Claude Code Security Causes A SaaS-Pocalypse In Cybersecurity
AI agents reshaped the cybersecurity market on February 20th. Learn how Claude Code Security, SAST tools, and AppSec strategies will evolve and what CISOs must do next.
Claude Code Security shook up cybersecurity with an experimental release that went well beyond appsec. The AI Platforms - like hyperscalers - want in on security and left stock prices reeling as a result. Read our analysis here: www.forrester.com/blogs/claude...
23.02.2026 18:58 β
π 2
π 1
π¬ 0
π 0
When A Hosting Provider Becomes A Hostile Provider: The Notepad++ Compromise
The Notepad++ compromise shows how a hosting provider failure turns into a software supply chain attack. CISOs can learn how to assess their exposure, validate software integrity, and run targeted thr...
When a hosting provider turns hostile your software supply chain pays. The Notepad++ compromise shows how a single utility can quietly become an enterprise wide attack path. Check out our blog where we detail the Notepad++ compromise and what to do about it here: www.forrester.com/blogs/when-a...
02.02.2026 22:01 β
π 2
π 2
π¬ 1
π 0
Ready For Clawdbot To Click And Claw Its Way Into Your Environment?
Security leaders face a new AI agent craze as personal tools like Clawdbot spread. AI butlers are the next shadow superuser.
Clawdbot looks so cool! So I ALMOST started messing with it, but I don't need it in my personal life. I need it at WORK. I won't be the only (potential) user to come to those conclusions.
@jessburn.bsky.social and I wrote blog about what that means for CISOs here: www.forrester.com/blogs/ready-...
26.01.2026 21:24 β
π 1
π 0
π¬ 0
π 0
Forrester AEGIS: The New Standard For AI Governance
Explore Forresterβs AEGIS AI governance crosswalk mapping NIST AI RMF, ISO 42001, EU AI Act, OWASP, and MITRE so CISOs can prioritize highβyield controls.
AI governance just got easier. Forresterβs AEGIS Framework crosswalks NIST, ISO 42001, EU AI Act, OWASP, and MITRE. This gives CISOs a clear path to trust and governance for AI. Forrester AEGIS: The New Standard For AI Governance here: www.forrester.com/blogs/forres...
22.10.2025 18:54 β
π 0
π 0
π¬ 0
π 0
How To Build AI Red Teams That Actually Work
AI red teaming blends offensive testing and safety checks to uncover risks in models, apps, and infrastructure.
AI red teaming should be more than prompt bombing clever prompts. But today's AI red team market is a mix of products, services, and hybrid approaches that can befuddle...everyone. Here's How To Build AI Red Teams That Actually Work here: www.forrester.com/blogs/how-to...
30.09.2025 20:09 β
π 1
π 1
π¬ 0
π 0
Securing AI's M&A Feeding Frenzy Is On
Explore how recent cybersecurity acquisitions are transforming AI security. Learn what CISOs must do to manage enterprise risk, vendor consolidation, and new threats like prompt injection.
$2.0+ billion dollars, 8 vendors, 8 acquisitions in 18 months. Thereβs a securing AI feeding frenzy happening in cybersecurity that is reshaping vendor platforms.Give this a read to find out why it matters and what it means: www.forrester.com/blogs/securi...
22.09.2025 16:39 β
π 1
π 0
π¬ 0
π 0
Vibe Hacking And No-Code Ransomware: AIβs Dark Side Is Here
AI is no longer just a tool for defenders; itβs now a weapon in the hands of cybercriminals.
Vibe Hacking And No-Code Ransomware: AIβs Dark Side Is Here: Anthropicβs August 2025 Threat Intel Report is one of the most fun reads of the year. We summarize some of the key elements and offer CISOs advice on what to do about it here: www.forrester.com/blogs/vibe-h...
28.08.2025 17:21 β
π 0
π 0
π¬ 0
π 0
How To Choose A Security Platform Without Getting Burned
Not all security platforms are created equal. Get five tips on how to separate real platforms from glorified product bundles.
My coauthor @jessburn.bsky.social and I just released our work on security platforms. We don't attempt to articulate all the various products that comprise a platform. Instead, we focus on the components, outcomes, and benefits platforms bring. Give the blog a read: www.forrester.com/blogs/how-to...
30.06.2025 13:39 β
π 2
π 1
π¬ 0
π 0
Zscaler Snatches Up Red Canary: The Good, The Bad, And The Concerning
Zscaler acquires Red Canary, bringing MDR and Zero Trust together. Check out Forrester's analysis of the good, the bad, and the concerning.
Zscaler announces its intent to acquire Red Canary. SSE meets MDR in a platform play.
The Good: Visibility boost
The bad: Integration unknowns
The concerning: Culture clash?
Check out the full blog from us here: bit.ly/44Z9vYC
28.05.2025 22:52 β
π 0
π 0
π¬ 0
π 0
Then, on Thursday April 24th at 2:20 PM Eastern I'll be leading a session at the SANS Cybersecurity Leadership Summit 2025 to help CISOs think about their security program as a profit center, not a cost center. This is a free event that you can register for here: www.sans.org/cyber-securi...
22.04.2025 14:37 β
π 3
π 1
π¬ 0
π 0
LinkedIn
This link will take you to a page thatβs not on LinkedIn
Action packed week in webinars! In just a few minutes Merritt Maxim, Alla Valente, and I will be delivering a webinar on "Leading Through Volatility" for security leaders. Forrester clients can register here: www.forrester.com/webinar/Lead...
22.04.2025 14:35 β
π 1
π 0
π¬ 1
π 0
RSAC 2025 Early-Stage Expo Preview: AppSec, IAM, GenAI, SecOps, And More
As we put together our game plan for what to see at RSA Conference 2025, we want to scope out innovation. Here's trends to know going in.
RSAC Launch Pad and Innovation Sandbox represent two major chances for new vendors to show where our industry is headed. Heidi Shey and I give you a glimpse here: RSAC 2025 Early-Stage Expo Preview: AppSec, IAM, GenAI, SecOps, And More www.forrester.com/blogs/rsac-2...
08.04.2025 18:32 β
π 1
π 0
π¬ 0
π 0
Announcing The Forrester Waveβ’: Managed Detection And Response Services, Q1 2025!
The third installment of the Forrester Managed Detection and Response (MDR) Services Waveβ’ is now live. Thereβs so much to love about the MDR market: fantastic providers, engaged clients, and meaningf...
Finally there's a threepeat worth talking about in 2025...in this case it's me finishing and releasing the third and newest edition of the MDR Wave! Give the blog a read! Announcing The Forrester Waveβ’: Managed Detection And Response Services, Q1 2025! forrester.com/blogs/announ...
27.02.2025 20:27 β
π 2
π 0
π¬ 0
π 0
Choose Your Own MDR Adventure: Avoid The Free-For-All Of βNewβ MDR Services
Managed detection and response (MDR) has successfully claimed the crown of all managed security services for making and keeping clients happy.
In pursuit of sustaining their success, MDR providers now offer a wild mix of services that sometimes make MDR better and other times just satisfy investors chasing growth. For more read what @jessburn.bsky.social and I just released: www.forrester.com/blogs/choose...
05.02.2025 20:12 β
π 1
π 1
π¬ 0
π 0