Blog

Security is often threatened by rapid transformation. This analysis offers advice to businesses migrating their operations and data to the cloud.

HR 8215 would establish a federal ID system. This program can be beneficial, but we need to understand its scope, complexities and nuances.

We reduced mean time to remediate by accelerating the processes from vulnerability discovery to the deployment of a corrective system update.

Authentication factors like biometrics, WebAuthn/FIDO2.0 and mobile apps with push notifications provide the best security defense.

Getting approval for cybersecurity priorities is tougher than ever. Here’s some advice on talking to the board about the new IT security realities.

This post provides analysis and insight into building an effective policy structure for your organization.

Firefox’s appsec add-ons make it a useful tool for new pen testers who can’t afford professional tools.

MobileIron MDM exposes account enumeration and SFA to unauthenticated attacks. This analysis details how to mitigate this vulnerability.

Given Office product functionality, it’s possible for adversaries to leverage Outlook's COM interface in attacks for extended persistence.

Recent cloud access security brokers and secure web gateways reports suggest we’re rapidly moving toward a secure access service edge future.

Take these immediate steps to protect your data against the recent Microsoft Exchange Server hack.

Sri Sundaralingam of ExtraHop identifies some common supply chain hack elements and explains how to discover and stop them in the early stages.