SASE Has An AI Blind Spot. Inspecting Packets Is No Longer Enough.
For years, routing traffic through cloud proxies was good enough. Then work moved to the browser, AI entered the workflow, and the inspection model stopped keeping up
SASE combines network access and security controls to limit exposure from compromised users, devices, and cloud services; enforce least privilege.
Search across headline titles and summaries.
Background for this topic.
Secure access service edge (SASE) is an architecture that delivers network connectivity and security controls from cloud points of presence. It commonly combines SD-WAN with secure web gateways, firewall-as-a-service, cloud access security broker functions, and zero-trust network access. Requests are evaluated using identity, device posture, application, and other context rather than trusting a user solely because they are on a corporate network.
SASE concentrates enforcement and visibility in identity systems, policy engines, connectors, and provider infrastructure. An overprivileged administrator, compromised identity, incorrect access rule, or exposed connector can therefore permit broader access or bypass inspection; TLS inspection and centralized logging also create privacy and data-retention obligations. Mitigate these risks with phishing-resistant MFA, separate and least-privileged administrative roles, tightly scoped application-level access, tested policy changes, continuous connector and device-posture validation, and independent monitoring of administrative and access logs. Validate provider isolation, outage behavior, logging retention, and incident-support processes before consolidating critical controls.
Weekly headline count for the current query.
For years, routing traffic through cloud proxies was good enough. Then work moved to the browser, AI entered the workflow, and the inspection model stopped keeping up
New CISA guidance shows federal agencies how to use SASE to move from legacy TIC 2.0 to zero trust
Also: Rethinking SASE and AI's Impact on the Cyber WorkforceIn this week's panel, four ISMG editors discussed what the Musk vs. Altman trial exposed about OpenAI's governance program, how AI is reshaping the way enterprises think about security and why Cisco, Cloudflare, Arctic Wolf and other firms are redesigning their workforces for the AI era.
A Live Panel Discussion with CyberEdBoard and FortinetSecure Access Service Edge is entering mainstream adoption. Enterprises are shifting from point solutions to platforms. And AI is now at the core of SASE.
Many modern attacks happen entirely inside the browser, leaving little evidence for traditional security tools. Keep Aware shows why EDR, email, and SASE miss browser-only attacks and how visibility changes prevention. [...]
New CEO Dennis Monner Outlines Open Systems' Global Expansion, SASE DifferentiationNew CEO Dennis Monner said Open Systems stands out by combining SASE technology with 24/7 expert-led service. Backed by Swiss Post, the company aims to capture more enterprise customers in Europe and the U.S. who seek a trusted alternative to U.S. and Israeli vendors.
CEO Shlomo Kramer: Buying Aim Accelerates SASE Roadmap With ‘AI Brain’ IntegrationWith AI use surging across enterprises, Cato Networks has acquired Israeli startup Aim Security to embed AI protection into its core architecture. CEO Shlomo Kramer says Aim’s broad and deep coverage around enterprise AI use makes it the ideal fit for Cato’s SASE platform.
$238M Funding Round to Support Private POPs, Co-Piloted Policy and Global ReachCato Networks raised $238 million at a $4.8 billion valuation to accelerate AI integration into SASE. Co-founder and CEO Shlomo Kramer says AI will streamline security operations, improve agility and help secure generative AI workloads and business-critical systems.
Island CEO Mike Fey on Drivers for SASE, Identity Features in Enterprise BrowserIsland co-founder and CEO Mike Fey outlines how the enterprise browser is evolving through AI, SASE and hyperscaler investments to enhance governance, reduce backhaul traffic and support secure access across diverse industries such as healthcare and finance.
Deal Aims to Target Identity and AI Risks, SaaS Blind Spots With Unified SecurityBy acquiring Suridata, Fortinet plans to introduce SaaS Security Posture Management to its SASE platform. The update provides end-to-end visibility into SaaS apps, identity threats and AI plugin misuse, making SSPM a vital control plane in cloud-first security strategies.
The unpatched vulnerabilities, with a CVSS score of 8.6 to 10.0, can lead to remote code execution via authentication bypass
AI transforms secure access service edge (SASE) deployments, automating security policies and threat detection while coaching users on data protection.
Startup Hits $4.8B Valuation After Series E as It Disrupts VDI, Web Filtering ToolsIsland’s enterprise browser platform is gaining traction as a replacement for SASE and legacy VDI and web filtering tools. Backed by $250 million in Series E funding, the startup plans to scale up globally and enhance R&D to support secure, simplified digital work environments.
Ransomware groups are recruiting pen testers from the dark web to expand their operations, as revealed by Cato Network's Q3 2024 SASE Threat Report
Acquisition Set to Boost SASE Protection, Network Connectivity for Swiss BusinessesSwiss Post has signed an agreement to acquire Open Systems, a cybersecurity leader specializing in secure access service edge. The deal, expected to close by late 2024, will expand Swiss Post's offerings for secure digital communications for public and private organizations across Switzerland.