Trending
My news
Find Feeds
My feeds
Delivery settings
Plans
My earnings

Help
Blog

Follow us on X (twitter)
Follow us on Facebook

Log in

Find more feeds

The Nine Lives Brief banner

The Nine Lives Brief

Subscribe to Nine Lives, Zero Trust, and get security insights delivered to your inbox.

Here's what you'll get:

Zero Trust insights you can actually use
DevSecOps practices for building security into your pipeline
Threat intel worth knowing
Cloud security tips from the trenches
Secure coding and shift-left strategies
The occasional cat pun (we're paranoid about spam, not fun)

Whether you're building secure infrastructure, automating compliance, or navigating the multi-cloud maze, this newsletter has you covered.

Filter by topic to get precisely what you need. Unsubscribe anytime.

Stay curious. Stay secure. Land on your feet.

Publisher: jerrad.dahlager

Message frequency: 0.18 / day

Tags: cybersecurity Azure terraform kubernetes AWS GCP hybrid cloud IAM infosec Intune CI/CD cloud security zero trust devsecops secure coding threat intel Google Cloud M365 Entra ID multi-cloud SIEM container security IaC

Message History

From Authorization to Action: Operationalizing CISA's Microsoft Cloud Logs Playbook in Sentinel2 days

CISA revised the Microsoft Expanded Cloud Logs Implementation Playbook on May 1, 2026. The document itself is not a shiny new product launch. The revision history calls it version 1.1 with general content and URL up...

Read full story

Semantic Kernel CVEs: Prompt Injection Has a Runtime Problem4 days

Prompt injection is easy to underestimate when the model can only answer with text. The worst outcome looks like a bad summary, a leaked instruction, or a response that followed the wrong source.

In a tool-using agent, that assumption breaks fast.

A compromised document, support ticket, website, email, or retrieved chunk can influence the model’s next tool call....

Read full story

Copy Fail in the Cloud: A Defender, Sentinel, and AKS Response Guide for CVE‑2026‑314311 week

A Linux local privilege escalation bug is easy to dismiss if you only think in traditional server terms: “An attacker already needs local access, so how bad can it be?”

In cloud environments, that assumption breaks fast.

A compromised container, a self-hosted CI runner, a developer box, a notebook environment, or a low-privileged shell on a Linux workload can al...

Read full story

Block Device Code Phishing in Entra Without Breaking Legit Workflows2 weeks

Device code phishing is nasty because the user does not hand over a password. They hand over a session.

The lure sends the victim to a legitimate Microsoft device sign-in page. The victim enters a short code. Entra ID issues tokens to the attacker’s waiting client. MFA can still be satisfied because the victim completed the approval ceremony at Microsoft, not on a fake...

Read full story

Agent 365 Ships May 1. I Tested the Defender Playbook for AI Agent Attacks.3 weeks

Microsoft Agent 365 goes generally available on May 1, 2026. Most launch-week posts will explain what it is.

I wanted to answer a different question:

What does an AI agent attack look like in a real Microsoft defender stack before Agent 365 becomes broadly available as Microsoft’s control plane for agent governance and security?...

Read full story

Login to follow.it

Keep me logged in

Or:

Don't have an account yet?