<?xml version="1.0" encoding="UTF-8"?><rss version="2.0"
	xmlns:content="http://purl.org/rss/1.0/modules/content/"
	xmlns:wfw="http://wellformedweb.org/CommentAPI/"
	xmlns:dc="http://purl.org/dc/elements/1.1/"
	xmlns:atom="http://www.w3.org/2005/Atom"
	xmlns:sy="http://purl.org/rss/1.0/modules/syndication/"
	xmlns:slash="http://purl.org/rss/1.0/modules/slash/"
	>

<channel>
	<title>Core6</title>
	<atom:link href="https://www.core6.com/feed/" rel="self" type="application/rss+xml" />
	<link>https://core6stg.wpenginepowered.com/</link>
	<description>Storage &#38; Backup Systems - Autonomously Secured</description>
	<lastBuildDate>Thu, 09 Jul 2026 14:17:28 +0000</lastBuildDate>
	<language>en-US</language>
	<sy:updatePeriod>
	hourly	</sy:updatePeriod>
	<sy:updateFrequency>
	1	</sy:updateFrequency>
	

<image>
	<url>https://www.core6.com/wp-content/uploads/2025/10/cropped-favicon-32x32.png</url>
	<title>Core6</title>
	<link>https://core6stg.wpenginepowered.com/</link>
	<width>32</width>
	<height>32</height>
</image> 
	<item>
		<title>Adhering to UK Cyber Essentials for Storage &#038; Backup Infrastructure</title>
		<link>https://www.core6.com/blog/adhering-to-uk-cyber-essentials-for-storage-and-backup-infrastructure/</link>
		
		<dc:creator><![CDATA[Yaniv Valik]]></dc:creator>
		<pubDate>Wed, 08 Jul 2026 08:31:26 +0000</pubDate>
				<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://core6stg.wpenginepowered.com/blog/storage-in-the-ai-era-what-enterprise-leaders-are-learning-about-performance-protection-resilience-2/</guid>

					<description><![CDATA[<p>During April, we met with Aimie Coole and Gary McIntosh, Field CTOs at Dell Technologies and long-time experts in cyber resilience. As we demoed StorageGuard and</p>
<p>The post <a href="https://www.core6.com/blog/adhering-to-uk-cyber-essentials-for-storage-and-backup-infrastructure/">Adhering to UK Cyber Essentials for Storage &amp; Backup Infrastructure</a> appeared first on <a href="https://www.core6.com">Core6</a>.</p>
]]></description>
										<content:encoded><![CDATA[
<p class="wp-block-paragraph">During April, we met with <a href="https://www.linkedin.com/in/aimie-coole-7a380840/" target="_blank" rel="noreferrer noopener">Aimie Coole</a> and <a href="https://www.linkedin.com/in/mcintoshgary/" target="_blank" rel="noreferrer noopener">Gary McIntosh</a>, Field CTOs at <strong>Dell Technologies</strong> and long-time experts in cyber resilience. As we demoed StorageGuard and walked through the configuration compliance tab &#8211; showing out-of-the-box policies for NIS2, NCSC CAF, DORA, NIST, ISO, PCI DSS, CIS, and more &#8211; both Aimie and Gary pointed out how useful it would be to include the <strong>UK Cyber Essentials </strong>framework, given how widely it’s used.</p>



<p class="wp-block-paragraph">Fast forward to June &#8211; we’re happy to add UK Cyber Essentials to the list of supported standards, and to thank Aimie and Gary for highlighting the gap.</p>



<p class="has-large-font-size wp-block-paragraph"><strong>What is UK Cyber Essentials?</strong></p>



<p class="wp-block-paragraph"><a href="https://www.ncsc.gov.uk/cyberessentials/overview" target="_blank" rel="noreferrer noopener">UK Cyber Essentials</a> is a government-backed certification scheme overseen by the UK National Cyber Security Centre (NCSC). It defines a baseline set of security controls to help organizations protect against common internet-based attacks.</p>



<p class="has-large-font-size wp-block-paragraph"><strong>How StorageGuard helps</strong></p>



<p class="wp-block-paragraph"><a href="https://www.core6.com/storageguard/" target="_blank" rel="noreferrer noopener">StorageGuard</a> automatically gathers configuration data from storage and backup systems and validates it against Cyber Essentials requirements. It provides a clear status view, along with detailed evidence showing how each requirement is (or isn’t) met.</p>



<figure class="wp-block-gallery has-nested-images columns-default is-cropped wp-block-gallery-1 is-layout-flex wp-block-gallery-is-layout-flex">
<figure class="wp-block-image size-large"><img fetchpriority="high" decoding="async" width="1024" height="683" data-id="14031" src="https://www.core6.com/wp-content/uploads/2026/07/Designer-49-1024x683.png" alt="" class="wp-image-14031" srcset="https://www.core6.com/wp-content/uploads/2026/07/Designer-49-1024x683.png 1024w, https://www.core6.com/wp-content/uploads/2026/07/Designer-49-300x200.png 300w, https://www.core6.com/wp-content/uploads/2026/07/Designer-49-150x100.png 150w, https://www.core6.com/wp-content/uploads/2026/07/Designer-49-768x512.png 768w, https://www.core6.com/wp-content/uploads/2026/07/Designer-49.png 1536w" sizes="(max-width: 1024px) 100vw, 1024px" /></figure>
</figure>



<p class="wp-block-paragraph">You can generate evidence-backed compliance reports &#8211; including the underlying configuration data &#8211; and quickly prove compliance. When deviations are found, StorageGuard highlights them with actionable guidance, including recommended steps or commands, surfaced in the UI, via email, or integrated with ITSM workflows.</p>



<figure class="wp-block-gallery has-nested-images columns-default is-cropped wp-block-gallery-2 is-layout-flex wp-block-gallery-is-layout-flex">
<figure class="wp-block-image size-large"><img decoding="async" width="1024" height="683" data-id="14030" src="https://www.core6.com/wp-content/uploads/2026/07/Designer-48-1024x683.png" alt="" class="wp-image-14030" srcset="https://www.core6.com/wp-content/uploads/2026/07/Designer-48-1024x683.png 1024w, https://www.core6.com/wp-content/uploads/2026/07/Designer-48-300x200.png 300w, https://www.core6.com/wp-content/uploads/2026/07/Designer-48-150x100.png 150w, https://www.core6.com/wp-content/uploads/2026/07/Designer-48-768x512.png 768w, https://www.core6.com/wp-content/uploads/2026/07/Designer-48.png 1536w" sizes="(max-width: 1024px) 100vw, 1024px" /></figure>
</figure>



<p class="has-large-font-size wp-block-paragraph"><strong>About Dell and StorageGuard</strong></p>



<p class="wp-block-paragraph">StorageGuard is part of the Dell Technologies <a href="https://www.dell.com/en-us/lp/dt/solutions-extended-technologies-complete" target="_blank" rel="noreferrer noopener">Extended Technologies Complete (ETC)</a> partnership program. It complements the Dell portfolio by providing security posture management &#8211; including configuration drift management &#8211; across both Dell and non-Dell storage and data protection systems. </p>



<p class="wp-block-paragraph">Through this ETC program, Dell customers can more easily access and evaluate StorageGuard in the context of their existing environments.</p>



<p class="has-medium-font-size wp-block-paragraph"><strong>Review a recent joint Dell + Core6 customer story &#8211; <a href="https://www.dell.com/en-us/blog/dell-and-core6-strengthen-storage-security-for-global-insurer/" target="_blank" rel="noreferrer noopener">Dell and Core6 Strengthen Storage Security for Global Insurer</a></strong></p>



<p class="wp-block-paragraph"></p>



<p class="wp-block-paragraph"></p>



<hr class="wp-block-separator has-alpha-channel-opacity"/>



<p class="wp-block-paragraph"></p>



<p class="has-medium-font-size wp-block-paragraph"><strong>Frequently Asked Questions (FAQs)</strong></p>



<h3 class="wp-block-heading has-small-font-size">What is UK Cyber Essentials?</h3>



<p class="has-small-font-size wp-block-paragraph">UK Cyber Essentials is a UK government-backed cybersecurity certification scheme that helps organizations protect against common cyber threats by implementing a baseline set of security controls. It is overseen by the National Cyber Security Centre (NCSC).</p>



<h3 class="wp-block-heading has-small-font-size">How does UK Cyber Essentials apply to storage and backup infrastructure?</h3>



<p class="has-small-font-size wp-block-paragraph">While Cyber Essentials does not focus exclusively on storage and backup systems, many of its requirements relate to secure configuration, access control, vulnerability management, and system hardening. Storage and backup platforms play a critical role in meeting these requirements and supporting cyber resilience.</p>



<p class="has-small-font-size wp-block-paragraph"><strong>How can organizations assess Cyber Essentials compliance for storage systems?</strong></p>



<p class="has-small-font-size wp-block-paragraph">Organizations can assess compliance by reviewing storage and backup configurations against Cyber Essentials requirements, identifying configuration gaps, documenting evidence, and implementing remediation actions where needed.</p>



<h3 class="wp-block-heading has-small-font-size">What evidence does StorageGuard provide for Cyber Essentials audits?</h3>



<p class="has-small-font-size wp-block-paragraph">StorageGuard generates detailed compliance reports that include configuration settings, assessment results, identified deviations, and supporting evidence that can help simplify Cyber Essentials audit preparation and reporting.</p>
<p>The post <a href="https://www.core6.com/blog/adhering-to-uk-cyber-essentials-for-storage-and-backup-infrastructure/">Adhering to UK Cyber Essentials for Storage &amp; Backup Infrastructure</a> appeared first on <a href="https://www.core6.com">Core6</a>.</p>
]]></content:encoded>
					
		
		
			</item>
		<item>
		<title>Storage in the AI Era: What Enterprise Leaders Are Learning About Performance, Protection &#038; Resilience </title>
		<link>https://www.core6.com/blog/storage-in-the-ai-era-what-enterprise-leaders-are-learning-about-performance-protection-resilience/</link>
		
		<dc:creator><![CDATA[Doron Youngerwood]]></dc:creator>
		<pubDate>Sun, 05 Jul 2026 12:57:05 +0000</pubDate>
				<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://core6stg.wpenginepowered.com/blog/we-didnt-expect-storage-security-to-be-cool-either-then-frost-sullivan-called-2/</guid>

					<description><![CDATA[<p>AI is rapidly reshaping enterprise storage.&#160; What started as a conversation about GPUs and infrastructure performance has evolved into something much broader: data growth, cyber resilience,</p>
<p>The post <a href="https://www.core6.com/blog/storage-in-the-ai-era-what-enterprise-leaders-are-learning-about-performance-protection-resilience/">Storage in the AI Era: What Enterprise Leaders Are Learning About Performance, Protection &amp; Resilience </a> appeared first on <a href="https://www.core6.com">Core6</a>.</p>
]]></description>
										<content:encoded><![CDATA[
<p class="wp-block-paragraph">AI is rapidly reshaping enterprise storage.&nbsp;</p>



<p class="wp-block-paragraph">What started as a conversation about GPUs and infrastructure performance has evolved into something much broader: data growth, cyber resilience, recovery readiness, governance, and entirely new architectural approaches.&nbsp;</p>



<p class="wp-block-paragraph">These themes were front and center during a recent <strong><a href="https://www.core6.com/resources/storage-leaders-virtual-panel-storage-in-the-ai-era-performance-protection-resilience/" target="_blank" rel="noreferrer noopener">Storage Leaders Virtual Panel</a></strong>, which brought together experts from <strong>Dell Technologies</strong>, <strong>NetApp</strong>, <strong>Hitachi Vantara</strong>, <strong>IBM</strong>, <strong>Infinidat (Lenovo)</strong>, and <strong>VAST Data</strong> to discuss how AI is changing the way organizations think about storage. </p>



<p class="wp-block-paragraph">While the panelists represented different vendors and viewpoints, there was remarkable agreement on one point: Storage is no longer just about storing data. It&#8217;s becoming the foundation on which enterprise AI initiatives succeed &#8211; or fail. </p>



<p class="has-large-font-size wp-block-paragraph"><strong>Storage Has Moved to the Center of the AI Conversation </strong></p>



<p class="wp-block-paragraph">One of the most striking observations of the discussion was how dramatically the storage conversation has changed over the past&nbsp;18 months.&nbsp;</p>



<p class="wp-block-paragraph">According to <strong>Itzik Reich, VP Mission Alignment at VAST Data</strong>, storage discussions used to be confined to infrastructure teams and procurement departments. Today, CTOs, Chief Data Officers, AI leaders, and even board members are involved because storage has become directly tied to AI outcomes. </p>



<p class="wp-block-paragraph">The metric that increasingly matters&nbsp;isn&#8217;t&nbsp;IOPS or throughput.&nbsp;It&#8217;s&nbsp;GPU&nbsp;utilization.&nbsp;</p>



<p class="wp-block-paragraph"><strong>Patrick Fay, AI Storage Product Manager at IBM</strong> reinforced this shift from another angle. AI is creating unprecedented pressure on infrastructure supply chains. The industry started by worrying about GPU shortages. Then memory became constrained. Now storage is experiencing similar pressures as demand drives up the cost of NAND and HDD capacity. </p>



<p class="has-large-font-size wp-block-paragraph"><strong>AI Doesn&#8217;t Create One Storage Problem. It Creates Four </strong></p>



<p class="wp-block-paragraph">According to Itzik, every phase of the AI lifecycle stresses storage differently.&nbsp;</p>



<ul class="wp-block-list">
<li>Training: Metadata often becomes the bottleneck before throughput. </li>



<li>Checkpointing: Massive bursts of write activity can leave GPUs idle while waiting for storage. </li>



<li>Inference: Latency matters more than average performance. </li>



<li>RAG: Storage must simultaneously act as a data lake, database, and vector store. </li>
</ul>



<p class="wp-block-paragraph">Patrick highlighted an&nbsp;additional&nbsp;challenge: organizations are dramatically underestimating how much data AI will generate. Many enterprises are seeing datasets expand several&nbsp;times over&nbsp;through embeddings, metadata, and AI-generated outputs.&nbsp;</p>



<p class="has-large-font-size wp-block-paragraph"><strong>The Biggest Gap Isn&#8217;t Technology. It&#8217;s Architecture </strong></p>



<p class="wp-block-paragraph"><strong>Felix Jorge, Field CTO at Hitachi Vantara</strong> argued that the biggest challenge isn&#8217;t technology. It&#8217;s architectural intent. </p>



<p class="wp-block-paragraph">Legacy environments were designed around predictable workloads and gradual growth. AI changes those assumptions completely.&nbsp;</p>



<p class="wp-block-paragraph">Organizations can no longer rely solely on capacity forecasting and periodic refresh cycles. Instead, they must design architectures that adapt continuously.&nbsp;</p>



<p class="has-large-font-size wp-block-paragraph"><strong>Ransomware Has Moved Beyond Encryption </strong></p>



<p class="wp-block-paragraph"><strong>Adam Gale, Field CTO – AI &amp; Security at NetApp</strong> observed that modern attacks are increasingly becoming three-stage operations: breach and encrypt, exfiltrate data, and corrupt recovery mechanisms. </p>



<p class="wp-block-paragraph">Felix&nbsp;expanded on&nbsp;this trend, explaining that attackers are increasingly targeting backup infrastructure, replication paths, recovery environments, privileged accounts, and immutable storage copies.&nbsp;</p>



<p class="wp-block-paragraph">The goal is no longer simply disruption.&nbsp;It&#8217;s&nbsp;the destruction of confidence in recovery.&nbsp;</p>



<p class="has-large-font-size wp-block-paragraph"><strong>Most Organizations Overestimate Their Recovery Readiness </strong></p>



<p class="wp-block-paragraph"><strong>Aimie Coole, Field CTO – Europe at Dell Technologies</strong> noted that many organizations assume recovery will work when needed. Unfortunately, that assumption is often wrong. </p>



<p class="wp-block-paragraph">Common issues include missing incident response plans, untested recovery procedures, outdated runbooks, poor communication processes, end-of-life infrastructure, and insufficient telemetry.&nbsp;</p>



<p class="wp-block-paragraph">As Aimie summarized: Most organizations test for backup success, not operational recovery success.&nbsp;</p>



<p class="wp-block-paragraph"><strong>Eric Herzog, CMO at Infinidat (Lenovo)</strong> took this argument further, encouraging organizations to treat cyberattacks as disasters and practice recovery accordingly. </p>



<p class="has-large-font-size wp-block-paragraph"><strong>Storage Still Has a Visibility Problem </strong></p>



<p class="wp-block-paragraph">Aimie argued that while storage teams&nbsp;generally have&nbsp;good visibility into capacity, availability, and performance, many have limited visibility into identity risks, privileged account exposure, configuration drift, recovery readiness, and backup security posture.&nbsp;</p>



<p class="wp-block-paragraph">Eric reinforced this point, arguing that storage teams are too often excluded from broader cybersecurity initiatives despite managing&nbsp;the vast majority of&nbsp;enterprise data.&nbsp;</p>



<p class="has-large-font-size wp-block-paragraph"><strong>AI Is Both the Threat &#8211; And the Defense </strong></p>



<p class="wp-block-paragraph">Adam brought an important note of optimism to the discussion.&nbsp;</p>



<p class="wp-block-paragraph">His view: We are entering a golden age of cyber resilience.&nbsp;</p>



<p class="wp-block-paragraph">For the first time, defenders have access to AI-powered tools capable of&nbsp;identifying&nbsp;anomalies, accelerating investigations, and strengthening security at scales that would previously have&nbsp;required&nbsp;thousands of analysts.&nbsp;</p>



<p class="wp-block-paragraph">At the same time, AI introduces new risks, including AI-generated phishing,&nbsp;deepfake&nbsp;impersonation, voice cloning, and data poisoning.&nbsp;</p>



<p class="has-large-font-size wp-block-paragraph"><strong>The Future of Storage </strong></p>



<p class="wp-block-paragraph">The session concluded with a discussion about storage refresh cycles.&nbsp;</p>



<p class="wp-block-paragraph">Patrick believes AI-focused storage infrastructure may evolve faster than traditional storage environments. Felix argued that organizations should focus less on refresh cycles and more on building architectures that can evolve incrementally over time.&nbsp;</p>



<p class="has-large-font-size wp-block-paragraph"><strong>Final Thoughts </strong></p>



<p class="wp-block-paragraph">Storage is no longer simply an infrastructure layer.&nbsp;</p>



<p class="wp-block-paragraph">It&#8217;s&nbsp;becoming a performance platform for AI, a control point for cyber resilience, a governance and compliance layer, and a business continuity dependency.&nbsp;</p>



<p class="wp-block-paragraph">The future of storage will be defined by an organization&#8217;s ability to balance performance, protection, and resilience simultaneously. </p>



<p class="wp-block-paragraph"><strong>Watch the recording of the Storage Leaders Virtual Panel at <a href="https://www.core6.com/resources/storage-leaders-virtual-panel-storage-in-the-ai-era-performance-protection-resilience/" target="_blank" rel="noreferrer noopener">https://www.core6.com/resources/storage-leaders-virtual-panel-storage-in-the-ai-era-performance-protection-resilience/</a></strong></p>



<figure class="wp-block-gallery has-nested-images columns-default is-cropped wp-block-gallery-3 is-layout-flex wp-block-gallery-is-layout-flex">
<figure class="wp-block-image size-large"><a href="https://www.core6.com/resources/storage-leaders-virtual-panel-storage-in-the-ai-era-performance-protection-resilience/" target="_blank" rel=" noreferrer noopener"><img decoding="async" width="1024" height="535" data-id="13981" src="https://www.core6.com/wp-content/uploads/2026/05/LinkedIn-Images-66-1024x535.png" alt="" class="wp-image-13981" srcset="https://www.core6.com/wp-content/uploads/2026/05/LinkedIn-Images-66-1024x535.png 1024w, https://www.core6.com/wp-content/uploads/2026/05/LinkedIn-Images-66-300x157.png 300w, https://www.core6.com/wp-content/uploads/2026/05/LinkedIn-Images-66-150x78.png 150w, https://www.core6.com/wp-content/uploads/2026/05/LinkedIn-Images-66-768x401.png 768w, https://www.core6.com/wp-content/uploads/2026/05/LinkedIn-Images-66-1536x803.png 1536w, https://www.core6.com/wp-content/uploads/2026/05/LinkedIn-Images-66-2048x1070.png 2048w" sizes="(max-width: 1024px) 100vw, 1024px" /></a></figure>
</figure>



<p class="wp-block-paragraph"></p>



<hr class="wp-block-separator has-alpha-channel-opacity"/>



<p class="wp-block-paragraph"></p>



<p class="has-medium-font-size wp-block-paragraph"><strong>Frequently Asked Questions (FAQs)</strong></p>



<h3 class="wp-block-heading has-small-font-size">What is AI-ready storage?</h3>



<p class="has-small-font-size wp-block-paragraph">AI-ready storage is storage infrastructure designed to support AI and machine learning workloads, including model training, inference, checkpointing, and retrieval-augmented generation (RAG). It must deliver high performance, low latency, scalability, and cyber resilience.</p>



<h3 class="wp-block-heading has-small-font-size">Why is cyber resilience becoming a storage issue?</h3>



<p class="has-small-font-size wp-block-paragraph">Storage and backup systems have become primary targets for ransomware attacks. If attackers compromise storage, backups, or recovery systems, organizations may be unable to restore critical business services after an attack.</p>



<p class="has-small-font-size wp-block-paragraph"><strong>What is storage security posture management?</strong></p>



<p class="has-small-font-size wp-block-paragraph">Storage Security Posture Management (SSPM) is the practice of continuously assessing the security configuration of storage and backup systems to identify: exposure to vulnerabilities and security advisories, security misconfigurations, configuration drift, compliance violations, and missing security controls</p>



<h3 class="wp-block-heading has-small-font-size">What should infrastructure leaders prioritize when preparing storage for AI?</h3>



<p class="has-small-font-size wp-block-paragraph">Infrastructure leaders should focus on: performance, data management, cyber resilience, recovery readiness, security posture management, governance and compliance, and scalability.</p>



<p class="has-small-font-size wp-block-paragraph">The most successful organizations treat performance, protection, and resilience as equally important requirements.</p>



<p class="wp-block-paragraph"></p>
<p>The post <a href="https://www.core6.com/blog/storage-in-the-ai-era-what-enterprise-leaders-are-learning-about-performance-protection-resilience/">Storage in the AI Era: What Enterprise Leaders Are Learning About Performance, Protection &amp; Resilience </a> appeared first on <a href="https://www.core6.com">Core6</a>.</p>
]]></content:encoded>
					
		
		
			</item>
		<item>
		<title>We Didn’t Expect Storage Security to Be Cool Either. Then Frost &#038; Sullivan Called.</title>
		<link>https://www.core6.com/blog/we-didnt-expect-storage-security-to-be-cool-either-then-frost-sullivan-called/</link>
		
		<dc:creator><![CDATA[Doron Youngerwood]]></dc:creator>
		<pubDate>Thu, 02 Jul 2026 12:23:19 +0000</pubDate>
				<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://core6stg.wpenginepowered.com/blog/why-oracle-zfs-security-matters-more-in-the-age-of-ai-2/</guid>

					<description><![CDATA[<p>Let&#8217;s be honest. For years, storage and backup systems have been the most overlooked part of the cybersecurity stack. When people talk about security, they talk</p>
<p>The post <a href="https://www.core6.com/blog/we-didnt-expect-storage-security-to-be-cool-either-then-frost-sullivan-called/">We Didn’t Expect Storage Security to Be Cool Either. Then Frost &amp; Sullivan Called.</a> appeared first on <a href="https://www.core6.com">Core6</a>.</p>
]]></description>
										<content:encoded><![CDATA[
<p class="wp-block-paragraph">Let&#8217;s be honest.</p>



<p class="wp-block-paragraph">For years, storage and backup systems have been the most overlooked part of the cybersecurity stack.</p>



<p class="wp-block-paragraph">When people talk about security, they talk about endpoints, identities, networks, firewalls, AI threats, and whatever acronym people invented this week. Storage? It mostly sits quietly in the corner, doing its job.</p>



<p class="wp-block-paragraph">Until ransomware hits.</p>



<p class="wp-block-paragraph">Suddenly everyone remembers that storage and backup systems are the last line of defense between a bad day and a very bad day.</p>



<p class="wp-block-paragraph">That&#8217;s one of the reasons we&#8217;re especially excited that <strong><a href="https://www.core6.com/resources/frost-and-sullivan-2026-global-storage-protection-customer-value-leadership/" target="_blank" rel="noreferrer noopener">Frost &amp; Sullivan named Core6 the recipient of its 2026 Customer Value Leadership Award in the Global Storage Protection Industry</a>.</strong></p>



<p class="has-medium-font-size wp-block-paragraph"><strong>Wait. Storage Protection Is An Industry Now?<br></strong></p>



<p class="wp-block-paragraph">That&#8217;s actually one of the biggest takeaways from the report.</p>



<p class="wp-block-paragraph">For years, organizations assumed their storage and backup infrastructure was secure enough. But attackers have gotten smarter, environments have become more complex, compliance requirements have multiplied, and AI is generating more data than ever.</p>



<p class="wp-block-paragraph">The result? Storage security has become a real challenge &#8211; and one that many traditional security tools simply weren&#8217;t designed to address.</p>



<p class="wp-block-paragraph">As Frost &amp; Sullivan puts it, organizations need continuous visibility into their storage and backup environments, not just occasional assessments or generic security scans.</p>



<p class="has-medium-font-size wp-block-paragraph"><strong>So Why Did Core6 Win?<br></strong></p>



<p class="wp-block-paragraph">According to Frost &amp; Sullivan, it&#8217;s because we focus on a problem that many vendors still overlook.</p>



<p class="wp-block-paragraph">The report highlights StorageGuard&#8217;s ability to:</p>



<ul class="wp-block-list">
<li>Continuously identify security and compliance gaps across storage and backup environments</li>



<li>Improve ransomware resilience</li>



<li>Simplify compliance reporting</li>



<li>Deploy quickly without agents or disruption</li>



<li>Integrate into existing operational workflows</li>



<li>Support the leading storage and backup platforms enterprises already use (Dell, NetApp, Hitachi Vantara, HPE, Infinidat (Lenovo), IBM, Brocade (Broadcom), Rubrik, Cohesity, Commvault, Veeam, VAST Data, etc.)</li>
</ul>



<p class="wp-block-paragraph">In other words: less guesswork, fewer blind spots, and a lot less manual effort.</p>



<p class="has-medium-font-size wp-block-paragraph"><strong>The Part We&#8217;re Especially Proud Of<br></strong></p>



<p class="wp-block-paragraph">One thing Frost &amp; Sullivan repeatedly calls out is customer value.</p>



<p class="wp-block-paragraph">Not marketecture.</p>



<p class="wp-block-paragraph">Not buzzwords.</p>



<p class="wp-block-paragraph">Not &#8220;the future of synergistic AI-powered digital transformation.&#8221;</p>



<p class="wp-block-paragraph">Actual customer value.</p>



<p class="wp-block-paragraph">The report notes that organizations can gain visibility into storage security risks quickly, automate many previously manual processes, and reduce the operational burden associated with compliance and security validation.</p>



<p class="wp-block-paragraph">As marketers, we&#8217;re supposed to love phrases like &#8220;customer value leadership.&#8221;</p>



<p class="wp-block-paragraph">As humans, we just like hearing that customers can sleep a little better at night.</p>



<p class="has-medium-font-size wp-block-paragraph"><strong>And Then We Added AI<br></strong></p>



<p class="wp-block-paragraph">Because apparently every blog post in 2026 needs an AI section.</p>



<p class="wp-block-paragraph">But in our case, it&#8217;s actually relevant.</p>



<p class="wp-block-paragraph">Frost &amp; Sullivan highlighted the new <strong><a href="https://www.core6.com/resources/storageguard-mcp-ai-integration-for-natural-language/" target="_blank" rel="noreferrer noopener">StorageGuard AI Platform</a></strong>, which helps organizations interact with their storage security environment using natural language, automate tasks, and accelerate remediation.</p>



<p class="wp-block-paragraph">The goal isn&#8217;t to replace administrators.</p>



<p class="wp-block-paragraph">It&#8217;s to help them spend less time hunting for problems and more time fixing them.</p>



<p class="has-medium-font-size wp-block-paragraph"><strong>The Bigger Picture<br></strong></p>



<p class="wp-block-paragraph">This award isn&#8217;t just recognition for Core6.</p>



<p class="wp-block-paragraph">It&#8217;s recognition that storage and backup security matter.</p>



<p class="wp-block-paragraph">The systems that store your most critical business data shouldn&#8217;t be the security team&#8217;s blind spot. They deserve the same visibility, governance, and protection as every other part of the environment.</p>



<p class="wp-block-paragraph">We&#8217;re grateful to Frost &amp; Sullivan for the recognition and even more grateful to the customers who have been telling us this was a problem worth solving long before the industry started paying attention.</p>



<p class="wp-block-paragraph">After all, when ransomware hits, nobody asks whether your storage infrastructure was exciting.</p>



<p class="wp-block-paragraph">They just hope it was protected.</p>



<p class="wp-block-paragraph"><a href="https://www.core6.com/resources/frost-and-sullivan-2026-global-storage-protection-customer-value-leadership/" target="_blank" rel="noreferrer noopener">Download</a> the full report, <em>‘Frost &amp; Sullivan 2026 Global Storage Protection – Customer Value Leadership’</em></p>



<figure class="wp-block-gallery has-nested-images columns-default is-cropped wp-block-gallery-4 is-layout-flex wp-block-gallery-is-layout-flex">
<figure class="wp-block-image size-large"><a href="https://www.core6.com/resources/frost-and-sullivan-2026-global-storage-protection-customer-value-leadership/"><img decoding="async" width="1024" height="938" data-id="13928" src="https://www.core6.com/wp-content/uploads/2026/06/Frost-Sullivan-logo-Core6-BPR-Logo-1024x938.png" alt="" class="wp-image-13928" srcset="https://www.core6.com/wp-content/uploads/2026/06/Frost-Sullivan-logo-Core6-BPR-Logo-1024x938.png 1024w, https://www.core6.com/wp-content/uploads/2026/06/Frost-Sullivan-logo-Core6-BPR-Logo-300x275.png 300w, https://www.core6.com/wp-content/uploads/2026/06/Frost-Sullivan-logo-Core6-BPR-Logo-150x137.png 150w, https://www.core6.com/wp-content/uploads/2026/06/Frost-Sullivan-logo-Core6-BPR-Logo-768x704.png 768w, https://www.core6.com/wp-content/uploads/2026/06/Frost-Sullivan-logo-Core6-BPR-Logo.png 1072w" sizes="(max-width: 1024px) 100vw, 1024px" /></a></figure>
</figure>



<p class="wp-block-paragraph"></p>



<p class="wp-block-paragraph"></p>



<hr class="wp-block-separator has-alpha-channel-opacity"/>



<p class="wp-block-paragraph"></p>



<p class="has-medium-font-size wp-block-paragraph"><strong>Frequently Asked Questions (FAQs)</strong></p>



<h3 class="wp-block-heading has-small-font-size">Why are storage and backup systems becoming a cybersecurity priority?</h3>



<p class="has-small-font-size wp-block-paragraph">According to Frost &amp; Sullivan, attackers increasingly target storage and backup systems because compromising recovery infrastructure can make ransomware attacks more effective. At the same time, organizations face growing compliance and audit requirements, making continuous validation essential.</p>



<h3 class="wp-block-heading has-small-font-size">What problem does Core6 solve?</h3>



<p class="has-small-font-size wp-block-paragraph">StorageGuard &#8211; by Core6 &#8211; helps organizations identify and remediate security risks, compliance gaps, and misconfigurations across enterprise storage and backup infrastructure &#8211; areas that are often overlooked by traditional cybersecurity tools.</p>



<p class="has-small-font-size wp-block-paragraph"><strong>Which storage and backup vendors does StorageGuard support?</strong></p>



<p class="has-small-font-size wp-block-paragraph">Frost &amp; Sullivan highlights support for leading platforms including Dell, NetApp, IBM, HPE, Hitachi Vantara, Cisco, VMware, Nutanix, Cohesity, Commvault, Rubrik, VAST Data, Broadcom, and Veeam.</p>



<h3 class="wp-block-heading has-small-font-size">What does Frost &amp; Sullivan mean by &#8220;Customer Value Leadership&#8221;?</h3>



<p class="has-small-font-size wp-block-paragraph">The award recognizes companies that deliver a strong combination of customer outcomes, innovation, operational efficiency, and return on investment. Frost &amp; Sullivan concluded that Core6 delivers significant value through automation, compliance validation, ransomware resilience, and ease of deployment.<br></p>



<p class="wp-block-paragraph"></p>
<p>The post <a href="https://www.core6.com/blog/we-didnt-expect-storage-security-to-be-cool-either-then-frost-sullivan-called/">We Didn’t Expect Storage Security to Be Cool Either. Then Frost &amp; Sullivan Called.</a> appeared first on <a href="https://www.core6.com">Core6</a>.</p>
]]></content:encoded>
					
		
		
			</item>
		<item>
		<title>Why Oracle ZFS Security Matters More in the Age of AI</title>
		<link>https://www.core6.com/blog/why-oracle-zfs-security-matters-more-in-the-age-of-ai/</link>
		
		<dc:creator><![CDATA[Doron Youngerwood]]></dc:creator>
		<pubDate>Mon, 01 Jun 2026 11:36:58 +0000</pubDate>
				<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://core6stg.wpenginepowered.com/blog/anthropic-associated-cves-worth-watching-for-storage-and-backup-2/</guid>

					<description><![CDATA[<p>Storage infrastructure has always been critical. What has changed is the speed at which weaknesses can be discovered, chained together, and exploited. That shift is one</p>
<p>The post <a href="https://www.core6.com/blog/why-oracle-zfs-security-matters-more-in-the-age-of-ai/">Why Oracle ZFS Security Matters More in the Age of AI</a> appeared first on <a href="https://www.core6.com">Core6</a>.</p>
]]></description>
										<content:encoded><![CDATA[
<p class="wp-block-paragraph">Storage infrastructure has always been critical. What has changed is the speed at which weaknesses can be discovered, chained together, and exploited.</p>



<p class="wp-block-paragraph">That shift is one of the biggest implications of the current AI wave. Across the industry, security leaders are recognizing that frontier AI models are changing the economics of cyber risk: discovery is faster, validation is faster, and the time defenders have to assess and respond is getting shorter.</p>



<p class="wp-block-paragraph">Public research and industry discussion continue to show how AI can accelerate security analysis, including vulnerability discovery and validation. For security teams, the practical implication is clear: response windows are getting shorter, and infrastructure controls need to become more continuous.</p>



<p class="wp-block-paragraph">For organizations running <a href="https://www.oracle.com/storage/nas/" target="_blank" rel="noreferrer noopener"><strong>Oracle ZFS Storage Appliance (ZFSSA)</strong></a>, this matters for a simple reason:</p>



<p class="wp-block-paragraph">Storage is no longer just an operational platform. It is part of the attack surface.</p>



<p class="wp-block-paragraph">Core6 recently expanded StorageGuard support to Oracle ZFS Storage Appliance, enabling organizations to assess Oracle ZFS environments for security misconfigurations, compliance gaps, and exposure to known vulnerabilities.</p>



<p class="wp-block-paragraph">The goal is straightforward: to help improve visibility, support hardening, and enable more continuous assessment of resilience of an infrastructure layer that many security tools still fail to cover deeply.</p>



<p class="wp-block-paragraph">That is also the focus of this <a href="https://go.oracle.com/LP=148748?elqCampaignId=628361&amp;src1=email&amp;src2=asktom" target="_blank" rel="noreferrer noopener">joint webinar</a> between <a href="https://www.oracle.com/" target="_blank" rel="noreferrer noopener">Oracle</a> and Core6, which centers on hardening and compliance for Oracle ZFSSA with StorageGuard.</p>



<p class="has-medium-font-size wp-block-paragraph"><strong>The real issue is not just vulnerabilities. It is the shrinking exploit window</strong></p>



<p class="wp-block-paragraph">Security teams have long operated with an assumption that they would have some time: time to discover a weakness, time to prioritize it, time to patch it, and time to validate the fix.</p>



<p class="wp-block-paragraph">AI is compressing that timeline.</p>



<p class="wp-block-paragraph">As both defenders and attackers operate at higher velocity, the window between vulnerability discovery and potential exploitation continues to shrink. This challenges traditional security models built on periodic reviews, and reinforces the need for continuous hardening alongside faster, more responsive remediation.</p>



<p class="wp-block-paragraph">That does not mean the answer is hype, panic, or treating every storage platform as an emergency.</p>



<p class="wp-block-paragraph">It means infrastructure and security teams should rethink where they have blind spots – especially in storage and backup systems, which are mission-critical, often under-monitored, and highly consequential if compromised.</p>



<p class="has-medium-font-size wp-block-paragraph"><strong>Extending security posture management to Oracle ZFS environments</strong></p>



<p class="wp-block-paragraph">Oracle ZFS environments often sit at an important point in enterprise data infrastructure: close to valuable data, deeply tied to resilience and recovery, and operationally central to the business.</p>



<p class="wp-block-paragraph">As organizations modernize security operations, extending visibility, configuration assessment, and drift detection to storage infrastructure can help teams manage risk more consistently across critical systems.</p>



<p class="wp-block-paragraph">In Oracle ZFS environments, StorageGuard enables teams to autonomously validate configurations, detect drift from secure baselines, assess exposure to vulnerabilities, and take guided remediation actions – helping teams identify and prioritize risks before weaknesses can contribute to incidents.</p>



<p class="wp-block-paragraph">In other words, the answer to AI-accelerated risk is not a single feature. It is a tighter operating model:</p>



<ul class="wp-block-list">
<li>Know what your Oracle ZFS environment looks like now</li>



<li>Detect when it drifts from a secure baseline</li>



<li>Identify where vulnerabilities and configuration weaknesses intersect</li>



<li>Prioritize remediation faster</li>



<li>Re-validate changes continuously</li>
</ul>



<p class="wp-block-paragraph">That becomes even more important in environments where storage supports regulated workloads, recovery operations, or broader cyber resilience programs.</p>



<p class="has-medium-font-size wp-block-paragraph"><strong>Where AI can help defenders. Safely</strong></p>



<p class="wp-block-paragraph">There is also a constructive side to this shift.</p>



<p class="wp-block-paragraph">StorageGuard is not about replacing operational discipline. It is about helping teams move faster within controls.</p>



<p class="wp-block-paragraph">StorageGuard enables teams to use AI to investigate risks, validate compliance, review and apply hardening recommendations, and generate insights through natural-language interaction.</p>



<p class="wp-block-paragraph">These capabilities are delivered with built-in guardrails, including role-based access control, scope limitation, no direct system access, and controls designed to help protect sensitive data, within an architecture where customers retain full control over their LLM environment.</p>



<p class="wp-block-paragraph">That distinction matters.</p>



<p class="wp-block-paragraph">In a storage environment, speed without guardrails is not helpful. But speed with policy control, scope limits, and auditability can make a real difference – especially when teams need answers quickly:</p>



<ul class="wp-block-list">
<li>Which Oracle ZFS systems have drifted from baseline?</li>



<li>Which findings matter most right now?</li>



<li>Where do current settings create resilience or compliance risk?</li>



<li>What should be fixed first?</li>
</ul>



<p class="wp-block-paragraph">Those are exactly the kinds of questions AI can help teams answer faster, provided the underlying data is authoritative and the operating model remains controlled.</p>



<p class="has-medium-font-size wp-block-paragraph"><strong>A more realistic way to think about AI and storage security</strong></p>



<p class="wp-block-paragraph">The Mythos conversation has captured attention because it makes the broader trend impossible to ignore:</p>



<p class="wp-block-paragraph">AI is increasing the pace of both discovery and response.</p>



<p class="wp-block-paragraph">For Storage and Infrastructure leaders, the takeaway is not that every headline should trigger a strategy rewrite. It is that storage can no longer sit outside modern security operations.</p>



<p class="wp-block-paragraph">If Oracle ZFS supports critical workloads in your environment, then visibility, hardening, and continuous validation belong on the security agenda – in addition to the storage team’s agenda.</p>



<p class="wp-block-paragraph">That is why this topic matters now. And that is why the Oracle and Core6 conversation around Oracle ZFS security is timely: it is not about marketing a feature in isolation. It is about helping organizations bring a critical layer of infrastructure into a more modern, continuous security model.</p>



<p class="wp-block-paragraph">If you’d like to go deeper, join this <a href="https://go.oracle.com/LP=148748?elqCampaignId=628361&amp;src1=email&amp;src2=asktom" target="_blank" rel="noreferrer noopener">joint webinar</a> with Oracle and Core6 on Oracle ZFS resilience and compliance, taking place on 24<sup>th</sup> June.</p>



<figure class="wp-block-gallery has-nested-images columns-default is-cropped wp-block-gallery-5 is-layout-flex wp-block-gallery-is-layout-flex">
<figure class="wp-block-image size-large"><a href="https://go.oracle.com/LP=148748?elqCampaignId=628361&amp;src1=email&amp;src2=asktom" target="_blank" rel=" noreferrer noopener"><img decoding="async" width="610" height="567" data-id="13964" src="https://www.core6.com/wp-content/uploads/2026/06/Oracle-Webinar.png" alt="" class="wp-image-13964" srcset="https://www.core6.com/wp-content/uploads/2026/06/Oracle-Webinar.png 610w, https://www.core6.com/wp-content/uploads/2026/06/Oracle-Webinar-300x279.png 300w, https://www.core6.com/wp-content/uploads/2026/06/Oracle-Webinar-150x139.png 150w" sizes="(max-width: 610px) 100vw, 610px" /></a></figure>
</figure>



<p class="wp-block-paragraph"></p>



<p class="wp-block-paragraph"></p>



<hr class="wp-block-separator has-alpha-channel-opacity"/>



<p class="wp-block-paragraph"></p>



<p class="has-medium-font-size wp-block-paragraph"><strong>Frequently Asked Questions (FAQs)</strong></p>



<h3 class="wp-block-heading has-small-font-size">What does Core6’s support for Oracle ZFS Storage Appliance mean?</h3>



<p class="has-small-font-size wp-block-paragraph">Core6’s support for Oracle ZFS Storage Appliance (ZFSSA) extends StorageGuard’s ability to secure, harden, and continuously validate Oracle-based storage environments. It also reflects deeper alignment with Oracle, positioning Core6 within a key enterprise ecosystem and enabling organizations to better protect mission-critical data with continuous security posture management.</p>



<h3 class="wp-block-heading has-small-font-size">What problem does StorageGuard solve for Oracle ZFS environments?</h3>



<p class="has-small-font-size wp-block-paragraph">StorageGuard addresses a key gap: storage systems are rarely monitored with the same rigor as servers or endpoints. It provides visibility into vulnerabilities and exposures, continuous security posture validation, and detection of misconfigurations and drift.</p>



<p class="has-small-font-size wp-block-paragraph"><strong>How is this different from Oracle’s built-in capabilities?</strong></p>



<p class="has-small-font-size wp-block-paragraph">Oracle provides strong infrastructure, performance, and patching tools. StorageGuard adds: security posture management, continuous compliance validation, and multi-vendor visibility across storage environments. It complements &#8211; not replaces &#8211; native Oracle capabilities.</p>



<h3 class="wp-block-heading has-small-font-size">What are the most common risks in Oracle ZFS environments?</h3>



<p class="has-small-font-size wp-block-paragraph">Security misconfigurations, lack of continuous validation, exposure to unpatched vulnerabilities, and limited visibility into compliance posture. These gaps increase the risk of ransomware impact and data loss.</p>



<p class="wp-block-paragraph"></p>
<p>The post <a href="https://www.core6.com/blog/why-oracle-zfs-security-matters-more-in-the-age-of-ai/">Why Oracle ZFS Security Matters More in the Age of AI</a> appeared first on <a href="https://www.core6.com">Core6</a>.</p>
]]></content:encoded>
					
		
		
			</item>
		<item>
		<title>Anthropic-Associated CVEs Worth Watching for Storage and Backup</title>
		<link>https://www.core6.com/blog/anthropic-associated-cves-worth-watching-for-storage-and-backup/</link>
		
		<dc:creator><![CDATA[Yaniv Valik]]></dc:creator>
		<pubDate>Wed, 27 May 2026 08:55:50 +0000</pubDate>
				<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://core6stg.wpenginepowered.com/blog/one-of-the-first-public-mythos-showcases-and-its-impact-on-storage-2/</guid>

					<description><![CDATA[<p>This is a follow-up to an earlier article on CVE-2026-4747 and what AI-assisted vulnerability discovery means for storage infrastructure, which you can read here. The first</p>
<p>The post <a href="https://www.core6.com/blog/anthropic-associated-cves-worth-watching-for-storage-and-backup/">Anthropic-Associated CVEs Worth Watching for Storage and Backup</a> appeared first on <a href="https://www.core6.com">Core6</a>.</p>
]]></description>
										<content:encoded><![CDATA[
<p class="has-small-font-size wp-block-paragraph"><em>This is a follow-up to an earlier article on CVE-2026-4747 and what AI-assisted vulnerability discovery means for storage infrastructure</em>, which you can <a href="https://www.core6.com/blog/one-of-the-first-public-mythos-showcases-and-its-impact-on-storage/" target="_blank" rel="noreferrer noopener">read here</a>.</p>



<p class="wp-block-paragraph">The first wave of CVEs linked to Anthropic’s Claude Mythos Preview is now beginning to emerge. Several sit inside the components that storage and backup products are built on &#8211; TLS libraries, kernel subsystems, cryptographic providers, BSD-derived protocol stacks.</p>



<p class="wp-block-paragraph">Vendor advisories specific to storage and backup have been limited so far.</p>



<p class="wp-block-paragraph">What follows is our informed assessment of seven CVEs we believe warrant attention. The assessments below are based on previously reported advisories in storage and backup products and on public information about each CVE. They are not confirmed vendor guidance. </p>



<p class="wp-block-paragraph">Based on this assessment, we also outline practical mitigation considerations and recommended next steps for storage and backup environments.</p>



<p class="has-medium-font-size wp-block-paragraph"><strong>CVE-2026-31402 &#8211; Linux Kernel nfsd Heap Overflow</strong></p>



<p class="wp-block-paragraph"><strong>Critical, kernel.org: 9.8</strong></p>



<p class="wp-block-paragraph">A remote, unauthenticated attacker can corrupt kernel memory by sending two coordinated NFSv4.0 lock requests that overflow a buffer in the NFS server.</p>



<p class="wp-block-paragraph">Linux underpins many storage and backup platforms (NAS controllers, backup appliances, HCI nodes). Exposure depends on whether the product uses in-kernel nfsd or a user-space implementation such as NFS-Ganesha. As a precaution, treat Linux-based systems serving NFS as potentially affected until vendors confirm otherwise.</p>



<p class="has-medium-font-size wp-block-paragraph"><strong>CVE-2026-5194 &#8211; wolfSSL Certificate Validation Flaw.</strong></p>



<p class="wp-block-paragraph"><strong>Critical, NVD: 9.1</strong></p>



<p class="wp-block-paragraph">A signature verification flaw affecting both classical (ECDSA, Ed25519, Ed448) and post-quantum (ML-DSA) algorithms in wolfSSL could allow forged digital identities. Patched in 5.9.1; the bug had been present since 2017.</p>



<p class="wp-block-paragraph">wolfSSL has appeared in past storage and backup security advisories. While this does not confirm exposure to CVE-2026-5194, it indicates that some vendors may embed the library and is a reason to investigate.</p>



<p class="has-medium-font-size wp-block-paragraph"><strong>CVE-2026-5588 &#8211; Bouncy Castle BC-JAVA Signature Validation Flaw.</strong></p>



<p class="wp-block-paragraph"><strong>High, Redhat: 7.5</strong></p>



<p class="wp-block-paragraph">A signature verification flaw in Bouncy Castle&#8217;s post-quantum certificate code, patched in BC-JAVA 1.84. Most applications don&#8217;t use the affected path. More notable in the same release: CVE-2026-3505 (PGP DoS) and CVE-2026-5598.</p>



<p class="wp-block-paragraph">Bouncy Castle has appeared in past storage and backup vendor advisories. Without a Software Bill of Materials (SBOM), exposure is hard to assess &#8211; and fixes arrive only when the vendor ships a refreshed build.</p>



<p class="has-medium-font-size wp-block-paragraph"><strong>CVE-2026-28386 &#8211; OpenSSL AES-CFB-128 Out-of-Bounds Read.</strong>&nbsp;</p>



<p class="wp-block-paragraph"><strong>Critical, CISA-ADP: 9.1</strong></p>



<p class="wp-block-paragraph">An out-of-bounds read leading to denial of service, affecting systems running on modern x86-64 CPUs with AVX-512. Fixed in OpenSSL 3.6.2 and backports. AES-CFB-128 is uncommon in modern TLS but still appears in S/MIME and some IPsec deployments.</p>



<p class="wp-block-paragraph">Given OpenSSL’s ubiquity, most vendors will need to assess this &#8211; even if urgency is limited by the DoS-only impact &#8211; and likely issue an advisory.</p>



<p class="has-medium-font-size wp-block-paragraph"><strong>CVE-2026-5398 &#8211; FreeBSD TIOCNOTTY Use-After-Free.</strong></p>



<p class="wp-block-paragraph"><strong>High, CISA-ADP: 8.4</strong></p>



<p class="wp-block-paragraph">A local privilege escalation via a dangling pointer in FreeBSD&#8217;s terminal handling. Patched in FreeBSD-SA-26:10.tty. Realistic exploitation requires chaining with another vulnerability that provides initial access. FreeBSD-derived storage and backup appliances may be affected.</p>



<p class="has-medium-font-size wp-block-paragraph"><strong>CVE-2026-6386 &#8211; FreeBSD amd64 Local Privilege Escalation</strong></p>



<p class="wp-block-paragraph"><strong>Medium, CISA-ADP: 6.2</strong></p>



<p class="wp-block-paragraph">Another local privilege escalation issue (FreeBSD-SA-26:11.amd64). Like CVE-2026-5398, it becomes meaningful when combined with an initial foothold, potentially enabling full system compromise.</p>



<p class="has-medium-font-size wp-block-paragraph"><strong>CVE-2026-4747 &#8211; Remote Code Execution in FreeBSD NFS/RPCSEC_GSS</strong></p>



<p class="wp-block-paragraph"><strong>Critical, CISA-ADP: 8.8</strong></p>



<p class="wp-block-paragraph">We covered this in depth in our <a href="https://www.core6.com/blog/one-of-the-first-public-mythos-showcases-and-its-impact-on-storage/" target="_blank" rel="noreferrer noopener">previous post</a>. A long-standing stack buffer overflow in RPCSEC_GSS. While patched prior to Mythos, it was highlighted by Anthropic as part of Mythos’s autonomous exploit generation capability. Huawei and NetApp have both published notices confirming their products are <strong>not</strong> affected.</p>



<p class="has-medium-font-size wp-block-paragraph"><strong>What to Watch for Next</strong></p>



<p class="wp-block-paragraph">We expect storage and backup vendors to publish impact assessments as analysis progresses. Monitor vendor security advisory channels closely over the coming weeks.</p>



<p class="has-medium-font-size wp-block-paragraph"><strong>Five Things To Do While Waiting for Vendor Guidance</strong></p>



<p class="wp-block-paragraph">These CVEs share a pattern: they affect embedded components in the data and management planes. That shapes the mitigation posture.</p>



<ol class="wp-block-list">
<li><strong>Start with inventory. </strong>Before applying controls, know what you actually have. Build a list of which storage and backup systems are exposed to NFS, expose management interfaces, run Java-based management planes, or are FreeBSD-derived.</li>



<li><strong>Revisit protocol hardening</strong>. The protocol-level recommendations from our <a href="https://www.core6.com/blog/one-of-the-first-public-mythos-showcases-and-its-impact-on-storage/">previous post</a> &#8211; NFS access restriction, network segmentation, export policy hardening — remain applicable and are worth revisiting in light of this broader pattern.</li>



<li><strong>Prefer NFSv4.1+ where possible.</strong> CVE-2026-31402 specifically affects NFSv4.0. NFSv4.1 and later use a different session model that doesn&#8217;t go through the vulnerable code path.</li>



<li><strong>Harden TLS and certificates.</strong> Replace broad public CA trust with an internal CA and a small, explicit allowlist. Enable mutual TLS where supported.</li>



<li><strong>Isolate the management plane</strong><em>. </em>Restrict management access to the minimum necessary. Block management interfaces on non-management network interfaces. Isolate the management plane at the network level.</li>
</ol>



<p class="has-medium-font-size wp-block-paragraph"><strong>Ask Your Vendors for an SBOM</strong></p>



<p class="wp-block-paragraph">All of these CVEs originate in foundational components and embedded dependencies &#8211; not in vendor product code itself.</p>



<p class="wp-block-paragraph">Without a Software Bill of Materials, determining exposure is difficult before vendors issue advisories.</p>



<p class="wp-block-paragraph">Ask your vendors for an SBOM, and if they can&#8217;t provide one, ask them specifically whether their products include the affected components. A targeted question is more likely to get a useful answer today than a broad SBOM request.</p>



<p class="has-medium-font-size wp-block-paragraph"><strong>Keeping Pace with Faster Disclosure</strong></p>



<p class="wp-block-paragraph">This batch is an early indicator of how AI-assisted vulnerability research will reshape disclosure &#8211; more CVEs, surfacing faster, in deeper layers of the stack. Before advisories arrive, the only defense is continuous hardening and configuration discipline. Once they land, what matters is the speed of identifying affected systems and prioritizing remediation. Periodic checks won&#8217;t keep pace. This is where <strong>Core6</strong> focuses with <strong><a href="https://www.core6.com/storageguard/">StorageGuard</a></strong> &#8211; continuous, real-time posture awareness for storage and backup systems.</p>



<p class="has-small-font-size wp-block-paragraph"><em>For official guidance, refer directly to your storage &amp; backup vendors&#8217; security advisory pages.</em></p>



<p class="has-small-font-size wp-block-paragraph"><strong>References:</strong></p>



<ul class="wp-block-list">
<li class="has-small-font-size"><a href="https://www.vulncheck.com/blog/anthropic-glasswing-cves" target="_blank" rel="noreferrer noopener">Tracking CVEs Attributed to Anthropic Researchers and Project Glasswing | Blog | VulnCheck</a></li>



<li class="has-small-font-size"><a href="https://github.com/patrickmgarrity/Anthropic-Credited-CVEs" target="_blank" rel="noreferrer noopener">GitHub &#8211; patrickmgarrity/Anthropic-Credited-CVEs: Tracking Vulnerabilities That Appear to be Credited to the Anthropic Research Team · GitHub</a></li>



<li class="has-small-font-size"><a href="https://www.freebsd.org/security/advisories/FreeBSD-SA-26:08.rpcsec_gss.asc" target="_blank" rel="noreferrer noopener">freebsd.org/security/advisories/FreeBSD-SA-26:08.rpcsec_gss.asc</a></li>



<li class="has-small-font-size"><a href="https://security.netapp.com/advisory/ntap-20260410-0014" target="_blank" rel="noreferrer noopener">NetApp Product Security &#8211; NTAP-20260410-0014</a></li>



<li class="has-small-font-size"><a href="https://trust.netapp.com/?tcuUid=ab39cd14-bb9d-449b-a5e3-77f7bbaab91b" target="_blank" rel="noreferrer noopener">NetApp Statement Regarding Anthropic Disclosure and Mythos Research Model</a></li>



<li class="has-small-font-size"><a href="https://access.redhat.com/security/cve/cve-2026-5588#cve-cvss-v3" target="_blank" rel="noreferrer noopener">CVE-2026-5588 &#8211; Red Hat Customer Portal</a></li>
</ul>



<p class="has-medium-font-size wp-block-paragraph"></p>



<p class="wp-block-paragraph"></p>



<p class="wp-block-paragraph"></p>



<p class="wp-block-paragraph"></p>



<hr class="wp-block-separator has-alpha-channel-opacity"/>



<p class="wp-block-paragraph"></p>



<p class="has-medium-font-size wp-block-paragraph"><strong>Frequently Asked Questions (FAQs)</strong></p>



<h3 class="wp-block-heading has-small-font-size">What should you ask your storage or backup vendor right now?</h3>



<p class="has-small-font-size wp-block-paragraph">Instead of asking broadly, ask targeted questions:</p>



<ul class="wp-block-list">
<li class="has-small-font-size">“Do your products include wolfSSL / Bouncy Castle / OpenSSL versions affected by these CVEs?”</li>



<li class="has-small-font-size">“Are you using in-kernel NFS or a user-space implementation?”</li>



<li class="has-small-font-size">“Are any products based on FreeBSD and affected by SA-26 advisories?”</li>
</ul>



<p class="has-small-font-size wp-block-paragraph">Also request: SBOM (Software Bill of Materials). This is the fastest way to validate risk across your environment.</p>



<h3 class="wp-block-heading has-small-font-size">How will AI-driven vulnerability discovery change storage security?</h3>



<p class="has-small-font-size wp-block-paragraph">Expect:</p>



<ul class="wp-block-list">
<li class="has-small-font-size">More CVEs</li>



<li class="has-small-font-size">Faster disclosure cycles</li>



<li class="has-small-font-size">Vulnerabilities in deeper infrastructure layers</li>
</ul>



<p class="has-small-font-size wp-block-paragraph">Traditional approaches (quarterly reviews, manual audits) will struggle to keep up.</p>



<p class="has-small-font-size wp-block-paragraph">New requirement: </p>



<ul class="wp-block-list">
<li class="has-small-font-size">Continuous visibility into storage security posture</li>



<li class="has-small-font-size">Real-time detection of configuration risks and exposure</li>
</ul>



<h3 class="wp-block-heading has-small-font-size">What is the biggest takeaway for storage and backup teams?</h3>



<p class="has-small-font-size wp-block-paragraph">These CVEs highlight a shift:</p>



<ul class="wp-block-list has-small-font-size">
<li class="has-small-font-size">Risk is increasingly in dependencies, not product code</li>



<li class="has-small-font-size">Exposure exists before vendor advisories are published</li>
</ul>



<p class="has-small-font-size wp-block-paragraph">Actionable takeaway:</p>



<ul class="wp-block-list">
<li class="has-small-font-size">Focus on hardening, segmentation, and visibility</li>



<li class="has-small-font-size">Reduce reliance on reactive patch cycles</li>



<li class="has-small-font-size">Speed up identification of affected systems</li>
</ul>



<p class="wp-block-paragraph"></p>
<p>The post <a href="https://www.core6.com/blog/anthropic-associated-cves-worth-watching-for-storage-and-backup/">Anthropic-Associated CVEs Worth Watching for Storage and Backup</a> appeared first on <a href="https://www.core6.com">Core6</a>.</p>
]]></content:encoded>
					
		
		
			</item>
		<item>
		<title>One of the First Public Mythos Showcases &#8211; and Its Impact on Storage </title>
		<link>https://www.core6.com/blog/one-of-the-first-public-mythos-showcases-and-its-impact-on-storage/</link>
		
		<dc:creator><![CDATA[Yaniv Valik]]></dc:creator>
		<pubDate>Mon, 18 May 2026 14:12:24 +0000</pubDate>
				<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://core6stg.wpenginepowered.com/blog/closing-gartner-automated-security-control-assessment-biggest-gap-storage-and-backup-2/</guid>

					<description><![CDATA[<p>Many storage and backup systems rely on long‑standing protocol implementations such as NFS/RPC. These protocols have not changed &#8211; but the way vulnerabilities within them are discovered has. What once required deep</p>
<p>The post <a href="https://www.core6.com/blog/one-of-the-first-public-mythos-showcases-and-its-impact-on-storage/">One of the First Public Mythos Showcases &#8211; and Its Impact on Storage </a> appeared first on <a href="https://www.core6.com">Core6</a>.</p>
]]></description>
										<content:encoded><![CDATA[
<p class="wp-block-paragraph">Many storage and backup systems rely on long‑standing protocol implementations such as NFS/RPC. These protocols have not changed &#8211; but the way vulnerabilities within them are discovered has. What once required deep manual analysis can now be surfaced and understood much more quickly. </p>



<p class="wp-block-paragraph"><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-4747" target="_blank" rel="noreferrer noopener">CVE-2026-4747</a>, a <strong>remote code execution (RCE) vulnerability in the FreeBSD NFS/RPC stack</strong>, is one of the early vulnerabilities publicly highlighted by Anthropic in connection with <a href="https://red.anthropic.com/2026/mythos-preview/" type="link" id="https://red.anthropic.com/2026/mythos-preview/" target="_blank" rel="noreferrer noopener">Claude Mythos Preview</a> - their frontier AI model announced April 7, 2026. </p>



<p class="wp-block-paragraph">While the vulnerability was patched by FreeBSD before the Mythos launch, Anthropic featured it as a demonstration of Mythos&#8217;s ability to autonomously construct sophisticated, working exploits for deeply embedded protocol-level flaws. </p>



<p class="wp-block-paragraph">While Mythos has reportedly identified many vulnerabilities across software stacks, this case is notable because it targets <strong>core infrastructure protocols</strong> that are deeply embedded in enterprise storage environments. </p>



<p class="has-medium-font-size wp-block-paragraph">What Was Discovered? </p>



<p class="wp-block-paragraph">CVE-2026-4747 affects the NFS / RPCSEC_GSS (Kerberos-backed) implementation, and under certain conditions, the vulnerability may allow a remote attacker to achieve root-level code execution. </p>



<p class="wp-block-paragraph">Triggering the overflow does not require prior authentication at the RPC level, but successful exploitation depends on specific configuration and exposure—including access to the NFS service and the use of RPCSEC_GSS (Kerberos) functionality. </p>



<p class="wp-block-paragraph"><strong>Key characteristics:</strong></p>



<ul class="wp-block-list">
<li>Located in core NFS/RPC protocol handling </li>
</ul>



<ul class="wp-block-list">
<li>Present in production code for many years </li>
</ul>



<ul class="wp-block-list">
<li>Triggered via network-accessible services </li>
</ul>



<p class="wp-block-paragraph">Taken together, these characteristics indicate this is not an edge-case issue but a flaw in foundational protocol logic. </p>



<p class="has-medium-font-size wp-block-paragraph">Why This Matters for Storage </p>



<p class="wp-block-paragraph">This should not be viewed narrowly as a FreeBSD issue.&nbsp;</p>



<p class="wp-block-paragraph"><strong>1. Some storage platforms&nbsp;retain&nbsp;FreeBSD lineage</strong>&nbsp;</p>



<p class="wp-block-paragraph">Some of the leading enterprise storage platforms have evolved from BSD-derived foundations, particularly in their networking and protocol implementations.&nbsp;</p>



<p class="wp-block-paragraph"><strong>2. FreeBSD contributed to NFS/RPC implementations</strong>&nbsp;</p>



<p class="wp-block-paragraph">FreeBSD and earlier BSD systems have long&nbsp;maintained&nbsp;widely used NFS and RPC implementations that are still foundational in storage environments today. The vulnerability affects a specific implementation of NFS/RPC, but similar flaws may exist in other implementations of the same protocol.&nbsp;</p>



<p class="wp-block-paragraph"><strong>3. NFS is ubiquitous in storage and backup</strong>&nbsp;</p>



<p class="wp-block-paragraph">NFS&nbsp;remains&nbsp;a core protocol across:&nbsp;</p>



<ul class="wp-block-list">
<li>NAS systems </li>
</ul>



<ul class="wp-block-list">
<li>Backup appliances </li>
</ul>



<ul class="wp-block-list">
<li>Data protection repositories </li>
</ul>



<ul class="wp-block-list">
<li>Archive / object gateways </li>
</ul>



<p class="wp-block-paragraph">Similar classes of vulnerabilities may exist in other storage systems that implement NFS/RPC, regardless of whether they run FreeBSD, Linux, or proprietary operating systems.&nbsp;</p>



<p class="has-medium-font-size wp-block-paragraph"> Who Is Potentially Affected? </p>



<p class="wp-block-paragraph">While CVE-2026-4747 is confirmed in FreeBSD and already <a href="https://www.freebsd.org/security/advisories/FreeBSD-SA-26:08.rpcsec_gss.asc" target="_blank" rel="noreferrer noopener">patched</a> in FreeBSD, broader exposure may include: </p>



<ul class="wp-block-list">
<li>Storage systems with FreeBSD lineage </li>
</ul>



<ul class="wp-block-list">
<li>Platforms implementing NFS with RPCSEC_GSS / Kerberos authentication </li>
</ul>



<ul class="wp-block-list">
<li>Backup systems exposing NFS services </li>
</ul>



<ul class="wp-block-list">
<li>Storage environments with long-lived or lightly modified protocol stacks </li>
</ul>



<p class="wp-block-paragraph">We expect storage and backup vendors to assess exposure internally and issue security advisories where applicable. <a href="https://www.huawei.com/en/psirt/security-notices/2026/huawei-sn-sofbovc-8e92c22f" target="_blank" rel="noreferrer noopener">Huawei</a> and <a href="https://security.netapp.com/advisory/ntap-20260410-0014" target="_blank" rel="noreferrer noopener">NetApp</a>, for instance, already announced their products are not affected. Early community <a href="https://forums.truenas.com/t/vuln-in-freebsd-nfs/65067" target="_blank" rel="noreferrer noopener">discussions</a>, such as the one in the TrueNAS forums, have already surfaced concerns about exposure in storage platforms running older FreeBSD versions, particularly where patch adoption may lag. </p>



<p class="has-medium-font-size wp-block-paragraph"> What Should You Do in the Meantime? </p>



<p class="wp-block-paragraph">Focus on exposure reduction and protocol hardening: </p>



<ul class="wp-block-list">
<li><strong>Restrict NFS access</strong> <br>Limit to trusted internal networks; avoid external exposure </li>
</ul>



<ul class="wp-block-list">
<li><strong>Segment storage networks</strong> <br>Isolate storage, backup, and management traffic </li>
</ul>



<ul class="wp-block-list">
<li><strong>Harden export policies</strong> <br>Enforce least privilege; avoid overly broad or wildcard exports </li>
</ul>



<ul class="wp-block-list">
<li><strong>Use Kerberos correctly </strong> <br>if RPCSEC_GSS is required in your environment, prefer krb5i or krb5p &#8211; but audit whether it is actually needed before assuming it provides protection here. </li>
</ul>



<ul class="wp-block-list">
<li><strong>Minimize attack surface</strong> <br>Disable unused protocols and services; close unnecessary ports </li>
</ul>



<ul class="wp-block-list">
<li><strong>Monitor for anomalous behavior</strong> <br>Watch for unusual RPC/NFS traffic patterns and authentication activity </li>
</ul>



<p class="has-medium-font-size wp-block-paragraph">And Of Course, Patch When Available </p>



<p class="wp-block-paragraph">As Storage and Backup vendors release security advisories and fixes:&nbsp;</p>



<p class="wp-block-paragraph">Apply patches or firmware updates as soon as they are available and&nbsp;validated.&nbsp;</p>



<p class="wp-block-paragraph">Given the nature of this vulnerability &#8211; remote, protocol-level, and long-lived - timely remediation is critical. </p>



<p class="has-medium-font-size wp-block-paragraph">What Mythos Signals for Storage Security </p>



<p class="wp-block-paragraph">This is only a first glimpse of how tools like Mythos will impact IT security. Early reports already point to a significant increase in the volume of vulnerabilities being discovered across software stacks. The bigger question becomes: <strong><em>how do we protect storage and backup systems in this reality?</em></strong> </p>



<p class="wp-block-paragraph">Before advisories and patches are available, prevention relies on continuous hardening and configuration discipline. Without ongoing validation, it is difficult to ensure that critical controls &#8211; such as restricting NFS access, enforcing correct Kerberos configurations, limiting exposed services, and tightening management access &#8211; are consistently applied and remain effective over time. </p>



<p class="wp-block-paragraph">Configuration drift becomes a primary risk factor. </p>



<p class="wp-block-paragraph">Once an advisory is published, organizations can begin impact analysis to identify affected systems. And when a patch becomes available, the process shifts to testing, change control, and deployment. </p>



<p class="wp-block-paragraph">At this stage, speed becomes critical: </p>



<ul class="wp-block-list">
<li>How quickly can you determine exposure across your environment? </li>
</ul>



<ul class="wp-block-list">
<li>How fast can you understand mitigation steps and compensating controls? </li>
</ul>



<ul class="wp-block-list">
<li>How effectively can you prioritize and remediate? </li>
</ul>



<p class="wp-block-paragraph">These challenges call for greater automation and continuous visibility &#8211; moving beyond periodic checks to real-time posture awareness, an area we’re actively focusing on at <strong>Core6</strong> with <strong><a href="https://www.core6.com/storageguard/">StorageGuard</a></strong>. </p>



<p class="has-medium-font-size wp-block-paragraph">Summary </p>



<p class="wp-block-paragraph">CVE-2026-4747 is not just about FreeBSD. It highlights a broader shift:&nbsp;</p>



<p class="wp-block-paragraph">AI&nbsp;&#8211;&nbsp;including models well below the frontier&nbsp;&#8211;&nbsp;can now detect deeply embedded vulnerabilities in foundational protocols. Mythos Preview&nbsp;demonstrated&nbsp;that frontier AI can go further, autonomously constructing working exploits, but the&nbsp;discovery&nbsp;capability itself is increasingly broad-based.&nbsp;</p>



<p class="wp-block-paragraph">This is a signal that core IT infrastructure layers must now be continuously re-examined. </p>



<p class="wp-block-paragraph"></p>



<p class="wp-block-paragraph"></p>



<p class="wp-block-paragraph"></p>



<hr class="wp-block-separator has-alpha-channel-opacity"/>



<p class="wp-block-paragraph"></p>



<p class="has-medium-font-size wp-block-paragraph"><strong>Frequently Asked Questions (FAQs)</strong></p>



<h3 class="wp-block-heading has-small-font-size">Why did Anthropic mention CVE‑2026‑4747 in the Claude Mythos Preview?</h3>



<p class="has-small-font-size wp-block-paragraph">Anthropic highlighted CVE‑2026‑4747 as an example of Mythos’s ability to autonomously build a working exploit for a deeply embedded, protocol-level flaw. Even though FreeBSD patched the issue before the Mythos launch, the showcase signaled a shift: advanced AI can accelerate discovery and exploitation of foundational infrastructure vulnerabilities.</p>



<h3 class="wp-block-heading has-small-font-size">Why is this vulnerability relevant to enterprise storage and backup systems?</h3>



<p class="has-small-font-size wp-block-paragraph">Because NFS remains ubiquitous across:</p>



<ul class="wp-block-list">
<li class="has-small-font-size">NAS platforms</li>



<li class="has-small-font-size">Backup appliances</li>



<li class="has-small-font-size">Data protection repositories</li>



<li class="has-small-font-size">Archive systems and gateways</li>
</ul>



<p class="has-small-font-size wp-block-paragraph">When a vulnerability targets network-accessible, long-standing protocol implementations, it can affect storage environments broadly—even if only one OS vendor has a confirmed CVE at first.</p>



<h3 class="wp-block-heading has-small-font-size">What immediate mitigations help reduce exposure before patches are available?</h3>



<p class="has-small-font-size wp-block-paragraph">The most effective “now” actions are exposure reduction and hardening:</p>



<ul class="wp-block-list has-small-font-size">
<li class="has-small-font-size">Monitor for anomalies (unusual NFS/RPC traffic and auth behavior)</li>
</ul>



<ul class="wp-block-list has-small-font-size">
<li class="has-small-font-size">Restrict NFS access to trusted internal networks (avoid external exposure)</li>
</ul>



<ul class="wp-block-list has-small-font-size">
<li class="has-small-font-size">Segment storage networks (separate storage, backup, and management traffic)</li>
</ul>



<ul class="wp-block-list has-small-font-size">
<li class="has-small-font-size">Harden exports (least privilege; avoid broad or wildcard exports)</li>
</ul>



<ul class="wp-block-list has-small-font-size">
<li class="has-small-font-size">Minimize attack surface (disable unused services; close unnecessary ports)</li>
</ul>



<h3 class="wp-block-heading has-small-font-size">What should storage teams do when security advisories arrive?</h3>



<p class="has-small-font-size wp-block-paragraph">A practical sequence looks like:</p>



<ul class="wp-block-list has-small-font-size">
<li class="has-small-font-size">Rapid rollout: deploy fixes quickly, prioritizing exposed and high-value systems</li>
</ul>



<ul class="wp-block-list has-small-font-size">
<li class="has-small-font-size">Impact analysis: identify potentially affected systems and configurations</li>
</ul>



<ul class="wp-block-list has-small-font-size">
<li class="has-small-font-size">Compensating controls: enforce segmentation and restrictive access while evaluating</li>
</ul>



<ul class="wp-block-list has-small-font-size">
<li class="has-small-font-size">Patch planning: test firmware/OS updates under change control</li>
</ul>



<p class="wp-block-paragraph"></p>
<p>The post <a href="https://www.core6.com/blog/one-of-the-first-public-mythos-showcases-and-its-impact-on-storage/">One of the First Public Mythos Showcases &#8211; and Its Impact on Storage </a> appeared first on <a href="https://www.core6.com">Core6</a>.</p>
]]></content:encoded>
					
		
		
			</item>
		<item>
		<title>How Qualys and Core6 Are Redefining Risk Visibility in the Age of AI</title>
		<link>https://www.core6.com/blog/how-qualys-and-core6-are-redefining-risk-visibility-in-the-age-of-ai/</link>
		
		<dc:creator><![CDATA[Doron Youngerwood]]></dc:creator>
		<pubDate>Mon, 11 May 2026 15:00:27 +0000</pubDate>
				<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://core6stg.wpenginepowered.com/blog/determining-enterprise-storage-and-backup-asset-criticality-2/</guid>

					<description><![CDATA[<p>For years, cybersecurity followed a familiar rhythm. We hardened endpoints. We added controls to networks and applications. We refined detection. We rehearsed response. And then AI</p>
<p>The post <a href="https://www.core6.com/blog/how-qualys-and-core6-are-redefining-risk-visibility-in-the-age-of-ai/">How Qualys and Core6 Are Redefining Risk Visibility in the Age of AI</a> appeared first on <a href="https://www.core6.com">Core6</a>.</p>
]]></description>
										<content:encoded><![CDATA[
<p class="wp-block-paragraph">For years, cybersecurity followed a familiar rhythm. We hardened endpoints. We added controls to networks and applications. We refined detection. We rehearsed response. </p>



<p class="wp-block-paragraph">And then AI started to change the economics of attack.</p>



<p class="wp-block-paragraph">AI didn’t invent ransomware or exploitation – but it compressed time, expanded scale, and lowered the cost of finding weak systems. The result is something we’re starting to see play out: attackers no longer look for the <em>most sophisticated</em> target. They look for the <em>most consequential</em> one.</p>



<p class="wp-block-paragraph">And increasingly, that target is storage and backup systems.</p>



<p class="wp-block-paragraph">This shift reflects a deeper pattern – what you might call an <strong>Anthropic Mythos of AI in cybersecurity</strong>. Not the myth of superintelligence, but the reality that AI accelerates whatever incentives already exist.</p>



<p class="wp-block-paragraph">Attackers want leverage. And guess what; storage and backup systems provide it. AI simply helps them find the cracks faster.</p>



<p class="has-medium-font-size wp-block-paragraph"><strong>The Blind Spot AI Loves</strong></p>



<p class="wp-block-paragraph">One of the most uncomfortable truths in modern security programs is how uneven our visibility really is.</p>



<p class="wp-block-paragraph">Endpoints, networks, applications – these are continuously scanned, prioritized, scored. Storage and backup systems? Often assumed safe. Too complex. Too sensitive. Too “infrastructure‑owned” to fit neatly into exposure management programs.</p>



<p class="wp-block-paragraph">Attackers have figured this out.</p>



<p class="wp-block-paragraph">Research shows that <strong>the majority of ransomware incidents now explicitly target </strong><strong>storage and backup repositories</strong> to prevent recovery and force payment. When backups are compromised, incidents turn into crises: longer downtime, regulatory fallout, operational paralysis.</p>



<p class="wp-block-paragraph">AI doesn’t need to “break” storage and backup systems. It just needs to identify which ones haven’t been treated like first‑class citizens in the security model.</p>



<p class="has-medium-font-size wp-block-paragraph"><strong>From Feature AI to Risk AI</strong></p>



<p class="wp-block-paragraph">One of the most important AI trends in cybersecurity isn’t about flashy capabilities – it’s about context.</p>



<p class="wp-block-paragraph">AI is shifting security away from isolated findings and toward risk understanding:</p>



<ul class="wp-block-list">
<li>Which weaknesses matter <em>most</em>?</li>



<li>Which systems amplify business impact?</li>



<li>Which issues collapse recovery options?</li>
</ul>



<p class="wp-block-paragraph">This is where storage and backup security finally enters the risk conversation, rather than sitting outside it.</p>



<p class="wp-block-paragraph">The joint approach from <strong><a href="https://www.qualys.com/">Qualys Enterprise TruRisk&#x2122;</a> and </strong><strong>Core6’s <a href="http://www.core6.com/">StorageGuard</a></strong> reflects this shift. Instead of treating storage as an architectural special case, it becomes another – critically important – risk domain that can be assessed, prioritized, and acted on alongside endpoints and applications.</p>



<p class="wp-block-paragraph">Not more data. More meaning.</p>



<figure class="wp-block-gallery has-nested-images columns-default is-cropped wp-block-gallery-6 is-layout-flex wp-block-gallery-is-layout-flex">
<figure class="wp-block-image size-large"><a href="https://www.core6.com/wp-content/uploads/2026/05/Core6-Qualys-Solution-Brief.pdf" target="_blank" rel=" noreferrer noopener"><img decoding="async" width="1024" height="256" data-id="13868" src="https://www.core6.com/wp-content/uploads/2026/05/Welcome-to-Ms-Claires-Class-Google-Classroom-Header-1-1024x256.png" alt="" class="wp-image-13868" srcset="https://www.core6.com/wp-content/uploads/2026/05/Welcome-to-Ms-Claires-Class-Google-Classroom-Header-1-1024x256.png 1024w, https://www.core6.com/wp-content/uploads/2026/05/Welcome-to-Ms-Claires-Class-Google-Classroom-Header-1-300x75.png 300w, https://www.core6.com/wp-content/uploads/2026/05/Welcome-to-Ms-Claires-Class-Google-Classroom-Header-1-150x38.png 150w, https://www.core6.com/wp-content/uploads/2026/05/Welcome-to-Ms-Claires-Class-Google-Classroom-Header-1-768x192.png 768w, https://www.core6.com/wp-content/uploads/2026/05/Welcome-to-Ms-Claires-Class-Google-Classroom-Header-1-1536x384.png 1536w, https://www.core6.com/wp-content/uploads/2026/05/Welcome-to-Ms-Claires-Class-Google-Classroom-Header-1-2048x512.png 2048w" sizes="(max-width: 1024px) 100vw, 1024px" /></a></figure>
</figure>



<p class="wp-block-paragraph"><strong>Why AI-Driven Attackers Go After Recovery</strong></p>



<p class="wp-block-paragraph">There’s something almost narratively predictable about modern ransomware campaigns.</p>



<p class="wp-block-paragraph">If you think in Anthropic terms – systems shaped by incentives – the logic is clear:</p>



<ul class="wp-block-list">
<li>Attackers don’t want denial of service.</li>



<li>They want negotiation advantage.</li>



<li>Recovery infrastructure is the leverage point.</li>
</ul>



<p class="wp-block-paragraph">AI accelerates reconnaissance and vulnerability clustering. It surfaces misconfigurations, exposed interfaces, and hardening gaps – especially in complex, multi‑vendor storage and backup environments that rarely get consistent scrutiny. That’s why continuous autonomous validation matters more than episodic checks. StorageGuard’s scan of storage and backup systems – aligned to vendor hardening guides and industry standards – feeds directly into Qualys’ risk context, turning “invisible infrastructure” into actionable cyber risk.</p>



<p class="has-medium-font-size wp-block-paragraph"><strong>One Risk Model, Not Two Worlds</strong></p>



<p class="wp-block-paragraph">Another quiet AI trend in cybersecurity is consolidation – not of vendors, but of decision models.</p>



<p class="wp-block-paragraph">Security teams don’t need separate mental frameworks for infrastructure risk and cyber risk. They need one shared language of exposure and impact.</p>



<p class="wp-block-paragraph">By surfacing storage and backup security advisories, vulnerabilities, security misconfigurations and compliance issues directly inside Qualys workflows, organizations can:</p>



<ul class="wp-block-list">
<li>Prioritize remediation based on business risk, not just technical severity</li>



<li>Align Infrastructure and SecOps teams around the same risk signals</li>



<li>Reduce friction caused by siloed tools and disconnected ownership</li>
</ul>



<p class="wp-block-paragraph">This matters because AI-driven attacks don’t respect org charts. Defense shouldn’t either.</p>



<p class="has-medium-font-size wp-block-paragraph"><strong>The End of “Safe by Assumption”</strong></p>



<p class="wp-block-paragraph">If there’s one myth AI is breaking in cybersecurity, it’s the idea that anything is secure simply because it’s complex, critical, or historically untouched.</p>



<p class="wp-block-paragraph">Storage and backup systems are no longer passive repositories. They’re active battlegrounds in modern attacks.</p>



<p class="wp-block-paragraph">The organizations that adapt fastest aren’t chasing AI hype. They’re asking better questions:</p>



<ul class="wp-block-list">
<li>Where do attackers gain leverage?</li>



<li>Which systems eliminate recovery when they fail?</li>



<li>Which risks have we normalized for too long?</li>
</ul>



<p class="wp-block-paragraph">AI doesn’t answer those questions for us. But it ensures attackers are asking them already.</p>



<p class="wp-block-paragraph">The only real choice is whether defenders catch up.</p>



<p class="has-medium-font-size wp-block-paragraph"><strong>Visit the Core6 profile on the Qualys Partner Portal:</strong> <a href="https://technologypartners.qualys.com/partners/core6">https://technologypartners.qualys.com/partners/core6</a></p>



<p class="has-small-font-size wp-block-paragraph"></p>



<hr class="wp-block-separator has-alpha-channel-opacity"/>



<p class="wp-block-paragraph"></p>



<p class="wp-block-paragraph" style="font-size:15px"><strong>Frequently Asked Questions (FAQs)</strong></p>



<h3 class="wp-block-heading has-small-font-size"><strong>1. How does Qualys address storage and backup security risk?</strong></h3>



<p class="has-small-font-size wp-block-paragraph">Qualys integrates storage and backup risks into its Enterprise TruRisk&#x2122; model, allowing organizations to assess, prioritize, and remediate recovery‑related exposures using the same workflows applied to endpoints, networks, and applications.</p>



<h3 class="wp-block-heading has-small-font-size"><strong>2. What role does Core6 StorageGuard play in cyber risk management?</strong></h3>



<p class="has-small-font-size wp-block-paragraph">Core6 StorageGuard continuously evaluates storage and backup systems against vendor hardening guidelines and security standards, surfacing misconfigurations and vulnerabilities that feed directly into enterprise risk workflows.</p>



<h3 class="wp-block-heading has-small-font-size"><strong>3. What does “one risk model” mean in cybersecurity?</strong></h3>



<p class="has-small-font-size wp-block-paragraph">A single risk model unifies infrastructure and cybersecurity risk, helping security, infrastructure, and operations teams prioritize remediation based on business impact instead of working in disconnected silos.</p>



<h3 class="wp-block-heading has-small-font-size"><strong>4. How is AI shifting cybersecurity toward risk‑based decision making?</strong></h3>



<p class="has-small-font-size wp-block-paragraph">AI is moving cybersecurity from isolated vulnerability findings to risk understanding—helping teams assess which weaknesses create the greatest operational, financial, and recovery impact rather than prioritizing issues based only on technical severity.</p>



<p class="wp-block-paragraph"></p>
<p>The post <a href="https://www.core6.com/blog/how-qualys-and-core6-are-redefining-risk-visibility-in-the-age-of-ai/">How Qualys and Core6 Are Redefining Risk Visibility in the Age of AI</a> appeared first on <a href="https://www.core6.com">Core6</a>.</p>
]]></content:encoded>
					
		
		
			</item>
		<item>
		<title>Determining Asset Criticality in Enterprise Storage and Backup Environments</title>
		<link>https://www.core6.com/blog/determining-enterprise-storage-and-backup-asset-criticality/</link>
		
		<dc:creator><![CDATA[Yaniv Valik]]></dc:creator>
		<pubDate>Wed, 29 Apr 2026 07:40:53 +0000</pubDate>
				<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://core6stg.wpenginepowered.com/blog/ai-security-for-storage-and-backup-systems-storageguard-mcp-2/</guid>

					<description><![CDATA[<p>Enterprise storage and backup platforms are foundational to enterprise data services, enabling business continuity, cyber recovery, and regulatory compliance. As AI accelerates initial compromise and lateral</p>
<p>The post <a href="https://www.core6.com/blog/determining-enterprise-storage-and-backup-asset-criticality/">Determining Asset Criticality in Enterprise Storage and Backup Environments</a> appeared first on <a href="https://www.core6.com">Core6</a>.</p>
]]></description>
										<content:encoded><![CDATA[
<p class="wp-block-paragraph">Enterprise storage and backup platforms are foundational to enterprise data services, enabling business continuity, cyber recovery, and regulatory compliance. As AI accelerates initial compromise and lateral movement, these systems &#8211; central to the IT control plane &#8211; become high‑value targets, holding vast amounts of sensitive data, protecting hundreds or thousands of workloads, and ultimately determining an organization’s ability to recover from destructive cyber events.</p>



<p class="wp-block-paragraph">While many storage and backup platforms are rightly classified as critical, <strong>criticality is not a single tier but a spectrum</strong>. </p>



<p class="wp-block-paragraph">Differences in failure modes, recoverability impact, exposure, maturity, and regulatory scope mean that some systems demand earlier attention, deeper validation, or stronger controls than others. </p>



<p class="wp-block-paragraph">A structured, multi‑dimensional approach enables security teams to make deliberate, risk‑based prioritization decisions &#8211; even within the critical asset set &#8211; across both steady‑state operations and worst‑case recovery scenarios.</p>



<p class="wp-block-paragraph"><strong>Below we outline practical criteria to assess and compare criticality across the enterprise storage and backup estate.</strong></p>



<p class="has-medium-font-size wp-block-paragraph"><strong>Storage &amp; Backup Asset Criticality Criteria</strong></p>



<p class="wp-block-paragraph">The criterions are divided into four categories: Operational, Technological, Physical Characteristics and finally Governance Compliance and regulatory considerations.</p>



<p class="wp-block-paragraph"><strong>Category 1: Operational context</strong></p>



<figure class="wp-block-table"><table class="has-fixed-layout"><tbody><tr><td><strong>Criterion</strong></td><td><strong>Guidance</strong></td></tr><tr><td><strong>Operational Role</strong></td><td>Identify the system’s role: Production, DR, Primary Backup, Secondary/Archive, Reporting, UAT, Dev, or Lab. Systems directly supporting production or recovery typically rank higher.</td></tr><tr><td><strong>Data Sensitivity</strong></td><td>Evaluate the sensitivity of stored data (PII, PHI, IP, financial, regulated data, etc.).</td></tr><tr><td><strong>Application &amp; Business Tier</strong></td><td>Map systems to application tiers and business services (Tier‑0/1/2, revenue‑generating, mission‑critical, supporting). Business context is key to meaningful criticality scoring.</td></tr><tr><td><strong>M&amp;A and Inherited Systems</strong></td><td>Storage and backup systems acquired through mergers or acquisitions should be treated as high‑risk until aligned with enterprise standards and validated.</td></tr></tbody></table></figure>



<p class="wp-block-paragraph"><strong>Category 2: Technology context</strong></p>



<figure class="wp-block-table"><table class="has-fixed-layout"><tbody><tr><td><strong>Criterion</strong></td><td><strong>Guidance</strong></td></tr><tr><td><strong>RPO/RTO of Associated Servers</strong></td><td>The tighter the Recovery Point Objective and Recovery Time Objective of protected workloads, the higher the inherited criticality of the storage or backup system.</td></tr><tr><td><strong>Replication and Recoverability</strong></td><td>Assess whether the system is replicated, air‑gapped, isolated, or represents the <em>last viable recovery point</em>. Such systems become Tier‑0 assets during destructive failures.</td></tr><tr><td><strong>Access Density</strong></td><td>Consider the number and criticality of dependent servers, applications, services, and management integrations. High fan‑in significantly increases blast radius and business impact.</td></tr><tr><td><strong>Data Volume</strong></td><td>Larger data volumes increase blast radius, recovery complexity, and incentive for attackers.</td></tr><tr><td><strong>Level of Administrative Control</strong></td><td>Determine whether the system is centrally managed (HQ) or administered in remote offices. Distributed control often increases configuration drift and risk.</td></tr><tr><td><strong>Vaulted &amp; Immutable Systems</strong></td><td>Systems intended for immutability, cyber recovery, or vaulting must be hardened more aggressively, as they represent the organization’s final recovery option.</td></tr><tr><td><strong>AI / ML Training and Inference Storage</strong></td><td>Storage and backup systems supporting AI/ML workloads (such as training data, model artifacts, or inference pipelines) often warrant elevated criticality. They typically hold high‑value data, change rapidly, have amplified blast radius due to reuse, and directly affect model integrity and business outcomes.</td></tr></tbody></table></figure>



<p class="wp-block-paragraph"><strong>Category 3: Physical Characteristics</strong></p>



<figure class="wp-block-table"><table class="has-fixed-layout"><tbody><tr><td><strong>Criterion</strong></td><td><strong>Guidance</strong></td></tr><tr><td><strong>Geographical exposure</strong></td><td>Assess network placement: DMZ, internet‑facing zones, or proximity (“distance”) to web‑facing systems. East‑west exposure matters as much as north‑south.</td></tr><tr><td><strong>Physical security and accessibility</strong></td><td>Systems with weaker physical controls, broader on‑site access, or shared facilities warrant higher criticality due to the increased impact of physical compromise.</td></tr></tbody></table></figure>



<p class="wp-block-paragraph"><strong>Category 4: Governance Compliance and regulatory considerations</strong></p>



<figure class="wp-block-table"><table class="has-fixed-layout"><tbody><tr><td><strong>Criterion</strong></td><td><strong>Guidance</strong></td></tr><tr><td><strong>Applicable regulation and frameworks</strong></td><td>Systems subject to multiple compliance frameworks—or stricter regulatory requirements—should be prioritized higher due to the compounded impact of control failures.</td></tr><tr><td><strong>Security Tooling Coverage</strong></td><td>Prioritize systems that cannot support agents or are historically excluded from security scans. These are often less mature and under‑assessed.</td></tr><tr><td><strong>Assessment &amp; Validation History</strong></td><td>Consider the last security or configuration assessment, frequency of reassessments, and whether continuous validation is in place. Assumed security degrades quickly over time.</td></tr></tbody></table></figure>



<p class="has-medium-font-size wp-block-paragraph"><strong>Final Thought</strong></p>



<p class="wp-block-paragraph">Storage and backup systems are no longer passive infrastructure components. They are primary security assets, with risk profiles that change dramatically under failure or attack. In a world where the control plane is the new perimeter, these systems have become prime targets.</p>



<p class="wp-block-paragraph">By applying a structured criticality model &#8211; one that balances operational importance, recoverability impact, and security maturity &#8211; organizations can: </p>



<ul class="wp-block-list">
<li>Prioritize hardening and validation efforts</li>



<li>Reduce blind spots attackers increasingly exploit</li>



<li>Make defensible, risk‑based decisions aligned with business impact</li>
</ul>



<p class="has-medium-font-size wp-block-paragraph"></p>



<p class="has-small-font-size wp-block-paragraph"></p>



<hr class="wp-block-separator has-alpha-channel-opacity"/>



<p class="wp-block-paragraph"></p>



<p class="wp-block-paragraph" style="font-size:15px"><strong>Frequently Asked Questions (FAQ)</strong></p>



<h3 class="wp-block-heading has-small-font-size"><strong>1. Why do storage and backup systems need their own criticality model?</strong></h3>



<p class="has-small-font-size wp-block-paragraph">Storage and backup platforms (from the likes of Dell, NetApp, Hitachi Vantara, HPE, IBM, Everpure (formerly Pure), VAST Data, Rubrik, Commvault, Cohesity, Broadcom, Cisco, etc.) differ fundamentally from traditional applications or servers. They often protect hundreds or thousands of workloads, store highly sensitive data, and become the <em>last line of defense</em> during ransomware or destructive attacks. Applying a generic asset classification model usually underestimates their blast radius, recovery impact, and attacker value.</p>



<h3 class="wp-block-heading has-small-font-size"><strong>2. Aren’t all storage and backup systems already “critical”?</strong></h3>



<p class="has-small-font-size wp-block-paragraph">They are &#8211; but not equally so. Criticality is a spectrum, not a single tier. Differences in data sensitivity, dependency density, recoverability role, exposure, and governance maturity mean some systems demand earlier hardening, deeper validation, or stricter controls than others—especially under worst‑case recovery scenarios.</p>



<h3 class="wp-block-heading has-small-font-size"><strong>3. Why does “access density” matter so much?</strong></h3>



<p class="has-small-font-size wp-block-paragraph">High fan‑in systems &#8211; those connected to many servers, applications, and management tools—have an amplified blast radius. A single misconfiguration or compromise can cascade across large portions of the environment, making access density one of the strongest predictors of risk.</p>



<h3 class="wp-block-heading has-small-font-size"><strong>4. How do AI and ML workloads change storage and backup criticality?</strong></h3>



<p class="has-small-font-size wp-block-paragraph">AI/ML systems often store high‑value datasets, model artifacts, and training pipelines that are reused across teams and products. Compromise can affect model integrity, business decisions, and downstream systems, elevating both the security and operational impact of the supporting storage platforms.</p>



<p class="wp-block-paragraph"></p>
<p>The post <a href="https://www.core6.com/blog/determining-enterprise-storage-and-backup-asset-criticality/">Determining Asset Criticality in Enterprise Storage and Backup Environments</a> appeared first on <a href="https://www.core6.com">Core6</a>.</p>
]]></content:encoded>
					
		
		
			</item>
		<item>
		<title>Cyberstorage Comes of Age: Why Security Posture Management Is Now Critical for Storage &#038; Backup</title>
		<link>https://www.core6.com/blog/cyberstorage-comes-of-age-why-security-posture-management-is-critical-for-storage-and-backup/</link>
		
		<dc:creator><![CDATA[Doron Youngerwood]]></dc:creator>
		<pubDate>Mon, 30 Mar 2026 09:20:09 +0000</pubDate>
				<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://core6stg.wpenginepowered.com/blog/ai-security-for-storage-and-backup-systems-storageguard-mcp-2/</guid>

					<description><![CDATA[<p>Enterprise cyber resilience strategies are undergoing a fundamental shift. Storage is no longer a passive repository for data and backups – it is becoming an active</p>
<p>The post <a href="https://www.core6.com/blog/cyberstorage-comes-of-age-why-security-posture-management-is-critical-for-storage-and-backup/">Cyberstorage Comes of Age: Why Security Posture Management Is Now Critical for Storage &amp; Backup</a> appeared first on <a href="https://www.core6.com">Core6</a>.</p>
]]></description>
										<content:encoded><![CDATA[
<p class="wp-block-paragraph">Enterprise cyber resilience strategies are undergoing a fundamental shift. Storage is no longer a passive repository for data and backups – it is becoming an active control point in cyber defense. This shift is being driven by real‑world demand from enterprise buyers.</p>



<p class="wp-block-paragraph">In fact, Gartner reports a 187% year‑over‑year increase in client inquiries related to data resiliency in 2025 compared with 2024, underscoring how urgently organizations are rethinking their ability to protect and recover business‑critical data.</p>



<p class="wp-block-paragraph">In parallel, <strong>inquiries explicitly focused on cyberstorage grew by 167% over the same period</strong>, highlighting the acceleration of storage‑layer security as a standalone priority – not just an extension of backup or recovery tools.</p>



<p class="has-medium-font-size wp-block-paragraph"><strong>From Backup-Centric Recovery to Active Storage Defense</strong></p>



<p class="wp-block-paragraph">Traditional cyber resilience approaches focused heavily on backup frequency, immutable snapshots, and recovery time objectives. While these capabilities remain essential, they are no longer sufficient on their own.</p>



<p class="wp-block-paragraph">Modern ransomware and data‑centric attacks are designed to evade detection, compromise administrative credentials, and directly target storage &amp; backup systems</p>



<p class="wp-block-paragraph">The <em>Market Guide for Cyberstorage</em> describes how cyberstorage embeds security directly into storage and backup platforms, focusing on posture hardening, continuous validation, and recovery assurance.</p>



<p class="wp-block-paragraph">Put simply: <strong>backup is reactive by nature; storage must now participate proactively in cyber defense</strong>.</p>



<p class="has-medium-font-size wp-block-paragraph"><strong>Why Storage &amp; Backup Security Posture Management Matters</strong></p>



<p class="wp-block-paragraph">As cyberstorage capabilities mature, Gartner emphasizes that consistent execution and hardened security posture across different storage and backup platforms are far more important than individual features, especially in large enterprises operating multivendor storage and backup ecosystems and legacy infrastructure alongside newer platforms.</p>



<p class="wp-block-paragraph">In practice, this complexity leads to uneven protection. Native security features may exist on some platforms but not others. Policies drift over time. Privileged access expands quietly. Recovery assumptions go untested.</p>



<p class="wp-block-paragraph">Storage and backup security posture management addresses these realities by continuously assessing and validating:</p>



<ul class="wp-block-list">
<li>Configuration baselines across storage and backup platforms – and deviations or drifts that happen over time</li>



<li>Exposure to security advisories, vulnerabilities, and security misconfigurations</li>



<li>Alignment with industry standards, regulation, and cybersecurity frameworks</li>
</ul>



<p class="wp-block-paragraph">Without posture management, organizations often discover gaps only during an incident – when it is already too late.</p>



<p class="has-medium-font-size wp-block-paragraph"><strong>Cyberstorage in Multivendor, Legacy, and Hybrid Environments</strong></p>



<p class="wp-block-paragraph">A key insight from the Market Guide is that, while many storage vendors are embedding baseline cyberstorage features, capability depth and maturity remain uneven – particularly across:</p>



<ul class="wp-block-list">
<li>Multivendor environments</li>



<li>Older or legacy storage platforms</li>



<li>Complex hybrid cloud architectures</li>
</ul>



<p class="wp-block-paragraph">As a result, many enterprises continue to adopt specialized cyberstorage solutions to provide independent validation, consistent policy enforcement, and unified visibility across their entire storage and backup estate.</p>



<p class="wp-block-paragraph">These solutions are especially important in environments where organizations must assume that administrative credentials may be compromised – and where recovery workflows must remain trusted and operable under active attack conditions.</p>



<p class="has-medium-font-size wp-block-paragraph"><strong>StorageGuard by Core6: A Representative Vendor in Cyberstorage</strong></p>



<p class="wp-block-paragraph">In the <em>Gartner Market Guide for Cyberstorage</em>, Core6 (previously ‘Continuity’) &nbsp;is named as a <strong>Representative Vendor</strong><strong> </strong>based on our StorageGuard solution, reflecting its role in addressing the growing need for security posture management.</p>



<p class="wp-block-paragraph">StorageGuard focuses on continuously assessing and hardening storage and backup environments, helping organizations uncover misconfigurations, security gaps, and latent risks across diverse platforms. By delivering cross‑vendor visibility and posture enforcement, StorageGuard supports the core cyberstorage outcomes highlighted in the Market Guide.</p>



<p class="wp-block-paragraph">This posture‑driven approach is particularly valuable for large enterprises, where operational complexity – not lack of technology – is often the biggest obstacle to cyber resilience.</p>



<p class="wp-block-paragraph"><strong>Download the <a href="https://www.gartner.com/document-reader/document/7490653?ref=solrAll&amp;refval=539314663&amp;">Gartner® Market Guide for Cyberstorage</a></strong></p>



<p class="has-small-font-size wp-block-paragraph"><em>Attribution: Gartner, Market Guide for Cyberstorage, Vishesh Divya, 23 February 2026.</em></p>



<p class="has-small-font-size wp-block-paragraph"><em>Disclaimer: GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally and is used herein with permission. All rights reserved.</em></p>



<p class="has-small-font-size wp-block-paragraph"><em>Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.</em></p>



<p class="has-medium-font-size wp-block-paragraph"></p>



<p class="has-small-font-size wp-block-paragraph"></p>



<hr class="wp-block-separator has-alpha-channel-opacity"/>



<p class="wp-block-paragraph"></p>



<p class="wp-block-paragraph" style="font-size:15px"><strong>Frequently Asked Questions (FAQ)</strong></p>



<h3 class="wp-block-heading has-small-font-size"><strong>1. What is cyberstorage?</strong></h3>



<p class="has-small-font-size wp-block-paragraph">Cyberstorage is an approach to securing enterprise storage that embeds <strong>active detection, containment, and recovery assurance directly at the data layer</strong>, rather than relying solely on backup or perimeter security. It treats storage systems as active participants in cyber defense, capable of detecting early-stage attacks, limiting blast radius, and validating recovery readiness.</p>



<h3 class="wp-block-heading has-small-font-size"><strong>2. What is security posture management for <strong>storage and backup</strong>?</strong></h3>



<p class="has-small-font-size wp-block-paragraph">Storage and backup security posture management is the continuous assessment and hardening of storage and backup environments to ensure they are securely configured, resilient to attack, and aligned with cyber resilience best practices. It focuses on identifying misconfigurations, privilege risks, policy gaps, and exposure that could undermine recovery during a cyber incident.</p>



<p class="has-small-font-size wp-block-paragraph"><strong>3. Why are multivendor storage environments harder to secure?</strong></p>



<p class="has-small-font-size wp-block-paragraph">Multivendor environments often have inconsistent security models, visibility gaps, and uneven maturity across platforms. Native protection features vary widely between vendors, making it difficult to maintain a unified security posture. This complexity increases the risk of misconfiguration and blind spots that attackers can exploit.</p>



<p class="has-small-font-size wp-block-paragraph"><strong>4. What types of organizations benefit most from cyberstorage &#8211; and specifically security posture management?</strong></p>



<p class="has-small-font-size wp-block-paragraph">Cyberstorage and storage security posture management are especially valuable for:</p>



<ul class="wp-block-list">
<li class="has-small-font-size">Large enterprises</li>



<li class="has-small-font-size">Organizations with multivendor or hybrid storage environments</li>



<li class="has-small-font-size">Regulated industries with strict recovery and compliance requirements</li>



<li class="has-small-font-size">Businesses reliant on uninterrupted access to critical data</li>
</ul>



<p class="wp-block-paragraph"></p>
<p>The post <a href="https://www.core6.com/blog/cyberstorage-comes-of-age-why-security-posture-management-is-critical-for-storage-and-backup/">Cyberstorage Comes of Age: Why Security Posture Management Is Now Critical for Storage &amp; Backup</a> appeared first on <a href="https://www.core6.com">Core6</a>.</p>
]]></content:encoded>
					
		
		
			</item>
		<item>
		<title>AI-Powered Security for Storage &#038; Backup: Introducing the StorageGuard MCP Server</title>
		<link>https://www.core6.com/blog/ai-security-for-storage-and-backup-systems-storageguard-mcp/</link>
		
		<dc:creator><![CDATA[Yaniv Valik]]></dc:creator>
		<pubDate>Thu, 12 Mar 2026 15:22:00 +0000</pubDate>
				<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://core6stg.wpenginepowered.com/blog/ai-has-changed-the-rules-of-cyber-defense-how-to-respond-2/</guid>

					<description><![CDATA[<p>We’re excited to announce the StorageGuard Model Context Protocol (MCP) Server &#8211; a powerful new way to manage and automate the security posture of enterprise storage</p>
<p>The post <a href="https://www.core6.com/blog/ai-security-for-storage-and-backup-systems-storageguard-mcp/">AI-Powered Security for Storage &amp; Backup: Introducing the StorageGuard MCP Server</a> appeared first on <a href="https://www.core6.com">Core6</a>.</p>
]]></description>
										<content:encoded><![CDATA[
<p class="wp-block-paragraph">We’re excited to announce the <strong>StorageGuard <em>Model Context Protocol (MCP) </em>Server</strong> &#8211; a powerful new way to manage and automate the security posture of enterprise storage and backup systems using AI assistants such as ChatGPT, Copilot, Gemini or Claude.</p>



<p class="has-medium-font-size wp-block-paragraph"><strong>AI-Powered Security Operations for Storage &amp; Backup</strong></p>



<p class="wp-block-paragraph">Imagine prompting your favorite AI tool to:</p>



<ul class="wp-block-list">
<li>&#8220;List all administrator user accounts and groups on my NY-based storage systems&#8221;</li>



<li>&#8220;Remediate incorrect session-limit settings on my backup appliances&#8221;</li>



<li>&#8220;Check whether my storage systems comply with the proposed 2025 HIPAA regulation updates&#8221;</li>



<li>&#8220;Determine whether my backup system is vulnerable to CVE-2025-3928&#8221;</li>



<li>&#8220;Identify which hardening guidelines are still missing on my NAS platforms&#8221;</li>
</ul>



<p class="wp-block-paragraph">By connecting your AI environment to the StorageGuard MCP Server, teams can query configurations, investigate findings, generate reports, and validate compliance—all through natural language. This dramatically reduces the learning curve and streamlines IT hardening, security operations, and audit-related tasks.</p>



<p class="has-medium-font-size wp-block-paragraph"><strong>What’s Next: Cross-Layer Intelligence With MCP</strong></p>



<p class="wp-block-paragraph">The real power of MCP emerges when your AI application can access multiple MCP-enabled systems &#8211; <a href="https://www.core6.com/storageguard/">StorageGuard</a> alongside platforms such as ServiceNow, Varonis, Check Point, Netwrix, and others.</p>



<p class="wp-block-paragraph">Correlating insights across these layers unlocks new possibilities:</p>



<ul class="wp-block-list">
<li><strong>Advanced risk-based vulnerability prioritization</strong> using layered-defense analysis and attack-path insights</li>



<li><strong>Streamlined compliance reporting</strong> by bringing data-classification context into Storage and Backup posture assessments</li>



<li><strong>Business-aware remediation</strong> by attaching business-unit, service, and application context to Storage and Backup environments</li>
</ul>



<p class="wp-block-paragraph">This cross-layer intelligence drives faster, more accurate decisions and elevates both security and operational efficiency.</p>



<figure class="wp-block-image size-full is-resized"><img decoding="async" width="996" height="2006" src="https://www.core6.com/wp-content/uploads/2026/02/SG-AI-image-6-2.png" alt="" class="wp-image-13740" style="aspect-ratio:0.5467523197715917;width:363px;height:auto" srcset="https://www.core6.com/wp-content/uploads/2026/02/SG-AI-image-6-2.png 996w, https://www.core6.com/wp-content/uploads/2026/02/SG-AI-image-6-2-149x300.png 149w, https://www.core6.com/wp-content/uploads/2026/02/SG-AI-image-6-2-508x1024.png 508w, https://www.core6.com/wp-content/uploads/2026/02/SG-AI-image-6-2-74x150.png 74w, https://www.core6.com/wp-content/uploads/2026/02/SG-AI-image-6-2-768x1547.png 768w, https://www.core6.com/wp-content/uploads/2026/02/SG-AI-image-6-2-763x1536.png 763w" sizes="(max-width: 996px) 100vw, 996px" /></figure>



<figure class="wp-block-image size-large"><a href="https://www.youtube.com/watch?v=2cERfSGApr0" target="_blank" rel=" noreferrer noopener"><img decoding="async" width="1024" height="256" src="https://www.core6.com/wp-content/uploads/2025/12/Banner-10-1024x256.png" alt="" class="wp-image-13579" srcset="https://www.core6.com/wp-content/uploads/2025/12/Banner-10-1024x256.png 1024w, https://www.core6.com/wp-content/uploads/2025/12/Banner-10-300x75.png 300w, https://www.core6.com/wp-content/uploads/2025/12/Banner-10-150x38.png 150w, https://www.core6.com/wp-content/uploads/2025/12/Banner-10-768x192.png 768w, https://www.core6.com/wp-content/uploads/2025/12/Banner-10-1536x384.png 1536w, https://www.core6.com/wp-content/uploads/2025/12/Banner-10-2048x512.png 2048w" sizes="(max-width: 1024px) 100vw, 1024px" /></a></figure>



<p class="has-medium-font-size wp-block-paragraph"><strong>Availability</strong></p>



<p class="wp-block-paragraph">The StorageGuard MCP Server is currently offered in limited-availability beta as part of the <a href="https://www.core6.com/pricing/"><em>StorageGuard Enterprise + AI</em> edition</a>.</p>



<p class="has-medium-font-size wp-block-paragraph">If you’d like to learn more or explore what MCP can enable for your environment, <strong><a href="https://www.core6.com/talk-to-an-expert/">contact us today!</a></strong></p>



<p class="has-small-font-size wp-block-paragraph"></p>



<hr class="wp-block-separator has-alpha-channel-opacity"/>



<p class="wp-block-paragraph"></p>



<p class="wp-block-paragraph" style="font-size:15px"><strong>Frequently Asked Questions (FAQ)</strong></p>



<h3 class="wp-block-heading has-small-font-size"><strong>1. Why do AI-driven threats require a new cyber defense strategy?</strong></h3>



<p class="has-small-font-size wp-block-paragraph">AI empowers attackers to instantly map environments, detect misconfigurations, and launch targeted exploits at machine speed, far beyond traditional manual reconnaissance approaches. This renders periodic security checks insufficient and demands continuous security posture management.</p>



<h3 class="wp-block-heading has-small-font-size"><strong>2. What makes data infrastructure such a critical target for AI-powered attacks?</strong></h3>



<p class="has-small-font-size wp-block-paragraph">Data infrastructure — especially storage and backup systems — houses sensitive workloads and cyber-recovery capabilities. AI can quickly identify subtle vulnerabilities in these systems, making compromise catastrophic without proactive defense.</p>



<h3 class="wp-block-heading has-small-font-size"><strong>3. How does automated remediation improve cyber defenses?</strong></h3>



<p class="has-small-font-size wp-block-paragraph">Automated remediation — such as StorageGuard’s <em>Fix It</em> capability &#8211; allows organizations to correct security misconfigurations automatically, reducing exposure windows and scaling security without proportionally increasing headcount.</p>



<h3 class="wp-block-heading has-small-font-size"><strong>4. How does StorageGuard help organizations defend against AI-driven cyber threats?</strong></h3>



<p class="has-small-font-size wp-block-paragraph">By connecting our customers&#8217; AI environments to the&nbsp;StorageGuard MCP Server, teams can inspect and harden security configurations, investigate and resolve weaknesses, and validate compliance &#8211; all through natural language.</p>



<p class="wp-block-paragraph"></p>
<p>The post <a href="https://www.core6.com/blog/ai-security-for-storage-and-backup-systems-storageguard-mcp/">AI-Powered Security for Storage &amp; Backup: Introducing the StorageGuard MCP Server</a> appeared first on <a href="https://www.core6.com">Core6</a>.</p>
]]></content:encoded>
					
		
		
			</item>
	</channel>
</rss>
