Retail Cyberattacks Reveal Hidden Weaknesses In Supply Chain Security
The recent arrests of four suspects linked to cyberattacks on major UK retailers like Marks & Spencer, Co-op and...
“the
The Unkillable Threat: How Attackers Turned Blockchain Into Bulletproof Malware Infrastructure
The blockchain was supposed to revolutionize trust. Instead, it’s revolutionizing cybercrime. Every foundational principle that makes blockchain technology secure—decentralization, immutability,...
Suspected Chinese Hackers Spent a Year-Plus Inside F5 Systems: Report
The Chinese state-sponsored threat actors believed to be behind the high-profile hack of F5’s corporate networks reportedly infiltrated the security...
Agentic AI’s OODA Loop Problem
The OODA loop—for observe, orient, decide, act—is a framework to understand decision-making in adversarial situations. We apply the same framework...
Beyond Bot Management: Why Reverse Proxy Phishing Demands a New Defense Strategy
The scale of credential theft through phishing has reached alarming proportions. Recent analysis of the LabHost phishing operation reveals that...
Evaluating the Best Passwordless Authentication Options
The Rise of Passwordless Authentication: Why Now? Okay, so passwords, right? We all hate 'em, and honestly, they're not even...
US and UK Lead Record Cybercrime Operation in Southeast Asia
Image: Oleksii/Adobe Stock The US and UK have carried out their largest joint action to date targeting cybercriminal networks operating...
The Salesforce Breach Is Every RevOps Leader’s Nightmare: How to Secure Connected Apps
The RevOps Tightrope: When “Just Connect It” Becomes a Breach Vector If you’re in Revenue Operations, Marketing Ops, or Sales...
The SharePoint Blind Spot: How Legacy IGA Failed to Stop Volt Typhoon
The modern attacker’s mantra isn’t “break in” – it’s “log in.” Advanced groups, such as Volt Typhoon, demonstrate that identities,...
How Reassured Are You by Your Cloud Compliance?
The Vital Role of Non-Human Identities in Cloud Compliance What makes cloud compliance an intricate challenge for modern enterprises? With...
Rogue agents: When your AI decides it knows better
The autonomy you wanted is the chaos you didn’t plan for Here’s a fun fact: Every AI agent you deploy...
Human-in-the-loop: When your AI’s creativity becomes your legal liability
The $10 million lesson in why machines need adult supervision In 2024, an airline’s customer service bot got creative with...
The First Malicious MCP Server is a Warning Shot for AI Cybersecurity
The first malicious Model Context Protocol (MCP) server has been discovered and we should all be worried how this is...
Modernizing Federal DevSecOps for CMMC and Beyond
The Cybersecurity Maturity Model Certification (CMMC) 2.0 marks a clear shift from box-checking to modernization. Compliance is, of course, important....
The Vision Behind Mend.io’s Recognition
The software security landscape is evolving faster than ever, and AI is accelerating this change. As generative and embedded AI...
![Sectigo New Public Roots and Issuing CAs Hierarchy [2025 Migration Guide]](https://certera.com/blog/wp-content/plugins/wp-postratings/images/stars/rating_on.gif)