift.tt/SODuoiM

Organizations have spent years accumulating fragmented identity systems: too many roles, too many credentials, too many disconnected tools. For a workforce of humans, that fragmentation was manageable. Humans log in, log out, and make decisions slowly enough that gaps in control rarely turned into immediate incidents. AI agents operate differently.

“AI agents change that completely,” said Ev Kontsevoy, CEO of Teleport. “Now you’re introducing non-deterministic actors that don’t sleep, don’t follow predictable paths, and can move across your infrastructure in seconds. And in most environments, we’re plugging them into the exact same model we already struggle to manage, with static credentials, fragmented identity, and over-scoped access, and very little real-time visibility into what they’re actually doing.”

Kontsevoy argues that identity sprawl has been misdiagnosed as a scaling problem. The underlying issue is control, and specifically, the absence of identity as a consistent control plane across infrastructure.

“That’s the point where identity sprawl stops being something you can clean up later and starts becoming something you can’t control at all,” he said. “If you can’t answer, in real time, what an identity is, how it is verified, and what it’s doing, you’ve already lost the thread.”

The building blocks exist. Consistent application does not.

Human identity management developed over decades, producing standards like SAML and OAuth that now underpin enterprise authentication broadly. Non-human identity lacks that consistency, not because the technical primitives are absent, but because their application is uneven.

Short-lived cryptographic credentials tied to verifiable identity, and policy-governed enforcement, are both available. The problem is that every platform, every cloud provider, and every tool implements them differently, producing the same kind of fragmentation that accumulated with human identity, but at larger scale and higher velocity.

“What a real stack should look like is much simpler,” Kontsevoy said. “At its core, it requires a unified identity layer that treats every actor — human, machine, or AI agent — as a first-class identity. Every non-human identity should be strongly tied to something verifiable, whether that’s a workload, a device, or an agent. Access should be short-lived, continuously validated, and constrained to what that identity is authorized to do, based on policy, nothing more.”

Kontsevoy described that architecture as technically feasible and said it is implemented in Teleport. The broader obstacle is conceptual: most organizations still treat identity as something added after infrastructure is built, rather than as infrastructure itself.

Regulators are mapping new behavior onto old accountability models

Regulated industries including finance, healthcare, and critical infrastructure are deploying agentic AI at a pace that regulatory frameworks have not matched. Existing accountability models assume that a human is ultimately responsible for any given decision, and that decisions are traceable to a linear chain of approvals.

Agentic systems break that assumption. They can take actions, chain decisions together, and produce outcomes that are difficult to explain after the fact. There may be no single decision point, and in some cases no direct human actor at all.

“Regulators are starting to recognize this, but they’re still early,” Kontsevoy said. “Most of the current frameworks focus on governance, risk classification, and documentation. That’s necessary, but it doesn’t solve the core problem, which is operational accountability.”

He said operational accountability in agentic environments will ultimately depend on control over identity and the policies governing it. Organizations that can demonstrate, in real time, that every action was tied to a verified identity operating under enforced policy will be better positioned to satisfy regulatory scrutiny than those that can show policy documentation alone.

Three steps for CISOs, and one set of habits to drop

For security leaders beginning to address non-human identity, Kontsevoy outlined a sequence of three actions.

The first is to establish identity as the control plane across the entire infrastructure. “Not by ripping and replacing everything,” he said, “but by making identity the control plane across your infrastructure. Every human, machine, workload, and AI agent should operate as a first-class identity within the same system.”

The second is to eliminate static, long-lived credentials. “Static keys, shared secrets, anything that sits around waiting to be used, that model doesn’t hold up once you introduce agents operating continuously. Everything should be short-lived, issued on demand, and issued dynamically and tied to a cryptographically verifiable identity.”

The third is to use the visibility gained from the first two steps to continuously harden the environment. Without a complete picture of what identities exist, including service accounts, workloads, and tokens, security teams are making access decisions without adequate information.

On the actions to stop: “Stop creating new service accounts as a shortcut. Stop embedding credentials into scripts and workflows. Stop assuming that because something is ‘internal,’ it’s safe. Those habits were already risky, but with AI in the mix, they scale in ways that are very hard to unwind.”

Model safety discussions are missing the bigger question

Much of the public conversation about AI risk focuses on model behavior: hallucination, alignment, output quality. Kontsevoy said the more consequential risk in enterprise deployments sits in the identity and authorization layer, not in the models themselves.

“If a model gives a bad answer, that’s usually recoverable,” he said. “If an agent with the wrong level of access takes the wrong action, that’s where you see real impact. Identity determines whether a mistake becomes an incident.”

He described many of the AI risks that enterprises are concerned about as familiar security problems appearing in a new form. Fragmented identity, static credentials, and over-scoped permissions are not new phenomena. The difference is that AI systems can exercise that access continuously and at machine speed.

“The question isn’t just whether the model is safe. It’s whether the identity behind it is continuously verified and constrained by policy.”

In most enterprise environments, agents are connected to existing systems with broad access because speed of deployment takes priority over access hygiene. That approach inherits all of the identity fragmentation and credential risks already present in those environments. “If you get identity right, you reduce most of the real risk,” Kontsevoy said. “If you don’t, AI will simply amplify every weakness that’s already there.”

from Help Net Security https://ift.tt/fxTLvFa

Citrix has fixed two vulnerabilities in NetScaler ADC and NetScaler Gateway, with the more serious flaw (CVE-2026-3055) potentially allowing attackers to extract active session tokens from the memory of affected devices.

Anil Shetty, senior VP of Engineering with Cloud Software Group (Citrix’s parent company), stated on Saturday that Cloud Software Group “is not aware of any unmitigated exploit available for either CVE 2026-3055 or CVE 2026-4368.”

Still, as both vulnerabilities can be exploited in low-complexity attacks and are in solutions that are often targeted by attackers, the company has urged customers to upgrade to a fixed version as soon as possible.

The vulnerabilities (CVE-2026-3055, CVE-2026-4368)

NetScaler ADC (application delivery controller) is a networking appliance used for improving the performance, security, and resiliency of applications.

NetScaler Gateway is a solution that allows users to safely access internal company resources (e.g., apps, desktops, files) over the internet.

CVE-2026-3055 is caused by insufficient input validation and may lead to memory overread. CVE-2026-4368 is a race condition that leads to user session mixup, i.e., may expose one user’s session to another user.

“The Citrix advisory states that systems configured as a SAML Identity Provider (SAML IDP) are vulnerable [to CVE-2026-3055], whereas default configurations are unaffected. This SAML IDP configuration is likely a very common configuration for organizations utilizing single sign-on,” Rapid7 noted.

CVE-2026-4368 is only exploitable on appliances that are configured as a Gateway or an AAA virtual server.

Both vulnerabilities affect NetScaler ADC and NetScaler Gateway versions 14.1 before 14.1-66.59 and 13.1 before 13.1-62.23, and NetScaler ADC 13.1-FIPS and 13.1-NDcPP before 13.1-37.262.

Citrix-managed cloud services and Adaptive Authentication have been updgraded with the latest software updates by Cloud Software Group.

Act quickly!

According to the security bulletin, CVE 2026-3055 was identified internally by Citrix during a security review.

Rapid7 and Arctic Wolf researchers say that there is currently no publicly available proof-of-concept (PoC) exploit for CVE 2026-3055 nor detected in-the-wild exploitation.

That said, with security updates now available, attackers may soon reverse engineer the patch and create an exploit. The similarity between CVE 2026-3055 and the previously exploited CitrixBleed2 flaw (CVE-2025-5777) might spur attackers to do it sooner rather than later.

Aside from updating vulnerable appliances, organizations should also consider restricting access to them using network-level controls.

Subscribe to our breaking news e-mail alert to never miss out on the latest breaches, vulnerabilities and cybersecurity threats. Subscribe here!

from Help Net Security https://ift.tt/wQbh7IS

Mimecast has announced a major expansion of its Incydr offering with new data security capabilities and a preview of the Agent Risk Center. These enhancements deliver runtime data security through a unified approach to detect, govern, and remediate data exposure in real time, whether driven by employees or agents acting on their behalf.

Eighty percent of Fortune 500 companies now run active AI agents, yet only 14% have full security approval for them1. Enterprise data loss is no longer just a people problem, AI agents have introduced an entirely new attack surface. Agents are accessing and sharing sensitive data through pathways which traditional security tools were never designed to monitor, MCP-connected workflows, commercial agents, user-built automations, and shadow AI tools.

“Intent-based detection treats all agents equally. We don’t, because the human behind the agent is the signal that changes everything,” said Rob Juncker, Chief Product Officer, Mimecast. “Who deployed the agent? What do we already know about them? How is data moving across email, collaboration tools, browsers, SaaS apps, endpoints, and AI-driven workflows — and what intervention is required right now? That’s a runtime data security problem, not a model problem.”

Adaptive data security

Mimecast’s Incydr technology has long helped organizations prevent insider-driven data loss through out-of-the-box visibility, intelligent detection via its PRISM risk engine (250+ risk indicators), and adaptive response ranging from in-context education to real-time blocking. The new capabilities extend Incydr technology from insider-led data security into broader runtime data security for both human and AI-driven risk.

This expansion takes a new approach, combining Incydr endpoint and browser intelligence with Mimecast’s email and collaboration security, delivering complete ingress-to-egress data visibility, covering the full path of enterprise data movement across endpoints, browsers, SaaS applications, AI tools, MCP connections, and email.

New and expanded capabilities are engineered to include:

• Unified human and agent visibility – A single view into data loss risk across employees and autonomous agents, spanning endpoints, cloud and SaaS applications, email, browser activity, commercial AI tools, MCP server connections, and user-developed agents.
• Shadow AI and unsanctioned agent detection – Purpose-built detection for unsanctioned AI usage, out-of-policy commercial agents, unauthorized MCP connections to production databases and critical SaaS platforms, and user-built agents operating on unapproved LLM providers or accessing production environments without security review.
• Adaptive risk scoring for people and AI agents – The Incydr risk engine now continuously scores both human users and AI agents based on behavioral anomalies, policy violations, high-risk data access, unsanctioned application usage, agent compliance posture, and exposure to critical systems and data sources (e.g., Snowflake, Stripe, PostgreSQL, AWS, Salesforce, GitHub).
• Granular data-to-agent access mapping – A view of which agents and tools access which categories of sensitive data, including customer PII, source code, financial records, internal communications, HR data, and infrastructure configurations, enabling security teams to understand and control the agent-to-data blast radius.
• Policy-driven governance – A comprehensive governance framework for classifying and enforcing policy across all AI tools, commercial agents, MCP servers, and user-developed agents, with sanctioned, unsanctioned, and uncategorized classifications, department-level enforcement, and AI acceptable use policy management.

Introducing the Mimecast Agent Risk Center

A single data loss investigation might involve an employee sharing a file through an unsanctioned tool, such as DeepSeek, OpenClaw, Ollama, ChatGPT, a commercial AI agent, summarizing confidential records, and a user-built agent pulling from a production database it was never meant to access. These events show up in different systems, follow different detection logic, and require different response playbooks, if they show up at all.

The Mimecast Agent Risk Center is designed to consolidate that fragmented picture into one experience. Critically, the Agent Risk Center is built to connect every finding directly to action. Built-in agentic workflows automate the response chain, notifying users, escalating to managers, enforcing controls, and generating compliance reports, so teams act at machine speed, not human speed.

As engineered, the capabilities will include:

• Anomaly detection engine for risky agent behavior – Can automatically surface high-risk patterns, unsanctioned tools with production database access, finance users connected to payment MCP servers, user-developed agents using non-sanctioned LLM providers, and executives with overly broad MCP configurations.
• Governance scorecards – A continuous assessment of organizational posture across four dimensions: policy coverage, review currency, human-in-the-loop enforcement, and LLM compliance, giving CISOs a measure of their agentic governance maturity.
• Department-level risk heatmaps – Visual analytics showing risk distribution, department-level exposure, risk factor breakdowns, and trend patterns, enabling targeted intervention rather than blanket policy.
• Integrated remediation workflows – Every risk finding connects directly to action, block access, notify users, escalate to managers, create tickets, classify uncategorized tools, schedule agent reviews, and generate compliance reports, all without leaving the unified interface.

from Help Net Security https://ift.tt/3FQGafu

Spotify keeps adding new features lately. Last week, the company rolled out "Exclusive Mode" for desktop users to stream in the highest quality possible; last month, Spotify announced "Smart Reorder," which automatically sorts your songs by BPM; and in January, the company's AI-powered "Prompted Playlists" landed in the U.S. after an exclusive stint overseas. It's still not easy to pick a favorite among other services like Apple Music, but Premium subscribers can at least say Spotify is giving them something for their money.

Now, the company is rolling out another new feature, one that actually seems like a cool way to learn about your music. On Tuesday, Spotify announced SongDNA, which shows you all the people who worked on a song, as well as all the samples and interpolations that song used. SongDNA lives directly under the lyrics tile in the player window. I already see it on my end, though Spotify does label the feature with a "Beta" tag to note that this feature is still in testing.

How Spotify's SongDNA works

When SongDNA appears under a song, you'll be able to see the artists who worked on it in one corner. That might include the main artist, but also any of the composers, producers, musicians, or writers who contributed. The SongDNA tile shows the main artist in a bubble, but tap the icon, and you'll see a map of all the people involved. You can tap on any of these names to see how many other artists they've worked with, how many songs they worked on, and what their "top song" is (presumably, what the most popular song they worked on is on Spotify).

To the right of the artists' bubble is a sample and interpolations bubble: Here, you'll see all of the clips the artist or artists took from various other songs to incorporate them into their own track. On Kendrick Lamar's "King Kunta," for example, I can see they sampled a drum loop from "Kung Fu" by Curtis Mayfield, and took vocals from James Brown's "The Payback," among others. Spotify will tell you exactly where in each song the sample was taken from, and gives you a play button to listen. You also can scroll down to find songs that have sampled the song in question: "F The Disco" by Cavi samples vocals from "King Kunta" at 1:28, as does "Brain Cells" by Villain Park (at 1:59). Scroll down a bit more, and you'll find any covers of the song available on Spotify. "8-Bit Misfits" has an awesome interpretation of the song that sounds like Kendrick wrote music for the NES.

Credit: Spotify

I'm an Apple Music guy, truthfully, but I have to say: This rocks (no pun intended). Most of us listen to our music without really knowing much about how it was put together—outside of the headlining artist, anyway. SongDNA makes it easy to learn more about how your favorite songs were made, where they pulled inspiration from, and who actually helped make the hit besides the singer or artist. You could follow up with the lead engineer or producer of your favorite song to see what other projects they worked on, or check out the full songs that were sampled to find new music to listen to. While it's a bummer it's only available for Premium subscribers, it's a great move on Spotify's part.

I reached out to Spotify asking whether SongDNA uses AI to retrieve this information, and will update this article if I receive an answer.

from Lifehacker https://ift.tt/8bCjEsa

RSAC 2026 Conference is taking place at the Moscone Center in San Francisco March 23 – 26. With hundreds of booths, countless product demos, and nonstop buzz, navigating RSAC can be overwhelming. That’s why we’ve done the legwork to highlight the standout companies you won’t want to miss.

Whether you’re looking for cutting-edge innovation, industry veterans with new offerings, or rising stars shaking things up, these exhibitors are bringing something special to the floor this year. Be sure to carve out time in your schedule to stop by, as you might just discover your next big opportunity.

Booth S-3316 | Book a demo

Apiiro is an application security company with offices in New York and Tel Aviv. Its agentic Application Security Posture Management (ASPM) platform helps security and development teams detect, prioritize, and fix risks across the software development lifecycle, from design through code to deployment. Powered by patented Deep Code Analysis technology, the platform provides code-to-runtime context, automated threat modeling, and AI-driven remediation. Apiiro has raised over $135 million in funding from investors including General Catalyst, Kleiner Perkins, and Greylock. Gartner, IDC, and Frost and Sullivan have all recognized Apiiro as a leader in ASPM, and its customers include USAA, BlackRock, Shell, and TIAA.

Booth ESE-19

Cline is an open-source AI coding agent that runs inside Visual Studio Code, JetBrains IDEs, and the command line. It goes beyond code completion by reading codebases, creating and editing files, executing terminal commands, automating browser interactions, and connecting to external tools via the Model Context Protocol, all with user approval at each step. Developers can bring their own API keys and connect to any major AI provider, including Anthropic, OpenAI, Google Gemini, AWS Bedrock, and local models. Cline has surpassed 5 million installs and nearly 60,000 GitHub stars, and is trusted by developers at companies including Samsung, Microsoft, Salesforce, Amazon, and Visa.

Booth N-5181 | Book a strategy session

GlobalSign by GMO is a leading Certificate Authority and digital identity provider founded in Belgium in 1996 and now a subsidiary of Japan’s GMO Internet Group. The company issues SSL/TLS certificates, S/MIME email security certificates, code signing certificates, and document signing solutions to businesses, enterprises, cloud providers, and IoT manufacturers worldwide. Its Atlas platform enables automated certificate lifecycle management at scale. GlobalSign by GMO is a founding member of the CA/Browser Forum and became a Qualified Trust Service Provider under the eIDAS regulation in both the EU and the UK. With over 600 employees across more than a dozen countries, the company serves clients including Microsoft, Cisco, and Johnson and Johnson.

Booth S-2452

IDEMIA is a global leader in biometrics and cryptography, providing identity and security solutions to governments and enterprises in more than 180 countries. The company operates through two main divisions: IDEMIA Secure Transactions, which delivers payment cards, eSIM connectivity, and cryptographic security including hardware security modules and post-quantum cryptographic libraries; and IDEMIA Public Security, which provides biometric solutions for border control, law enforcement, access control, and travel. IDEMIA is trusted by more than 600 governmental organizations and 2,400 enterprises.

Booth N-5245 | Book a demo

Mimecast is a leading cybersecurity company focused on managing and mitigating human risk for organizations worldwide. Its AI-powered, API-enabled platform is built to protect businesses from a broad spectrum of cyber threats by integrating advanced technology with human-centric security pathways. The platform enhances visibility, delivers strategic insight, and enables decisive action to safeguard critical data and collaborative environments. It also actively engages employees in reducing risk and improving productivity.

Booth ESE-28

MyCISO is a SaaS cybersecurity platform designed to help organizations assess, improve, and manage their security posture without relying on spreadsheets or fragmented tools. Its Security Operating System centralizes assessments, risk management, compliance, supplier security, incident response, security awareness, and board-ready reporting into a single platform supporting over 65 frameworks. AI-powered insights and automated external and internal vulnerability scans help security leaders prioritize risks, track maturity over time, and demonstrate progress to executives.

Booth S-0262 | Book a demo

Novee is an AI-powered penetration testing platform that continuously simulates real-world cyberattacks to help organizations find and fix vulnerabilities before hackers do. Unlike traditional annual pentests or generic scanners, Novee deploys a hive-mind of AI agents trained on offensive security tradecraft to map environments, uncover exploit chains, and identify business logic flaws. It can begin with zero knowledge, mirroring how real attackers operate, then expand into deeper coverage. For every issue discovered, Novee validates the finding and delivers personalized, step-by-step remediation guidance.

Booth S-3111 | Book a demo

Teleport is an infrastructure identity company that provides a unified platform for securing access across classic and AI infrastructure. Its platform consolidates identity for humans, machines, workloads, and AI agents using cryptographic identity and short-lived certificates, eliminating static credentials and standing privileges. Key capabilities include zero trust access, identity governance, privileged access management, machine and workload identity, and security for agentic AI and Model Context Protocol tooling. Teleport has raised over $169 million in funding, and is valued at $1.1 billion. Customers include Nasdaq, DoorDash, Accenture, Discord, and GitLab.

Booth ESE-09

Unbound AI is a cybersecurity company that created the Agent Access Security Broker (AASB) category, a governance layer purpose-built for AI coding agents. Its platform helps enterprises discover every AI coding agent in use across their organization, including tools such as Cursor, Claude Code, GitHub Copilot, and Cline, assess their risk, and enforce granular policies over terminal commands, MCP server connections, and sensitive data flows. The platform processes over one million agent tool calls per month and deploys via MDM with no code changes required. Customers include THG Ingenuity, WeWork, Siemens, and Exterro.

Booth ESE-11

12Port is a cybersecurity company providing an agentless Privileged Access Management (PAM) platform for enterprises and managed service providers. Its platform secures, monitors, and audits privileged sessions across physical, virtual, and cloud environments without requiring software agents on target endpoints. Core capabilities include a credential vault with FIPS 140-3 validated encryption, automated credential rotation, just-in-time access controls, session recording, MFA enforcement, and AI-powered session intelligence that detects policy violations and anomalies in real time. The platform supports hybrid, multi-cloud, and air-gapped environments, integrating with Active Directory, Entra ID, SSO, SIEM tools, and cloud platforms.

from Help Net Security https://ift.tt/dzW3VT0