Vorlon Blog

Featured Blog

What the Canvas Educational Platform Breach Tells Us About Ecosystem Security

In early May 2026, the cybercrime group ShinyHunters walked into one of the most widely used learning management platforms on the planet and walked out with 3.65 terabytes of data. Nearly 275 million ...

Vorlon Blog

What the Canvas Educational Platform Breach Tells Us About Ecosystem Security

Explore Categories

What the Canvas Educational Platform Breach Tells Us About Ecosystem Security

ShinyHunters Breached Charter, Carnival, and 7-Eleven in 30 Days

The FBI Just Warned About Kali365. Microsoft 365 OAuth Tokens Are the Target.

Multi-Agent Security Is a Different Problem. It Needs a Different Solution.

Good News: Anthropic Made Claude More Secure. Bad News: That's Not Enough.

TeamPCP Breached GitHub by Poisoning a Tool Developers Already Trusted

What the Microsoft AI Agent RCE Vulnerability Tells Us About Prompt Injection Risk

Follow the Data: Agentic AI Broke the Security Stack

The Mini Shai-Hulud Campaign: How a npm Attack Became the First AI Supply Chain Threat

What Is Agentic Ecosystem Security?

FinServ Third-Party Risk Management: Meet the Execution Layer

The Vercel Incident: OAuth Tokens and the AI Supply Chain Attack

AI Security Risks: The Ultimate Guide for CISOs

Top Findings: The 2026 Agentic Ecosystem Security Gap Report

Anodot Breach Exposes Snowflake Customer Data, Including Rockstar Games

Five Things RSAC 2026 Taught Us About Securing AI Agents

From First Signal to Final Action: Introducing the AI Agent Flight Recorder and Action Center

AI Agent Security: Complete Monitoring and Protection Guide

MCP Security: How to Protect Model Context Protocol Implementations

HIPAA Was Not Written for AI Agents. The 2026 CISO Report Shows What That Costs Healthcare

The Visibility Problem Insurance CISOs Haven't Priced Into Their AI Risk Models

Why FinServ, the Most Security-Invested Sector, Still Has an AI Agent Problem

Survey of 500 CISOs Shows Threat Has Moved to Engine Room. Security Architecture Hasn't

DataMatrix™: Vorlon's Patented Approach to Agentic Ecosystem Security

Where Cloud Security Stops and SaaS Risk Begins: Understanding Wiz’s Coverage Boundaries

Salesforce Shield vs. Ecosystem Security: Where Platform Protection Ends

451 Research: Why AI and SaaS Security Are Converging

Mandiant Research on ShinyHunters Vishing: Why MFA-enabled Doesn’t Mean Protected

What Is AI Security Posture Management (AI SPM)? Intro Guide

Identity Security: A Complete Introductory Guide

Gartner Analysis on How SaaS Ecosystem Security Risk Maps to Vorlon’s Approach

API Security: Top Tips, Best Practices, and Strategies

Application Security Assessment: How to Calculate the Risk

AI Runtime Security: How to Protect Your AI from New Threats

Security Compliance: Practices, Rules, and Challenges (2026)

What Is Third-Party Risk Management? A Comprehensive Guide

How the Gainsight Breach Exposed a Growing SaaS Supply Chain Threat

MCP Security: New Risks and Best Practices to Protect Yourself

IBM's 2025 breach report: How bad is the AI governance gap?

Agentic AI Security: New Threats and Best Practices

What Is SaaS Security? Types, Risks, and Best Practices

What Is Data Security? Top Risks, Threats & Best Practices

What the Salesloft Drift breaches reveal about 4th-party risk

Vorlon Brings SaaS and AI Security to Hou.Sec.Con 2025

Salesloft Drift Breach: What Happened & How to Protect Yourself

Deloitte Features Vorlon's GenAI-Enabled Security Solution

What Is SSPM? A Guide to SaaS Security Posture Management

What Is Non-Human Identity? NHI Security Threats and Management

ShinyHunters Exploits Salesforce, Detection and Response Tips

Justin Lam’s SSPM Reality Check: Secure the Ecosystem, Not Just the App

Elevating Security Operations with the Vorlon and Google Security Operations Integration

Unifying SaaS and AI Security: Why Vorlon Is Looking at the Forest, Not Just the Trees

Vorlon MCP Server & DataMatrix Technology

Vorlon Is Headed to Black Hat USA 2025 — See You in Startup City!

Commvault Metallic Microsoft 365 Breach & What to Do Next

The Pearson Breach: How It Happened and Lessons Learned

Rand-User-Agent Attack: How It Happened & How to Protect Yourself

Verizon DBIR Reveals Third-Parties Involved in 30% of Breaches

Introducing DataMatrix™: Cracking Open the Black Box of SaaS Security

Vulnerabilities Gonna Vulnerability—And Third-Party Risk Won’t Manage Itself

Oracle Health Breach: What Security Teams Need to Know

The Blind Spots in SaaS Security: Q&A with Adam Burt Part 3

Compromised GitHub Action Targets Coinbase in SaaS Security Breach

Q&A with Adam Burt Part 2: The Hidden Dangers in Your SaaS Integrations

New OAuth Phishing Attack on GitHub: What Security Teams Must Know

Q&A with Adam Burt Part 1: Why SaaS Breach Investigations Are So Hard

How Silk Typhoon Exploits IT Supply Chains and What You Can Do

Vorlon, Securing Financial SaaS Ecosystems, Sponsors FS-ISAC 2025

Discover Vorlon at RSAC 2025: A New Approach to SaaS Ecosystem Security

Grubhub Data Breach: A Costly Meal for Customers, Drivers, and Merchants

APIs in Healthcare: Transforming Data Sharing, Security, & Compliance

Meet Vorlon at ViVE 2025: Addressing Third-Party Risks in Healthcare IT

The Postman Data Leak - Exposing the Hidden Risks of API Development

Otelier Breach: When Hotel Management Checks Out

Snowflake Breach Response Playbook

The Stiiizy Data Breach: Lessons for Mitigating Third-Party Security Risks

BeyondTrust Breach: Implications for U.S. Treasury and beyond