TruffleNet and Cloud Abuse at Scale: An Identity Architecture Failure
The recent TruffleNet campaign, first documented by Fortinet, highlights a familiar and uncomfortable truth for security leaders: some of...
recent
2025 Federal Retrospective: The Year of Resilient Innovation
Resiliency has been top of mind in 2025, and recent high-profile CVEs serve as holiday reminders that adversaries aren’t...
Microsoft Takes Aim at “Swivel-Chair Security” with Defender Portal Overhaul
At a recent Tech Field Day Exclusive event, Microsoft unveiled a significant evolution of its security operations strategy—one that attempts...
Gainsight Expands Impacted Customer List Following Salesforce Security Alert
Nov 27, 2025Ravie LakshmananRansomware / Cloud Security Gainsight has disclosed that the recent suspicious activity targeting its applications has affected...
Securing AI-Generated Code: What Does It Look Like in Practice?
Get details on our recent survey on the security of AI-generated code. What’s hype and what’s real when it...
Salesloft Drift Breaches: Your Complete Response Guide
The recent Salesloft Drift OAuth token breach has sent shockwaves through the Salesforce ecosystem, affecting over 700 organizations, including...
Recruitment red flags: Can you spot a spy posing as a job seeker?
Business Security Here’s what to know about a recent spin on an insider threat – fake North Korean IT workers...
It’s Always DNS: Lessons from the AWS Outage
In episode 404 (no pun intended!) we discuss the recurring issue of DNS outages, the recent Amazon AWS disruption,...
Cyber Awareness Month: Protecting Your Child in the Digital Age
While at the recent GovRAMP cyber summit in Chicago, I was fortunate to be introduced to Chad Rychlewski, who is...
We need secure products as much as we need security products
Recent events with F5 and SonicWall underline a continuing issue: network infrastructure is constantly under attack, and the cybersecurity industry...
Retail Cyberattacks Reveal Hidden Weaknesses In Supply Chain Security
The recent arrests of four suspects linked to cyberattacks on major UK retailers like Marks & Spencer, Co-op and...
AWS Outage: Lessons Learned
What can we learn from the recent AWS outage, and how can we apply those lessons to our own...
Beyond Bot Management: Why Reverse Proxy Phishing Demands a New Defense Strategy
The scale of credential theft through phishing has reached alarming proportions. Recent analysis of the LabHost phishing operation reveals that...
Cybersecurity Study Shows Patient Care at Risk of Attacks
A recent study from cybersecurity company Proofpoint and Ponemon shows that 93 percent of healthcare organizations experienced at least one...
Rethinking DDoS Defense: Why Scale Isn’t the Only Metric That Matters
In recent months, headlines have drawn attention to record-breaking DDoS attacks, often measured in terabits per second (Tbps) and accompanied...
