News, Insight and Analysis

News

• Accenture sheds more light on August data breach

  The IT services giant disclosed in an SEC filing that threat actors stole and leaked proprietary data during a LockBit ransomware attack earlier this year. Continue Reading

• Google digs into Iran's APT35 hacking group

  Covert phishing tactics and cleverly disguised notifications are among the calling cards of the increasingly sophisticated operation aimed at Iran's opponents. Continue Reading

• Cyber insurance premiums, costs skyrocket as attacks surge

  As cyber attacks and losses have increased, so has demand for cyber insurance. But now premiums are reflecting a harsh new reality. Continue Reading

• Admins: Patch management is too complex and cumbersome

  A new survey from Ivanti shows a majority of administrators and infosec professionals feel the shift to decentralized workspaces has made patch management an even bigger headache. Continue Reading

• Cohesity backup integrates with Cisco SecureX

  Cohesity's anomaly detection and recovery functions can be accessed in Cisco SecureX, allowing greater visibility and quicker response time during a ransomware attack. Continue Reading

Get Started

• Guide to cloud container security risks and best practices

  Containers are an integral part of a growing number of production environments. But they can become security risks if not managed correctly. Continue Reading

• Top 15 IT security frameworks and standards explained

  Several IT security frameworks and standards exist to help protect company data. Here's advice for choosing the right ones for your organization. Continue Reading

• ERM implementation: How to deploy a framework and program

  Enterprise risk management helps organizations proactively manage risks. Here's a look at ERM frameworks that can be used and key steps for implementing a program. Continue Reading

• Top 10 cybersecurity interview questions and answers

  Interviewing for a job in cybersecurity? Memorizing security terms won't cut it. Here are the 10 interview questions you should be ready for -- and how to answer them. Continue Reading

• Cloud security automation: Benefits and best practices

  Automating security in the cloud can be invaluable for threat detection and mitigation. Explore key areas where security professionals should implement automation. Continue Reading

Evaluate

• What is the future of cybersecurity?

  As cyberthreats grow more sophisticated, enterprises face mounting challenges. What does the future of cybersecurity hold, and how can organizations stay ahead? Continue Reading

• The 10 best cloud security certifications for IT pros in 2025

  Certifications can help security pros prove their baseline knowledge of infosec topics. Consider adding these top cloud security certifications to your arsenal. Continue Reading

• SIEM vs. SOAR vs. XDR: Evaluate the key differences

  SIEM, SOAR and XDR each possess distinct capabilities and drawbacks. Learn the differences among the three, how they can work together and which your company needs. Continue Reading

• The differences between open XDR vs. native XDR

  Extended detection and response tools are open or native. Learn the differences between them, and get help choosing the right XDR type for your organization. Continue Reading

• CASB vs. CSPM vs. CWPP: Comparing cloud security tool types

  Let's break down some cloud security alphabet soup. CASB, CSPM and CWPP overlap to an extent, but you'll want to pay close attention to how they accomplish different things. Continue Reading

Manage

• Red vs. blue vs. purple team: What are the differences?

  Red teams attack, blue teams defend and purple teams facilitate collaboration. Together, they strengthen cybersecurity through simulated exercises and knowledge sharing. Continue Reading

• AI in risk management: Top benefits and challenges explained

  AI can improve the speed and effectiveness of risk management efforts. Here are the potential benefits, use cases and challenges your organization needs to know about. Continue Reading

• How to implement a risk-based security strategy: 5 steps

  Making the move from compliance-based to risk-based security helps organizations prioritize threats using systematic assessment and strategic planning. Continue Reading

• IAM compliance: Know the system controls at your disposal

  IAM is critical to an organization's data security posture, and its role in regulatory compliance is just as crucial. Continue Reading

• How to build an effective IAM architecture

  Identity and access management is changing and so must strategies for managing it. Read up on IAM architecture approaches and how to select the best for your organization. Continue Reading

Problem Solve

• 4 ransomware detection techniques to catch an attack

  While prevention is key, it's not enough to protect a company's systems from ransomware. Learn how early detection with these four methods helps reduce damage from attacks. Continue Reading

• Top 11 cloud security challenges and how to combat them

  Before jumping feet first into the cloud, understand the new and continuing top cloud security challenges your organization is likely to face -- and how to mitigate them. Continue Reading

• 9 top cloud storage security issues and how to contain them

  A handful of major cloud storage security issues, such as insufficient access controls and lack of compliance, remain. Learn how to successfully address them. Continue Reading

• Cloud account hijacking: How it works and how to prevent it

  The ability to identify the various methods of cloud account hijacking is key to prevention. Explore three ways to limit potential consequences of cloud credential compromise. Continue Reading

• 7 cloud IAM challenges and how to address them

  Cloud use affects how organizations manage access and identity governance. Learn about seven cloud IAM challenges and how to handle them. Continue Reading