{
"$type": "site.standard.document",
"bskyPostRef": {
"cid": "bafyreiaeekocx7n6or67a2llqpyrya57tiow5go77wjfmbjukkivnb4hoq",
"uri": "at://did:plc:jvtquacwpds4pvrhh2k4l3ft/app.bsky.feed.post/3mmcg4yrhuhk2"
},
"coverImage": {
"$type": "blob",
"ref": {
"$link": "bafkreig7bav5adazitrd3cfcpblfr54b6hc6athuw4h25kmx4l5nbfrrny"
},
"mimeType": "image/jpeg",
"size": 231756
},
"path": "/notes/2026/week-20-2026/",
"publishedAt": "2026-05-20T17:21:15.834Z",
"site": "https://www.kylereddoch.me",
"tags": [
"weaponized AI and identity spoofing",
"Why Agentic AI Is Security’s Next Blind Spot",
"5 key components of a cyber incident response plan"
],
"textContent": "> Just another late weekly notes… It was a busy weekend and first of this week, it almost escaped my mind.\n\n## The vibe\n\nA full, proud, slightly chaotic family week. Between the college graduation, the party, the choir concert, and the quick Lubbock trip, this one had that “life is moving fast, but in a good way” feeling. Not much writing happened, but honestly, some weeks are for showing up, celebrating people you love, and letting the blog wait a minute.\n\n## Highlights\n\n * 🎓 Let’s start off with the biggest news of the week: My oldest graduated college! We went down to Lubbock (Texas Tech), to watch her Graduation Ceremony.\n * 🍗 I got to try Dave’s Hot Chicken for the first time while I was in Lubbock. Man was it some amazing chicken! If you have a Dave’s Hot Chicken near you, I highly recommend it.\n * 🎉 Saturday we had our family over for a little Graduation party for our daughter. It was nothing special, just some food and drinks, but it was nice to see everyone and celebrate her achievement.\n * 🎤 Earlier this week was my daughter’s last choir concert. This was the one where they also do a little talent show kind of thing and hand out awards. There were some pretty good singers. The concert went well.\n * ✍️ Unfortunately, with how busy it was this week, I didn’t get much time to write the posts I wanted to.\n\n\n\n## Worth sharing\n\n * AI-generated fraud and identity spoofing are getting harder to treat as “normal” account fraud. This CyberScoop piece on weaponized AI and identity spoofing is sponsored, but it still makes a useful point: static identity checks are going to struggle when attackers can scale synthetic identities, deepfake impersonation, and document fraud faster than most organizations can update their controls.\n * Agentic AI is becoming one of those security problems that looks small until you realize how much access these tools can touch. Why Agentic AI Is Security’s Next Blind Spot is worth reading because it frames AI agents less like “chatbots” and more like systems that can read, act, connect to tools, and create new lateral movement paths if nobody is reviewing permissions, inputs, and workflows.\n * A cyber incident response plan should not be a 100-page binder nobody reads during an actual crisis. This article on the 5 key components of a cyber incident response plan is a good reminder that response plans need to be crisp, business-specific, scenario-driven, threat-informed, and tested. For MSPs, that means client-specific playbooks for ransomware, BEC, cloud compromise, and vendor/supply-chain events.\n\n\n\n✌️ That is it for this week. I hope you have a great week and remember to be kind to each other!",
"title": "A Texas Tech Graduation, Hot Chicken, and a Busy Family Week (Week 20, 2026)",
"updatedAt": "2026-05-20T17:00:00.000Z"
}