Cloud, Identity & SaaS
AI and wireless research point to control-plane blind spots
Unit 42 published research on autonomous AI cloud attack simulations and AirSnitch wireless attacks during the week. CISA also added Marimo CVE-2026-39987 to KEV on April 23, reinforcing the need to review exposed developer and infrastructure interfaces.
The common operational theme is not one vendor product. It is whether cloud, wireless and developer control planes are visible enough for defenders to detect abnormal automation and data access.