board oversight
5 posts
Article
Your AI features are now your attack surface
Meta has confirmed over 1,000 Instagram accounts were compromised through abuse of its AI chatbot - a board-level view of the control failure.
Article
Biometrics outlive the breach
Biometric data held by identity verification providers is non-revocable; board exposure persists regardless of any confirmed incident.
Article
Microsoft issued a login code no one requested
A single-use Microsoft code arriving unrequested is evidence an identity boundary acted without its owner - a control that must be verified, not trusted.
Article
The record count is not the breach
A board-level brief on the healthcare data breach: access governance did not hold at runtime, and assurance must now be proven, not assumed.
Article
You still own every decision you automated.
When automation decides in threat detection and response, the judgment moves but the accountability does not - and the organisation owns every outcome it cannot explain.