What CISOs need to tell the board about zero trust in OT: A 90-day communication and action plan
Days 1–30: Map assets and identities at the IT/OT boundary The first 30 days are for increased visibility. I focus on a relatively simple question:…
Days 1–30: Map assets and identities at the IT/OT boundary The first 30 days are for increased visibility. I focus on a relatively simple question:…
Nearly a year ago, we shared that Wiz would be joining Google. At the time, we spoke about a belief that by bringing together Wiz’s…
The endpoint management category is being redefined in real time. Organizations no longer need tools that only inventory devices or enforce configuration policies; they need…
Update: Added Microsoft’s statement to the article. Microsoft has quietly extended its free Windows 10 Extended Security Updates (ESU) program for consumers by an additional…
A newly uncovered infostealer called KuinaExtractor has been quietly evolving for over six months, posing a serious and growing threat to users across multiple platforms.…
Application security firm Black Duck has been named a Leader in Gartner’s first-ever Magic Quadrant for Software Supply Chain Security, the company announced today. The…
Scammers are increasingly exploiting Shopify’s ecosystem and its Shop order-tracking app to deliver fraudulent invoices directly into users’ purchase histories, marking a shift from traditional…
Officers from Poland’s Central Bureau for Combating Cybercrime (CBZC) arrested four suspected members of an organized cybercrime group accused of SIM swap attacks, cryptocurrency theft,…
The Russian state-sponsored threat actor known as Turla has been attributed to a previously undocumented .NET backdoor called STOCKSTAY that has been deployed against government…
Finland plans to ramp up funding for advanced technology-specific research and development projects and key state industrial development agencies in a bid to bolster innovation…
An alleged Iranian hacker accused of hacking US infrastructure has been arrested in Montenegro following a joint operation by Montenegrin police and the U.S. Federal…
A newly disclosed zero-day vulnerability, CVE-2026-20245, has been exploited by a threat actor targeting Cisco Catalyst SD-WAN Manager. By exploiting a flaw in the platform’s file to upload functionality,…