Blog

Insights

Context Is the Real Architecture Behind AI-Powered SOC

Context-aware SOC operations achieve higher auto-resolution by structuring three distinct context layers. Learn what most AI security teams get wrong

Eldad Rudich

February 16, 2026

Research

From Troubleshooting to Takeover: When the AI Chat Is the Attack

Daylight uncovered an active attack campaign where hackers hijack Google Ads and manipulate AI chat conversations to trick macOS users into installing malware. The twist: the AI platform is real, the conversation is faked.

Jin Hao Chan

Aaron (Zhongyuan) Hau

February 24, 2026

Engineering

Building at Speed with Custom Lint Rules

A step-by-step guide to building custom ESLint rules that enforce business logic, prevent regressions, and align human and AI-generated code.

Nitzan Kletter

February 16, 2026

Product

Amplify Your Team’s Impact with Daylight MCP

Daylight introduces its Model Context Protocol (MCP) Server, enabling security teams to connect investigations directly to AI assistants like Claude and Cursor. Learn how this integration reduces console fatigue, streamlines reporting, and brings SOC intelligence into your existing workflows.

Lior Liberman

December 26, 2025

Research

North Korea’s “Prospect Call” Trap: Lazarus Turns Teams Meetings into macOS Credential Theft

An analyst report on a real-world macOS intrusion using live social engineering, attributed to BlueNoroff, with practical detection and defense insights.

Kyle Henson

Oren Biderman

January 29, 2026

Oops! No matches found

Try tweaking your filters or resetting them to see everything again.

Reset All