Subscribe:
RSS feed
It feels a bit like we have crossed a cyber event horizon with the release of Anthropic’s latest Mythos AI, an LLM optimised for vulnerability detection. Much of the noise centres on whether it enables better hacking at machine speed, which I believe is a bit of a distraction from the practical impact. The more […]
April 15, 2026
For most of the 20th century, intelligence appeared to be rising. The so called Flynn effect saw IQ scores climb steadily across the Western world, driven not by genetics but by environment, education, nutrition and critically, the spread of literacy and abstract thinking through books. That trend has now reversed. A large Norwegian study of […]
April 13, 2026
The AI conversation has been dominated by model size, training breakthroughs and eye-watering infrastructure spend but I get a real sense that this is increasingly the wrong lens. For me the true battleground is not where AI is built, it is where it is used and that place is inference. Inference is where AI models […]
April 12, 2026
Another week, another reminder that in AI, efficiency rarely means contraction, more likely expansion. As explored previously (When Less Becomes More,When Less Becomes More, Can AI Algorithmic Minimalism Topple GPU Dominance?), we are now seeing technical constraints being worked around in ways that will materially reshape the trajectory of AI’s evolution. The emergence of TurboQuant, […]
April 11, 2026
For most organisations and even those in the Cyber security industry itself, they still imagine their digital adversary as a system intruder. Firewalls are hardened, endpoints instrumented, identities wrapped in layers of conditional access and on and on … Yet the majority of losses are not coming from breached systems, they are flowing through human […]
April 8, 2026
Following on from my last missive (From Zero-Day to Zero-Hour, How Cyber Defence Lost Time) and responding to some of the comments that it has stimulated, particularly on how AI is rapidly extending our capacity to act. I agree, it accelerates decisions, automates complexity and compresses what once took teams of experts into the output […]
April 7, 2026
With the announcement of Anthropic’s Claude Capybara, codenamed Mythos, this signals a decisive shift in cyber risk. This is not simply a better tool; it is the first of what has been warned of for some time, a machine that compresses the distance between vulnerability discovery and exploitation to near zero. Where defenders once relied […]
April 3, 2026
As EY showcases its AI audit platform ‘Canvas’ in the Big 4 AI arms race, the UK’s Financial Reporting Council (FRC) has barely had time to publish its first guidance on generative and agentic AI. I see a familiar tension emerging, innovation is accelerating faster than the mechanisms designed to trust it. As I have […]
March 29, 2026
As an extended thought exercise from my earlier piece on the digital risk from smart city infrastructure in kinetic warfare scenarios, Iran’s expanding use of cyber operations against such civilian infrastructure represents not merely validation of that hypothesis or even just an escalation in conflict but I believe also a profound erosion of moral boundaries […]
March 25, 2026
For the past decade the value proposition of artificial intelligence has been largely defined by capability and scale. The biggest models, trained on the largest datasets and powered by the most compute, have set the pace of innovation. Performance benchmarks, parameter counts and inference speeds have been the metrics that dominated discussion. However, that equation […]
March 14, 2026
Following on the theme from my last missive, I believe the real prize in AI infrastructure is not datacentres, it is the orchestration layer. An orchestration layer built on a single foundational principle I have written about extensively – trust. Which is why Europe has a genuine opportunity to build the trust fabric for Artificial […]
March 12, 2026
Are we building sovereign AI infrastructure that is legally controlled but operationally fragile? The current conversation around sovereign AI is dominated by a sensible instinct, keep the models, data and compute that underpin critical national capability within national jurisdiction. Governments want AI infrastructure they control, regulate and can trust. Nice and tidy for the pen […]
February 28, 2026
An article that should not be ignored at any level of leadership – ‘Russia stepping up hybrid attacks, preparing for long standoff with West, Dutch intelligence warns‘. Whilst it talks to the current state of national Hybrid threats predominantly from Russia it has lessons for Organisations of any size operating in today’s digital threat landscape […]
February 27, 2026
As the market this week reacts to recent volatility in public cybersecurity stocks, many commentators are anchoring confidence in a familiar thesis: agentic AI expands the attack surface and therefore guarantees long-term growth for security vendors. It is appealing in its simplicity. It echoes every prior technology cycle, more software, more surface area, more risk, […]
February 23, 2026
Following my blog 2 weeks ago on ‘Cyber Tail risk‘, an interesting comment in response to the LinkedIn post for the blog spun off a side thread I felt worth tugging. To rebase the parallel theme I used in that earlier piece, before 2008, financial leaders were not short of warnings of what we now […]
April 17, 2026
0