One of the most pervasive and pressing challenges for organizations remains securing email communication against sophisticated phishing attacks. The recent Proofpoint email routing flaw, exploited in the EchoSpoofing campaign, underscores the urgency of this issue. This attack leveraged the inherent […]
The Key to Preventing EchoSpoofing Phishing Attacks Read More »
The concept of “never trusting, always verifying” is the cornerstone of zero trust security. This layered security approach throws out the outdated assumption of inherent trust within a network, requiring constant verification for every user and device. While this significantly
AI: The Secret Weapon in Your Zero Trust Arsenal Read More »
Catastrophe models and their uses remain the subjects of civilized discourse in most parts of the (re)insurance world, but not in cyber, where I hang my hat. Here, it continues to be a battlefield where every dollar of additional capacity
Demystifying Catastrophic Modeling for Cyber Read More »
Cloud security traditionally revolves around detection rather than protection. SentinelOne intends to change that by introducing a potentially game-changing solution—Singularity Cloud Native Security. This new offering moves the needle towards proactive, offensive measures that aim to protect as much as
Cloud Security is Broken: SentinelOne Aims to Fix It Read More »
With an ever-expanding attack surface and a cadre of complex tools to manage risks and vulnerability, it is almost impossible to eliminate every attack vector and loophole. However, it is safe to say that one of the most recognized areas
How Does Account Ownership Impact Your Cybersecurity Programs? Let’s Count the Ways Read More »
Infrastructure-as-Code (IaC) has significantly improved the way organizations build and manage their cloud-based IT infrastructure. IaC allows organizations to put all provisioning, management, and maintenance settings into code for easier and faster deployment. This code can then be tweaked and
Why Local Values Are Crucial to Cloud Infrastructure Management Read More »
The Office of Management and Budget (OMB) zero-trust cybersecurity strategy, released at the beginning of 2022, requires Federal agencies to adopt a zero-trust security framework by the end of fiscal year 2024. September 2024 is the deadline for federal agencies
Countdown to Zero Trust Read More »
There’s no question that all businesses and organizations are at risk of cybersecurity breaches. It’s one of the key challenges of the current landscape. As a result, many companies have started to adopt the core essentials of cybersecurity into aspects
Creating a Strong Cybersecurity Culture: Why It Matters and How to Do It Read More »
There are a lot of areas where AI can be focused and make a difference, including employee productivity, marketing, sales, customer support, manufacturing, medicine, aeronautics, robotics, and governance. But one of the most interesting is logistics. During the Covid pandemic,
AI and the Supply Chain: Making More Resilient Companies Read More »
Around 18 months ago, I was writing about the “endless journey” to Zero Trust. I used the word “endless” because Zero Trust is a mindset rather than a product or a destination – it’s a target to aim towards. Like
The Evolution of Zero Trust Read More »
