Friday, December 26, 2025 — Meeting Recap

2026 Cloud Security Predictions

The meeting began with casual conversation about the Christmas holiday and recent weather events in California, including a tornado warning in Monterey Bay. Shawn then introduced the main topic of the meeting, which was to discuss predictions for 2026 in cloud security. Participants were encouraged to share their thoughts on future trends in the field, though no specific predictions were made during the transcript provided.

AI Security Threat Predictions

The group discussed two main predictions: Kyle and Kaye predicted that agentic AI attacks would become a significant issue by mid-year, with Kaye estimating a 90% likelihood, while Stryker predicted a major third-party vendor breach within the next 11 months, potentially resulting from an employee's compromised personal security. The discussion touched on the Anthropic report's findings and the criticism surrounding its methodology, with Jay and Stryker noting that while the report's conclusions were questioned, Anthropic had reported attempted intrusions to authorities.

Tech Predictions and Industry Impact

Jay presented a list of 12 predictions, including potential ransomware incidents, AI misalignment, and the rise of Eurotech. He explained that some predictions were more likely than others, and discussed the implications of his predictions on the tech industry. Stryker and Shawn provided feedback and asked clarifying questions about Jay's predictions. The group discussed the potential impact of Eurotech on the global tech landscape and the possibility of a new AI company releasing energy-efficient world models.

Google's Cybersecurity Acquisition Speculation

The group discussed Google's potential acquisition of Palo Alto Networks, with Jay and Juninho speculating that it could happen in 2026. Stryker shared insights from a recent customer meeting with Google, noting their struggles with integrating acquisitions and focusing on enhancing their Google SecOps product. The discussion touched on Google's Gemini security model and their challenges in handling enterprise-level operations. The conversation concluded with Jay mentioning Cisco's HyperShield technology and its potential impact on the cybersecurity industry, suggesting that it could become a significant player in the market.

eBPF: The Future of Security

Jay explained eBPF as a kernel-level technology that enables safe execution of code within strict rules, contrasting it with containers like Docker. He highlighted Cisco's central management approach and its potential for policy enforcement, noting its efficiency and resilience compared to traditional user-space EDR tools. Jay emphasized eBPF's ability to react to behaviors rather than specific vulnerabilities, potentially reducing the need to constantly chase new threats. The discussion concluded with Jay predicting a rise in software service liability, influenced by regulatory trends in Europe and Japan, and the possibility of a conflict between the US and EU over digital service regulation.

2026 Security Market Predictions

The group discussed predictions for 2026, with Alex forecasting increased workforce reintegration after companies failed to replace workers with automation, while Neil warned that vulnerability management would worsen due to NVD's instability and CISA's staffing issues. Neil also predicted that the CNAP market would become uninteresting, leading to new startups developing alternative cloud security approaches, while Stryker suggested 2027 might see executives being quietly fired and rehired at better terms. The discussion concluded with a debate about whether 2026 would see more security startups or continued M&A activity, with some noting that companies were increasingly focused on extracting maximum revenue from existing customers rather than innovation.

2026 Tech Trends and Predictions

The group discussed various predictions and trends for 2026, including potential service disruptions due to cable cuts and the impact of OpenAI's hypothetical IPO on the AI market. They also explored the possibility of increased regulatory scrutiny and its effects on technology companies, particularly in the U.S. and EU. The conversation touched on the rise of point solutions in cybersecurity and the potential for more major players to emerge in the market.

Cybersecurity Platforms vs Point Solutions

The group discussed the evolution of cybersecurity platforms versus point solutions, with Jay and Neil agreeing that while platformization has been a consistent trend for 15-20 years, there will always be a cycle of new point solutions being built and either succeeding or getting acquired. Shawn shared insights from his experience at Wiz, noting that well-integrated platforms provide significant benefits for large complex organizations but may not be as valuable for smaller shops, suggesting that the effectiveness of platformization depends on the customer's scale and complexity.

Cloud Security Automation and eBPF

The group discussed the growing importance of translation layers and no-code/low-code automation platforms in cloud security, with Neil and Juninho agreeing that these tools could help bridge gaps between different security systems and platforms. The conversation then shifted to eBPF technology, with Jay sharing insights about Cisco's Hypershield approach and its potential for blocking malicious traffic flows, while Brian noted that eBPF is being used in segment routing V6. The conversation ended with Shawn mentioning that Wiz uses eBPF for threat detection and correlation across multiple signals, and the group agreed to find an expert for a future eBPF talk.