Agentic AI is making its mark on security awareness training. RSAC 2026 continues to reveal its secrets—and insights while April Fool’s Day brought warnings about threats and attacks that continue to hoodwink victims.

Q&A: KnowBe4 CISO Advisor Roger Grimes Says Agentic AI Is a Powerful Awareness Trainer

Agentic AI can be felt in every facet of security—equally transformational for attackers and defenders alike. That creates challenges and opportunities for security awareness training. Tech-Channels™ sat down at RSAC 2026 with Roger Grimes, CISO Advisor at KnowBe4, who has journeyed from AI skeptic to advocate. In his 40 years in the computer security industry, Grimes has honed expertise in a wide variety of areas from PKI to identity management and is the author of 15 books. He marvels at the transformation AI is bringing to the threat landscape and security awareness training—and explains why it can be a tougher, more effective instructor than a human.

RSAC: That’s a Wrap—Or Is It?

As RSAC wrapped up, the conversation shifted to operationalizing threat intelligence, meeting customized attacks where they are, recovery, reimagining the CISO, and of course, where humans fit into the loop. What we learned is that humans are still very much in play, MCP is passe, cybermarketers are becoming an important line of defense, and cybersecurity shouldn’t be seen as a cost center but rather a way to reduce unrealized loss.

Software Leaders Face New Era of Data Control

The US government earlier this year instructed diplomats to push back on data sovereignty and data localization measures put forth by overseas regulators, especially in the EU. The US, which dominates the cloud computing and AI industries, fears that these measures could hinder the development of AI services by disrupting global data flows and increasing operational costs and cybersecurity risk. For software companies, the debate is really about who controls data, where it is stored and processed and under whose laws it operates. This matters more than ever, because those questions increasingly inform product architecture, customer trust, and the ability to expand into regulated and sovereignty-conscious markets. The challenge is especially relevant to software companies in the US, as it basically dictates where they can and can’t do business and under which controls.

Closing the Cloud Complexity Gap: Top 5 Insights from the 2026 Cloud Security Report

Cloud drives speed, agility, and AI transformation, but it also multiplies risk faster than traditional defenses can keep up. The 2026 Cloud Security Report surveyed over 1,100 cybersecurity leaders worldwide and revealed structural gaps in visibility, coordination, and automation across modern cloud environments. Things like fragmented defenses that hide real risk, talent shortages and multicloud complexity stand out.

Cyberattacks: It’s April 1, Don’t Get Fooled Again

Every year as April 1 rolls around, all the jokesters come out of the woodwork to prank their family, friends, colleagues and social media followers. Some are really clever and elaborate. But scammers are out every day, tricking people and organizations into turning over credentials, transferring funds or just providing access to their businesses’ crown jewels. The most effective cyberattacks today are designed to exploit trust, perception, and gaps in visibility. They trick both people and security systems by blending in with legitimate behavior, credentials, or workflows. On this April Fool’s Day, check out the top attacks, techniques, and threats that continue to hoodwink victims and security teams.