News, Insight and Analysis

News

• Accenture sheds more light on August data breach

  The IT services giant disclosed in an SEC filing that threat actors stole and leaked proprietary data during a LockBit ransomware attack earlier this year. Continue Reading

• Google digs into Iran's APT35 hacking group

  Covert phishing tactics and cleverly disguised notifications are among the calling cards of the increasingly sophisticated operation aimed at Iran's opponents. Continue Reading

• Cyber insurance premiums, costs skyrocket as attacks surge

  As cyber attacks and losses have increased, so has demand for cyber insurance. But now premiums are reflecting a harsh new reality. Continue Reading

• Admins: Patch management is too complex and cumbersome

  A new survey from Ivanti shows a majority of administrators and infosec professionals feel the shift to decentralized workspaces has made patch management an even bigger headache. Continue Reading

• Cohesity backup integrates with Cisco SecureX

  Cohesity's anomaly detection and recovery functions can be accessed in Cisco SecureX, allowing greater visibility and quicker response time during a ransomware attack. Continue Reading

Get Started

• Top 10 cybersecurity interview questions and answers

  Interviewing for a job in cybersecurity? Memorizing security terms won't cut it. Here are the 10 interview questions you should be ready for -- and how to answer them. Continue Reading

• Cloud security automation: Benefits and best practices

  Automating security in the cloud can be invaluable for threat detection and mitigation. Explore key areas where security professionals should implement automation. Continue Reading

• SASE vs. SD-WAN: What's the difference?

  SASE and SD-WAN are two similar architectures administrators use to provide secure network access, but they differ in terms of deployment, security, connectivity and more. Continue Reading

• Top 12 IT security frameworks and standards explained

  Several IT security frameworks and cybersecurity standards are available to help protect company data. Here's advice for choosing the right ones for your organization. Continue Reading

• 5 steps to achieve a risk-based security strategy

  Learn about the five steps to implement a risk-based security strategy that helps naturally deliver compliance as a consequence of an improved security posture. Continue Reading

Evaluate

• The 10 best cloud security certifications for IT pros in 2025

  Certifications can help security pros prove their baseline knowledge of infosec topics. Consider adding these top cloud security certifications to your arsenal. Continue Reading

• SIEM vs. SOAR vs. XDR: Evaluate the key differences

  SIEM, SOAR and XDR each possess distinct capabilities and drawbacks. Learn the differences among the three, how they can work together and which your company needs. Continue Reading

• The differences between open XDR vs. native XDR

  Extended detection and response tools are open or native. Learn the differences between them, and get help choosing the right XDR type for your organization. Continue Reading

• CASB vs. CSPM vs. CWPP: Comparing cloud security tool types

  Let's break down some cloud security alphabet soup. CASB, CSPM and CWPP overlap to an extent, but you'll want to pay close attention to how they accomplish different things. Continue Reading

• Why it's SASE and zero trust, not SASE vs. zero trust

  When it comes to adopting SASE or zero trust, it's not a question of either/or, but using SASE to establish and enable zero-trust network access. Continue Reading

Manage

• IAM compliance: Know the system controls at your disposal

  IAM is critical to an organization's data security posture, and its role in regulatory compliance is just as crucial. Continue Reading

• How to build an effective IAM architecture

  Identity and access management is changing and so must strategies for managing it. Read up on IAM architecture approaches and how to select the best for your organization. Continue Reading

• Guide to creating a cloud migration testing strategy

  Follow these guidelines to craft a strategy for cloud migration testing, from key tests to common challenges and best practices -- and understand why everything involves security. Continue Reading

• 10 cloud vulnerabilities that can cripple your environment

  Enterprises can be devastated by security-related weaknesses or flaws in their cloud environments. Find out where you are most vulnerable before an attacker comes knocking. Continue Reading

• Cloud database security: Best practices, challenges and threats

  If your company is using a cloud database, it's critical to stay on top of security. Review the security features offered by top cloud providers, plus some best practices. Continue Reading

Problem Solve

• 4 ransomware detection techniques to catch an attack

  While prevention is key, it's not enough to protect a company's systems from ransomware. Learn how early detection with these four methods helps reduce damage from attacks. Continue Reading

• Top 11 cloud security challenges and how to combat them

  Before jumping feet first into the cloud, understand the new and continuing top cloud security challenges your organization is likely to face -- and how to mitigate them. Continue Reading

• 9 top cloud storage security issues and how to contain them

  A handful of major cloud storage security issues, such as insufficient access controls and lack of compliance, remain. Learn how to successfully address them. Continue Reading

• Cloud account hijacking: How it works and how to prevent it

  The ability to identify the various methods of cloud account hijacking is key to prevention. Explore three ways to limit potential consequences of cloud credential compromise. Continue Reading

• 7 cloud IAM challenges and how to address them

  Cloud use affects how organizations manage access and identity governance. Learn about seven cloud IAM challenges and how to handle them. Continue Reading