Is Zero Trust Becoming the New “Compliance Checkbox”?

  How Overselling Zero Trust Risks Complacency—and What We Can Do About It Zero trust has become one of the most talked-about concepts in cybersecurity. It’s a philosophy that challenges the traditional “trust but verify” model, replacing it with “never trust, always verify.” The idea is simple: assume that no user, device, or network is

Read More

Elevating Your Security Posture: Threat Intelligence and Correlation Searches for Proactive Defense

  Are you a CISO battling alert fatigue, struggling to keep up with emerging threats, and facing pressure to prove the ROI of your security investments? You’re not alone. CISOs today are facing unprecedented challenges in a rapidly evolving threat landscape. To gain the upper hand, you need a proactive security approach that goes beyond

Read More

2024: The Year Cyber-Attacks Redefined Security Priorities Across Critical Sectors

By Adam Sewall Date: 1/21/2025 In 2024, cyber-attacks surged significantly, marking a banner year for hackers and foreign adversaries. The frequency and intensity of these attacks heightened across various sectors, including Critical Infrastructure, Enterprise, and SMEs. Within Critical Infrastructure, attacks focused on Operational Technology (OT) and Industrial Control Systems (ICS), impacting vital sectors like power,

Read More

Chinese APT Exploits API Key to Access U.S. Treasury Systems

  Chinese APT Exploits API Key to Access U.S. Treasury Systems “On December 8, 2024, Treasury was notified by a third-party software service provider, BeyondTrust, that a threat actor had gained access to a key … to secure a cloud-based service used to remotely provide technical support for Treasury Departmental Offices (DO) end users,” the

Read More

Fortify Your Critical Infrastructure: Advanced Security Testing for IoT, OT, and ICS Deployments

  Enhanced Security for IoT, OT, and ICS Deployments can be accomplished with device and network security testing, including breach and attack simulation. Securing critical infrastructure, including ICS/OT and IIoT/IoT deployments, requires solutions that emulate cyberattacks to protect connected devices and the networks to which they are connected. Safety, uptime/continuity, and security are critical for

Read More

Geico & Travelers Fined Millions: Why Cybersecurity Can’t Be an Afterthought for Insurers 

  Date: Dec 10, 2024  By: Adam Sewall  Insurance companies are in a unique position being responsible to protect PII/PHI/PCI and much, much more. In the news this week are both Geico and Travelers who have been fined a combined total of $11.3 million by the state of NY. Fines, include a $9.75M settlement with

Read More