Over the weekend I went trough my notes I have created after I passed the certification and created over 200 practice questions. If you are preparing for this certification, you will find everything here. Otherwise each section has their own testing questions at the end of the lectures.

🤖 AI Agent Discovers Critical 9.8 RCE Vulnerability What happened: For the first time, a critical vulnerability (CVE-2026-21536, CVSS 9.8) was discovered by a fully autonomous AI penetration-testing agent named XBOW. The flaw was identified without direct access to source code, demonstrating that AI agents can independently detect complex vulnerabilities through automated analysis and fuzzing techniques. 🔗 https://krebsonsecurity.com/2026/03/microsoft-patch-tuesday-march-2026-edition/ 🛡️ OpenAI Releases ‘Codex Security’ for Automated Code Auditing What happened: OpenAI launched a research preview of Codex Security, an AI agent designed to analyze enterprise repositories and identify vulnerabilities before attackers can exploit them. The system can automatically scan codebases, generate proof-of-concept exploits, and suggest fixes—aiming to strengthen software supply-chain security and automate vulnerability remediation workflows. 🔗 https://openai.com/index/codex-security-now-in-research-preview/ 🩹 Microsoft March Patch Tuesday Fixes 80+ Vulnerabilities What happened: Microsoft’s March Patch Tuesday addressed over 80 security flaws, including the publicly disclosed SQL Server privilege-escalation vulnerability CVE-2026-21262. Successful exploitation could allow attackers with limited access to escalate privileges and gain sysadmin-level control over database environments, making rapid patching critical. 🔗 https://www.bleepingcomputer.com/news/microsoft/microsoft-march-2026-patch-tuesday-fixes-2-zero-days-79-flaws/ 🌪️ Handala Group Claims Destructive Attack on Stryker What happened: The Iran-aligned hacker group Handala claimed responsibility for a destructive cyberattack against medical manufacturer Stryker. By compromising the organization’s Microsoft Intune environment, attackers reportedly wiped thousands of endpoints and disrupted operations—though patient-connected devices were not impacted.

Let’s kick this off casually — drop your location, favorite drink or something random about yourself. I’ll go first: I’m in Czech Republic and usually running on ☕. Most days I’m up by 5 AM — I love those early hours when everything’s quiet and I can dive deep into focused work without distractions. Best time to build, think and create. No tech talk here — just hang out, vibe and get to know the crew. 👉 Like someone’s post if you relate!

Hey everyone, it's great to be here an connect with you guys. I'm Francisco from Barcelona and I'm excited to learn more about AI Security. Feel free to connect through linkedin: https://www.linkedin.com/in/franciscovfonseca/

Here’s your clean roundup of the most important cybersecurity and AI-security developments from the past week. This cycle highlights the rapid rise of AI-driven vulnerability discovery, autonomous security tooling and the growing strategic battle over AI infrastructure. 🤖🛡️ OpenAI Launches ‘Codex Security’ Agent to Find and Fix Vulnerabilities What happened: OpenAI introduced Codex Security, an AI-powered agent designed to automatically analyze repositories, identify vulnerabilities, validate them in sandbox environments, and propose fixes. During early testing it scanned over 1.2 million commits and identified more than 10,000 high-severity security issues, while reducing false positives by validating findings within the system context. 🔗 https://thehackernews.com/2026/03/openai-codex-security-scanned-12.html 🚀☁️ Amazon and OpenAI Announce $50 B Strategic AI Partnership What happened: Amazon and OpenAI revealed a massive $50 billion multi-year partnership to accelerate enterprise AI adoption. As part of the agreement, AWS will host OpenAI’s Frontier models and provide large-scale infrastructure, while the companies jointly develop a stateful runtime environment integrated into Amazon Bedrock, allowing enterprises to run persistent AI agents directly in AWS environments. 🔗 https://www.aboutamazon.com/news/aws/amazon-open-ai-strategic-partnership-investment 🦊🔍 Anthropic’s Claude Opus AI Discovers 22 Firefox Vulnerabilities What happened: Anthropic’s Claude Opus 4.6 uncovered 22 previously unknown security vulnerabilities in the Firefox browser, including 14 high-severity issues affecting memory safety and access boundaries. Mozilla patched most of them in Firefox 148, demonstrating how AI systems are rapidly becoming powerful tools for automated bug discovery in complex software ecosystems. 🔗 https://thehackernews.com/2026/03/anthropic-finds-22-firefox-vulnerabilities.html