Welcome to The Cybersecurity Pulse (TCP)! I'm Darwin Salazar, GTM lead at Monad and former detection engineer in big tech. Each week, I bring you the latest security product innovation and industry news. Subscribe to receive weekly updates!

Share

Cloud Application Control for ChatGPT Enterprise Users

Shadow AI is top of mind for security leaders.

With dope.security Cloud App Controls block personal logins and allow only your company’s ChatGPT Enterprise workspace, all enforced right on the endpoint.

No proxy layovers, no latency, no privacy trade-offs—just nonstop protection with a single click.

Lock Down Risky AI Usage Today

👉 Want to sponsor the TCP newsletter? Learn more here.

Howdy! 👋🏼 I hope you’re doing well wherever you’re tuning in from. The weeks after hacker summer camp always feel like a lull with folks recovering from con crud, kids going back to school, temps cooling off, GTM teams catching their breath etc.

Of course, the security train keeps going and so much takes place on a weekly basis so.. no rest for the wicked. Let’s dive in!

TL;DR📚

• 🏆 Palo Alto Networks hits $10B revenue run-rate as first pure-play security company with stellar Q4 execution.. Deep dive below.

• 🤖 Grammarly automates security with Wiz MCP Server showcasing real-world MCP adoption for security use cases

• 🔓 Okta open-sources Auth0 detection rules catalog for identifying anomalous activity and misconfigurations Auth0

• 🔧 Intruder releases free Autoswagger tool to detect unauthenticated APIs leaking sensitive data

• 🔐 Microsoft Azure partners with Marvell for cloud HSMs providing FIPS 140-3 Level 3 certified hardware security modules for Azure Cloud HSM service

• 💰 SandboxAQ enters non-human identity security with AQtive Guard Protect, backed by $950M funding from Eric Schmidt, Ray Dalio, and Marc Benioff

• 🛡️ Google Cloud unveils AI agent security capabilities at Security Summit 2025 with new capabilities for GenAI and agentic AI security

• 🎯 Doppel and Filigran integrate threat intelligence embedding phishing and brand impersonation alerts directly into the OpenCTI platform

Let’s cyber 🕺🏽

⚒️ Picks of the Week ⚒️

🏆 Palo Alto Networks Stellar Q4FY25 Performance

Palo Alto Networks reported earnings on Monday and Q4FY25 was yet another blow out quarter with stellar execution.

Key highlights from the quarter:

• Q4 revenue grew 16% year-over-year to $2.5 billion, with full fiscal year 2025 revenue reaching $9.2 billion (up 15% YoY).. This effectively puts $PANW at a $10B run-rate.. First pure play security company to achieve this milestone.

• Sold over 3 million Prisma Access Browser licenses in Q4 alone

  • Talon acquisition is paying off well

• Their co-founder and CTO, Nir Zuk is retiring. Lee Klarich, CPO, will be taking the reigns.

• 400+ XSIAM customers w. avg. $1M ARR per customer (2x YoY)

• Sounds like they’re working on an email security solution which will be part of the XSIAM platform

• Maintained elitestatus as a 'Rule-of-50' company for the fifth consecutive year. Rule of 50 = Revenue Growth Rate (%) + Profit Margin (%) ≥ 50

• Platformization continues to be a major theme

Masterclass on execution from Palo Alto Networks. I honestly think anyone who is doubting their CyberArk acquisition + path forward on IAM is not paying attention.

Dig deeper here:

• Earnings presentation deck

• Earnings call transcript

Free 'Autoswagger' Tool Finds the API Flaws Attackers Hope You Miss

The 2022 Optus breach exposed millions of customer records via a weak API. Today, Intruder still finds the same issues at major companies – some so simple your gran could exploit them.

That’s why we built Autoswagger: a free, open-source tool that detects unauthenticated APIs leaking sensitive data – before attackers do.

Learn more about Autoswagger here!

Inside Grammarly’s AI-driven automation with the MCP Server for Wiz

MCP servers are powerful for fetching context and context makes all the difference in security. In recent months, we've seen (and covered) many vendors deploying their own MCP servers, but we haven't heard much on the adoption front.

This post by Wiz provides an inside look at how Grammarly is using the Wiz MCP server to automate repeatable security tasks and help speed up triage.

Kudos to the Wiz team for publishing this!

Okta open-sources catalog of Auth0 rules for threat detection

Okta has open-sourced its internal catalog of detection rules for Auth0 aimed to detect anomalous activity and misconfigurations. Highly recommend digging into this if your org. runs Auth0 in any way, shape, or form.

You can find the catalog here.

Kudos to the Okta Identity Defense Operations for this!

🔮 The Future of Security 🔮

Note: Given the influx of news this week, I didn’t have the chance to parse through and synthesize everything. Thus, I’m leaning on AI to do some of the heavy lifting.

AI Security

Google Cloud adds new protections for AI agents at Security Summit 2025

Google Cloud recently had it's Security Summit 2025 and depicted above are it's three newest capabilities for AI security.

You can read more about their new features here and watch the summit sessions here.

Cloud Security

Microsoft Azure chooses Marvell for cloud hardware security modules

You wouldn't necessarily think of Marvell as a security company since they're more of a semiconductor chip designer, but they do have a long-standing partnership with Microsoft. Marvell's Hardware Security Modules (HSMs) are already used under the hood for Azure Key Vault and Key Vault Managed HSM and now it'll also power Azure Cloud HSM.

"Azure Cloud HSM is a highly available, single-tenant service that allows customers to manage cryptographic keys and perform cryptographic operations within their own dedicated, cloud-based HSM cluster. FIPS 140-3 Level 3 certified, Azure Cloud HSM gives customers secure, direct, end-to-end encrypted access over a private, dedicated link from their virtual network."

HSMs are crucial in heavily regulated environments and there are many use cases for it including confidential computing, but the space doesn't get much love cause it's not "sexy". It's a very important component of the security ecosystem. Thought it'd be worth to double-click on this as it brings great memories from when I did medical device security at J&J back in the day *shrug*

More Cloud Security news ⬇️

• Build to Runtime, Covered: A New Standard for Container Image Visibility (Wiz)

• Palo Alto Networks Unveils Quantum Security Readiness with Multi-Cloud Network Security

Identity Security

SandboxAQ Unveils AQtive Guard Protect at Black Hat 2025 to Tackle AI Identity Risks

SandboxAQ has entered the non-human identity security chat. SandboxAQ is interesting for many reasons including that 1) it's raised $950M since spinning out of Alphabet in 2022, 2) it's investors include Eric Schmidt (Chairman + ex-Google CEO), Ray Dalio, Marc Benioff, and other notable names/firms, 3) it's tough to describe all they do.

Here's how they describe themselves:

"SandboxAQ is a B2B company delivering AI solutions that address some of the world's greatest challenges. The company’s Large Quantitative Models (LQMs) deliver critical advances in life sciences, financial services, navigation, cyber and other sectors."

Will be interesting to watch their security approach develop over time.

More Identity Security news ⬇️

• CrowdStrike Expands Falcon Platform with Next-Gen Identity Security

Security Operations

Doppel and Filigran Integrate to Streamline Threat Intelligence

Doppel and Filigran announced an integration that embeds Doppel's phishing and brand impersonation alerts directly into Filigran's OpenCTI platform. This is aimed at helping security teams investigate multi-channel social engineering threats using best-of-breed solutions without the tab swtiching.

Doppel has quickly emerged as a leader in the social engineering (fraud, phishing, brand impersonation) security space which relies heavily on threat intel so this is a dope partnership for mutual customers.

More SecOps news ⬇️

• Druva introduces AI agents to streamline workload recovery and incident response

Interested in sponsoring TCP?

Sponsoring TCP not only helps me continue to bring you the latest in security innovation, but it also connects you to a dedicated audience of ~7,300 CISOs, practitioners, founders, and investors across 100+ countries 🌎

👉 Learn more here!

Bye for now 👋🏽

That’s all for this week… ¡Nos vemos la próxima semana!