The Case for Dynamic AI-SaaS Security as Copilots Scale
Within the past year, artificial intelligence copilots and agents have quietly permeated the SaaS applications businesses use every day. Tools...
past
Why Venture Capital Is Betting Against Traditional SIEMs
And why most of the arguments do not hold up under scrutiny Over the past 18 to 24 months,...
The State of the 2025 Cyber Workforce: Skills Gaps, AI Opportunity and Economic Strain
Over the past few years, I have learned quite a bit about the cyber workforce from the annual ISC2 workforce...
Inside Shanya, a packer-as-a-service fueling modern attacks
We have covered packer-as-a-service offerings from the computer underworld in the past, previously dissecting impersonation campaigns and the rise of...
A Polycrisis of AI Cyberattacks is Approaching. Are You Breach Ready Yet?
Unless you have been living under a rock in the past few days, you would have seen that cybersecurity...
OWASP Top 10 Business Logic Abuse: What You Need to Know
Over the past few years, API security has gone from a relatively niche concern to a headline issue. A...
Cloudflare Scrubs Aisuru Botnet from Top Domains List
For the past week, domains associated with the massive Aisuru botnet have repeatedly usurped Amazon, Apple, Google and Microsoft in...
How HPE’s New Security Playbook Is Actually Stopping Threats
For the past few years, the term “AI in cybersecurity” has been mostly marketing fluff. We’ve all sat through...
AI Rising, Budgets Falling: The 2025 NASCIO Annual Story
Lohrmann on Cybersecurity NASCIO held their annual conference in Denver this past week, and while many leaders describe difficult budget...
Critical CISA Cybersecurity Law is Hours Away from Expiring
Many in the United States over the past several weeks have turned a worried eye to Washington D.C., with the...
Sharpening the Focus on Product Requirements and Cybersecurity Risks: Updating Foundational Activities for IoT Product Manufacturers
Over the past few months, NIST has been revising and updating Foundational Activities for IoT Product Manufacturers (NIST IR 8259...
How to Use NHI Governance as Your Central Dashboard to Monitor AWS IAM
In the past, secrets management was difficult. There are many types of secrets in software engineering, including usernames/passwords, API keys,...
HeartCrypt’s wholesale impersonation effort
Over the past year and a bit more, we’ve monitored a constellation of events that share a set of general...
Another Day, Another Data Dump: Billions of Passwords Go Public
In the past few years, the security industry has seen several reports on massive password leaks. The number of...
How One Bad Password Ended a 158-Year-Old Business
Most businesses don't make it past their fifth birthday - studies show that roughly 50% of small businesses fail within...
