Jonathan Care

This is my ontology. 991 entities — threat actors, malware, CVEs, relationships — built over months of work.

That's context engineering. Not prompt engineering.

The CISO who bans AI doesn't stop AI use. They stop visible AI use. Shadow AI follows prohibition, not permission.

Security vendors have discovered AI. So have the attackers.

Every booth at RSA will say "AI-powered". Ask any of them what they're doing about prompt injection or context poisoning and watch the subject change.

Compliance theatre got a software update.

CISA Emergency Directive: Cisco SD-WAN auth bypass (CVSS 10), exploited since 2023. Patch now, no workaround, assume prior compromise.

Also active: Dell RecoverPoint CVSS 10, Chrome UAF, two RoundCube RCEs.

cisointelligence.substack.com/p/breaking-four-cves-under-active-exploitation

The Pentagon declared Anthropic a supply chain risk. Not for a breach. Because they refused to remove AI safety guardrails.

DoD wanted autonomous weapons decisions + mass surveillance capability. Anthropic said no.

For CISOs: AI vendor safety commitments are now subject to government compulsion.

Ransomware payments: 28% of attacks in 2026. Record low. Not a win.

Operators shifted from encryption to exfiltration. No decryption key to negotiate. Marquis v. SonicWall heads to trial. Vendor liability for breach pathways is becoming case law.

#CISO #CyberSecurity

The CISO question isn't "which Guardian Agent do I buy?"

It's: does this agent have security properties intrinsic to how it's built, or does it need external supervision to behave?

Those are different problems. The incumbents are building better dashboards for the second type.

Lucky Break Chapter One - GOLDEN BALLS

With a little holiday time on my hands, I'm publishing a story I've had on the back burner for some time. Lucky Break (Chapter One)

Leadership Compass: Generative AI Defense The Generative AI Defense (GAD) market addresses the emerging cybersecurity challenges posed by AI technologies. It focuses on security and compliance solutions that protect AI interactions,...

I'm pleased and proud to announce that @kuppingercole's Leadership Compass for Generative AI Defense is now available to members! Simply login and buff.ly/lZyFT73 will give you one of the first analyst reports into this area, offering valuable advice to the CISO or security architects

What It Is to be In Demand. An Enlightening Read for Sunday, 23rd November 2025. "It's pop-u-lar..."

In today's SICO Intelligence Sunday Read: "It's pop-u-lar..."

Grand Scale Deja Vu, Dragging Systems into the 21st Century, How to Handle the Threat Landscape, Painful Exposure: Make the Move, Another Party's Over, and Who's Doing What Where. It's CISO Intelligence for Wednesday, 19th November 2025. Another digital tsunami, this new-fangled thing called progress, the lesson for today, keeping all bases covered, the party's over, and the same but different.

In today's CISO Intelligence: Another digital tsunami, this new-fangled thing called progress, the lesson for today, keeping all bases covered, the party's over, and the same but different.

Dances in the Shadows, The Fault in Our Smart Machines, Ransomware That Multitasks, Retirement Revoked, Defense Under Attack, and Welcome Warnings. It's CISO Intelligence for Monday, 17th November 2025. The choreography doesn't always tell the story, when trust becomes a question mark, a dubious crown, a new use for a resurrected tool, not the Bond villain but close, and the red alerts we will all…

In today's CISO Intelligence: The choreography doesn't always tell the story, when trust becomes a question mark, a dubious crown, a new use for a resurrected tool, not the Bond villain but close, and the red alerts we will all like.

The Soft Side of Cyber Warfare. A Heartwarming Read for Sunday, 16th November 2025. A very classy move.

In today's CISO Intelligence: A very classy move.

Into the Eye of the Storm. An Eye-Opening Read for Saturday, 15th November 2025. The alarm bells should be ringing.

The alarm bells should be ringing.

Digital Weeds, What Gatekeeping? Scattered Secrets, A Good Cyber Wipeout, Surprise Open Sesame, and The Glove Masking the Strike. It's CISO Intelligence for Friday, 14th November 2025. The never-ending pruning story, who left the doors unlocked? When privacy goes out of the window, the day the tide turned, a major blunder, and subtlety: the unwanted gentle touch.

On today's CISO Intelligence: The never-ending pruning story, who left the doors unlocked? When privacy goes out of the window, the day the tide turned, a major blunder, and subtlety: the unwanted gentle touch.

And There It Was: Gone, Due Diligence is Key, Keep The Shields Up, The Leading Threats in the System, Donning New Armour, and An Amusing Plot Twist. It's CISO Intelligence for Wednesday, 12th November 2025. The magic trick no-one wants, no time for slacking, do the homework! Making big waves, raising the defensive game, and oh - the irony!

In today's CISO Intelligence: The magic trick no-one wants, no time for slacking, do the homework! Making big waves, raising the defensive game, and oh - the irony!

Pictures Hiding Secrets, Working in a Different Hue, A Change of Plan, The Restart: Less Patience Required, Convenience vs Security, and An Unexpected Reveal. It's CISO Intelligence for Monday, 10th November 2025. What you see is not always what you get, not the usual teamwork, rapid rethink required, rebooting is now on steroids, too many hands cause chaos, and secrets laid bare.

In today's CISO Intelligence: What you see is not always what you get, not the usual teamwork, rapid rethink required, rebooting is now on steroids, too many hands cause chaos, and secrets laid bare.

Gone Media Phishing. An Enlightening Read for Sunday, 10th November 2025. The doppelgänger dilemma.

In todays weekend CISO Intelligence: The doppelgänger dilemma.

Inside the Virtual Matrix. An Illuminating Read for Saturday, 8th November 2025. Nesting doll syndrome?

In today's weekend CISO Intelligence: Nesting doll syndrome?

Failed Protection, Clickety Click, Protecting the Purse, Is It Secret: Is It Safe?, Exposing Lies, and Blocking The Great Pretenders. It's CISO Intelligence for Friday, 7th November 2025. A most ingenious paradox, just one smooth move, money making the world go around, guarding the vault, when tall tales get called out, and who's zooming who?

In today's CISO Intelligence: A most ingenious paradox, just one smooth move, money making the world go around, guarding the vault, when tall tales get called out, and who's zooming who?

Alliances are Reshaping the Landscape, Security is Never Static, The Gap That Needs A Bridge, Good News: The Crypto Chain is Breaking, Crossing Ethical Lines, and LOLs No More. It's CISO Intelligence for Wednesday, 5th November 2025. Looks like the families just shook hands, a change of season doesn’t mean time to relax, when reality bites, untangling woven webs, it's scary when the protectors join the dark side, and the party's…

In today's CISO Intelligence: Looks like the families just shook hands, a change of season doesn’t mean time to relax, when reality bites, untangling woven webs, it's scary when the protectors join the dark side, and the party's over.

The macOS Security Blanket, A New Sniffer Dog, The Stalking Upgrade, The Art of Deception, An MS Fire Alarm, and When Good Turns Bad. It's CISO Intelligence for Monday, 3rd November 2025. For the moments that get missed, keeping noses to the ground, unseen and unwanted guests, mimicry is not always a good thing, all hands on deck: now, and a full one-eighty.

In today's CISO Intelligence: For the moments that get missed, keeping noses to the ground, unseen and unwanted guests, mimicry is not always a good thing, all hands on deck: now, and a full one-eighty.

Not Just Another Brick in the Wall. A Reassuring Read for Sunday. 2nd November 2025. A whole new ballgame.

On today's CISO Intelligence: A whole new ballgame.

Donning New Armour. A Reassuring Read for Saturday, 1st November 2025. A new guardian

In today's CISO Intelligence: A new guardian.

Ghosts in the House, Hidden Hands Wreaking Havoc, Look: No Hands, Access Redefined, Prestige Front: Dirty Tricks, and the Abuse of Trust. It's CISO Intelligence for Friday, 31st October 2025. Not all specters wear sheets, shadow workers, invisible perils, raising the security game, getting blinded by status, and the art of exploitation.

In today's CISO Intelligence: Not all specters wear sheets, shadow workers, invisible perils, raising the security game, getting blinded by status, and the art of exploitation.

Consent: Power vs Choice, The Crack in the Cloud, The Art of Digital Disguise, A Boring but Necessary Job, The Imitation Game, and Lock-Out: The Clock is Ticking. It's CISO Intelligence for Wednesday, 29th October 2025. Consent is a choice, convenience isn't always a good thing, when the joke turns to malice, the least sexy work with the greatest priority, the silent art of digital disguise, and use it or lose it!…

In today's CISO Intelligence: Consent is a choice, convenience isn't always a good thing, when the joke turns to malice, the least sexy work with the greatest priority, the silent art of digital disguise, and use it or lose it!

Deception in Living Colour, Yesterday’s Tools: Someone Else’s Weapon, The Next Phase of Development, Communication Issues, The "Cunning Disguise" Scenario, and Egregious Measures. It's CISO Intelligence for Monday, 27th October 2025. Colour us conned, when the unseen invites the unwanted, it's never too late to upgrade, learning to speak the same language, not every helper has your back, and even empathy can be weaponized.

In today's CISO Intelligence: Colour us conned, when the unseen invites the unwanted, it's never too late to upgrade, learning to speak the same language, not every helper has your back, and even empathy can be weaponized.

The Mindset Shift. A Reflective Read for Sunday 26th October 2025. Things tend to work best when no one’s trying too hard.

In today's CISO Intelligence: Things tend to work best when no one’s trying too hard.

The Season of Vigilance Returns. A Timely Reflection for Saturday 25th October 2025. Time to review what’s under the hood.

In today's CISO Intelligence: Time to review what’s under the hood.

An Old Face with New Intelligence, Defending Defense, Gifts with Unwanted Surprises, A Quiet Protector, A Firm No, and The Open Marketplace. It's CISO Intelligence for Friday, 24th October 2025. A blast from the past, there's a shift in the winds, not very festive surprises, when silent but efficient is a good thing, they cannot pass, and enough money can buy anything.

In today's CISO Intelligence: A blast from the past, there's a shift in the winds, not very festive surprises, when silent but efficient is a good thing, they cannot pass, and enough money can buy anything.

Plumbing New Depths, Non-Seasonal Scares, A Draft in the Wall, The Encryption Game, Who Will Buy, and The New Race Leader. It's CISO Intelligence for Wednesday, 22nd October 2025. A breakthrough that nobody wanted, it's never too early for horror stories, helping the help, the old hijack shuffle, everything has a price, and are you ready?

In Today's CISO Intelligence: A breakthrough that nobody wanted, it's never too early for horror stories, helping the help, the old hijack shuffle, everything has a price, and are you ready?