Episode 042: CISA redefines zero trust for industrial networks

Curated Research Insights

AI Research

1. Frontier Coding Agents Cross a Significant Threshold — and Benchmarks Can't Keep Up - arXiv - April 2026 Credibility: Tier 2 Link: https://arxiv.org/abs/2604.25067
2. Academic Research Calls the Entire Explainable AI Paradigm Into Question - arXiv - 2026; Counterpoint: TMLR VXAI - 2026 Credibility: Tier 2 (critiques), Tier 1 (VXAI) Link: https://arxiv.org/abs/2602.24176; https://arxiv.org/html/2605.16041v1; https://arxiv.org/abs/2506.15408
3. AI Governance Is the Binding Constraint in Security Operations — Not the Algorithms - arXiv/CSO Online - May 2026; CSO Online (undated 2026) Credibility: Tier 2 (arXiv), Tier 4 (CSO Online) Link: https://arxiv.org/html/2605.09534v1; https://arxiv.org/html/2605.08316v1; https://www.csoonline.com/article/4154239/how-ai-is-transforming-threat-detection.html
4. The AI Chip Competition Is Intensifying — But Almost All the Benchmark Claims Need Independent Verification - en.unibetter-ic.com - 2026 Credibility: Tier 5 Link: https://en.unibetter-ic.com/16-top-ai-chip-makers-in-2026/
5. PG&E's Wildfire AI System Names a Specific Model — But the Numbers Are Self-Reported - PG&E/KRCR - 2025–2026 Credibility: Tier 3 (PG&E), Tier 4 (KRCR) Link: https://www.pge.com/en/newsroom/currents/safety/how-pg-e-is-catching-wildfire-risks-before-they-start-.html; https://www.pge.com/assets/pge/docs/outages-and-safety/outage-preparedness-and-support/2026-2028-wildfire-mitigation-plan-overview.pdf; https://krcrtv.com/news/local/pge-unveils-machine-learning-powered-monitoring-center-to-prevent-wildfires
6. The Real AI Grid Story Is Organizational, Not Algorithmic - Utility Dive/IEEE - 2026 Credibility: Tier 4 (Utility Dive), Tier 2 (IEEE event) Link: https://www.utilitydive.com/news/making-ai-work-for-utility-companies-a-change-in-power/812619/; https://events.vtools.ieee.org/m/544973
7. AI Architecture in 2026 Is a Hybridization Story, Not a Replacement Story - IEEE Computer - January 2026 Credibility: Tier 1 Link: https://www.computer.org/csdl/magazine/co/2026/01/11321039/2cTQFfASKCA

Cloud Services

1. Compromised Trivy Release Infects Over 1,000 Cloud Environments - The Register - March 24, 2026 Credibility: Tier 4 Link: https://www.theregister.com/special-features/2026/03/24/1k-cloud-environments-infected-via-trivy-attack/5226043
2. AI-Assisted AWS Intrusion Achieves Admin Privileges in Under 10 Minutes - The Register - February 4, 2026 Credibility: Tier 4 Link: https://www.theregister.com/security/2026/02/04/aws-intruder-pulled-off-ai-assisted-cloud-break-in-in-8-mins/4945272
3. ShinyHunters Breach Spree Claims Salesforce Customers, Telus Digital, Canvas, and Pitney Bowes - The Register - March–May 2026 Credibility: Tier 4 Link: https://www.theregister.com/security/2026/03/09/shinyhunters-claims-yet-another-salesforce-customers-breach/5220118; https://www.theregister.com/security/2026/03/15/outsourcer-telus-admits-to-attack-possibly-by-shinyhunters/5221546; https://www.theregister.com/security/2026/04/28/pitney-bowes-the-latest-victim-of-shinyhunters-breach-spree/5222896; https://www.theregister.com/security/2026/05/12/double-canvas-intrusion-confirmed-as-shinyhunters-resets-leak-deadline/5238361
4. AWS US-EAST-1 Outage Traced to Data Center Thermal Event - Network World - May 2026 Credibility: Tier 4 Link: https://www.networkworld.com/article/4168878/aws-hit-by-us-east-1-outage-after-data-center-thermal-event.html
5. AI Agent Security Becomes the Defining Battleground for Cloud Security Platforms in 2026 - CSO Online - 2026 Credibility: Tier 4 Link: https://www.csoonline.com/article/4162560/google-drafts-ai-agents-secure-systems-against-ai-hackers.html; https://www.csoonline.com/article/4148974/palo-alto-updates-security-platform-to-discover-ai-agents.html; https://www.csoonline.com/article/4175592/microsoft-releases-open-source-tools-to-operationalize-ai-agent-safety-2.html; https://www.csoonline.com/article/4158847/curity-looks-to-reinvent-iam-with-runtime-authorization-for-ai-agents.html
6. CNCF Q1 2026 Report Captures Cloud Native Patterns That Have Crossed Into Mainstream Production - CNCF - March 2026 Credibility: Tier 3 Link: https://www.cncf.io/wp-content/uploads/2026/03/State-of-Cloud-Native-Development-Q1-2026.pdf; https://architecture.cncf.io/about/
7. PG&E Unveils Continuous Monitoring Center, Claims 17 Wildfire Ignitions Intercepted in 2025 - PR Newswire/PG&E - May 2026 Credibility: Tier 4 (wire), Tier 3 (company) Link: https://www.prnewswire.com/news-releases/pge-unveils-first-of-its-kind-monitoring-hub-that-helped-prevent-17-wildfires-and-over-a-thousand-outages-302759970.html; https://www.pge.com/en/newsroom/currents/safety/how-pg-e-is-catching-wildfire-risks-before-they-start-.html

GridTech

1. U.S. Public Fast-Charging Network Crosses 68,000 Ports as Private Buildout Outpaces Federal Uncertainty - EV Charging Stations - Jan 1, 2026 Credibility: Tier 4 Link: https://evchargingstations.com/chargingnews/largest-dc-fast-charging-networks-jan-2026/
2. China Deploys Megawatt-Class EV Charging at Commercial Scale, Widening Technology Gap - Bolt Earth/Driivz - 2026 Credibility: Tier 4 Link: https://bolt.earth/blog/top-5-ev-charging-innovations-of-2026-set-to-solve-range-anxiety; https://driivz.com/blog/2026-ev-charging-industry-predictions-and-trends/
3. NREL Puts Hard Numbers on Battery Storage Costs — And Flags a Market Design Problem - NREL - 2025 Credibility: Tier 2 Link: https://docs.nrel.gov/docs/fy25osti/93281.pdf; https://www.nrel.gov/news/detail/program/2025/safer-batteries-reliable-power-guiding-research-for-next-generation-energy-storage
4. NREL Documents How Long-Duration Storage Changes the Economics of Renewable Overbuild - NREL - 2025 Credibility: Tier 2 Link: https://docs.nrel.gov/docs/fy25osti/95548.pdf
5. PG&E Files $18.9 Billion Wildfire Mitigation Plan, Regulators Issue Formal Approval - California Energy Safety/PG&E/T&D World - Feb 5, 2026; Apr 2025 filing Credibility: Tier 2 (regulator); Tier 3–4 (filings/trade) Link: https://energysafety.ca.gov/news/2026/02/05/energy-safety-issues-approval-of-pacific-gas-and-electrics-2026-2028-wildfire-mitigation-base-plan/; https://www.tdworld.com/wildfire/news/55280868/pge-submits-2026-2028-wildfire-mitigation-plan; https://www.pge.com/assets/pge/docs/outages-and-safety/outage-preparedness-and-support/pge-2026-2028-base-wmp-vol1-r0.pdf; https://www.pge.com/assets/pge/docs/outages-and-safety/outage-preparedness-and-support/pge-2025-q4-qn.pdf
6. Iran-Linked and China-Linked Actors Targeting U.S. Energy Infrastructure — With Different Strategies - Utility Dive - 2026 Credibility: Tier 4 Link: https://www.utilitydive.com/news/nerc-cisa-iran-war-cyber-hacking/816914/; https://www.utilitydive.com/news/china-energy-utility-cyber-threat-typhoon/806893/; https://www.utilitydive.com/news/us-entities-cyber-risk-iran-war/814432/; https://www.utilitydive.com/news/grid-scale-battery-energy-storage-systems-face-heightened-risk-of-cyberatta/807718/
7. "Low Impact" NERC CIP Status Is a Regulatory Category, Not a Security Risk Assessment - Utility Dive - 2026 Credibility: Tier 4 Link: https://www.utilitydive.com/news/when-low-impact-doesnt-mean-low-risk-cyber-nerc/819730/; https://www.utilitydive.com/news/building-security-into-energy-infrastructure-by-design-is-lower-cost-and-mo/806177/

Security

1. CISA Issues Definitive Zero Trust Roadmap for Operational Technology — and It Looks Nothing Like the IT Version - CISA/IC3 - April 29, 2026 Credibility: Tier 2 Link: https://www.ic3.gov/CSA/2026/260429.pdf
2. UK Releases National Energy Cyber Security Strategy, Naming a January 2026 Renewable Infrastructure Attack as Triggering Event - UK DSIT - 2026 Credibility: Tier 2 Link: https://assets.publishing.service.gov.uk/media/69fe029a2a6137e93226b8f5/energy-sector-cyber-security-strategy-2026.pdf
3. U.S. House Advances Pipeline Cybersecurity Bill and New Energy Threat Analysis Center - Industrial Cyber/DOE CESER - 2026; Feb 2026 Credibility: Tier 4 (Industrial Cyber), Tier 2 (DOE) Link: https://industrialcyber.co/regulation-standards-and-compliance/house-panel-moves-pipeline-cybersecurity-and-energy-threat-analysis-bills-forward-to-boost-energy-sector-resilience/; https://www.energy.gov/ceser/articles/striking-out-threat-how-energy-sector-combats-cyber-attacks
4. Ransomware Groups Are Now Mapping Industrial Environments Before They Strike - Dragos/OPSWAT - 2026 Credibility: Tier 3 Link: https://www.dragos.com/ot-cybersecurity-year-in-review; https://french.opswat.com/blog/every-ot-breach-has-a-file-in-its-attack-chain-the-ics-ot-threat-landscape-2024-2026
5. Cyber Risk Becomes a Formal Valuation Metric in Energy Sector M&A - NCC Group - 2026 Credibility: Tier 3 Link: https://www.nccgroup.com/the-state-of-energy-sector-ma-in-2026-cyber-risk-is-now-a-valuation-metric/
6. PG&E Reports Seventy-Five Percent Reduction in CPUC-Reportable Ignitions vs. 2017 Baseline - PG&E CSR/Programs/WMP - 2024–2026 Credibility: Tier 3 (company), Tier 2 (CPUC filing) Link: https://www.pgecorp.com/sustainability/corporate-sustainability/corporate_sustainability_report_2024/performance/reliable_and_resilient_operations/wildfire_safety.html; https://www.pge.com/en/outages-and-safety/safety/community-wildfire-safety-program/enhanced-powerline-safety-settings.html; https://www.pge.com/assets/pge/docs/outages-and-safety/outage-preparedness-and-support/pge-2026-2028-base-wmp-vol1-r0.pdf; https://www.pge.com/en/outages-and-safety/safety/community-wildfire-safety-program/wildfire-safety-progress.html
7. FERC Civil Penalty Actions in 2026 Include Disgorgement Orders — a Notable Enforcement Posture Shift - FERC - 2026 Credibility: Tier 2 Link: https://www.ferc.gov/civil-penalties/all-civil-penalty-actions-2026; https://www.ferc.gov/news-events/news/comments-sought-fercnerc-staff-white-paper-cip-standards-notices-penalties

Have research on AI, Cloud, or Grid technology? Share your findings.