Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

For digital asset businesses, the increased clarity in the global regulatory landscape, driven by frameworks like MiCA and DORA in the EU and from the Hong Kong SFC and Monetary Authority, has been a welcome evolution. It also means that internal and external compliance requirements are growing more complex to manage as digital asset businesses consider expansion strategies and the need to streamline operational plans.

The Fireblocks Cryptography Research Team has developed MPC-BAM, a new two-party ECDSA MPC protocol that achieves an ideal balance among the three key efficiency metrics in cryptographic protocols: rounds, communication, and computation. Multi-party computation (MPC) cryptography protocols are critical for the decentralized finance (DeFi) ecosystem as they enhance security and privacy while allowing direct custody operations.

Low-code development platforms have revolutionized the way organizations build and deploy applications by enabling rapid innovation and empowering citizen developers. However, this democratization of app creation brings new security challenges that traditional security approaches struggle to address. As businesses increasingly rely on low-code solutions, automating security becomes crucial to maintain an adequate defense against evolving threats.

The rapid adoption of AI agents and copilots in enterprise environments has revolutionized how businesses operate, boosting productivity and innovation. We continue to see more and more innovation in this space, between Microsoft Copilot continuing its dominance, and with Salesforce Agentforce recently announced, business users of all technical backgrounds can now even build their own AI agents that act on our behalf.

There’s an age-old saying you can tell an engineer’s age by their preferred CI/CD (continuous integration and continuous delivery) tool. Depending on who you talk to, the battle-tested Jenkins remains their weapon of choice, while GitHub Actions is the new kid on the block turning heads. However, here’s something that might surprise you – about half of all developers spend less than 20 hours per week on actual software development tasks.

Every day, threat actors devise new plans for breaking into secure systems. The steps they take, from researching a target to carrying out the attack, are known as the cyber kill chain. Traditionally, that kill chain has targeted devices and networks that lie completely within your organization’s control. For better or worse, mobile and cloud-based work have upended that dynamic.

Organizations that work in the cloud face an increasing number of potential threats every day. Fortunately, automated detection and response can block many of these lower-level threats before they even require human attention. Unfortunately, that means the threats that evade automated defenses may be perpetrated by driven and sophisticated attackers — the kinds of threat actors who can infiltrate a system and remain undetected for up to 280 days on average.

Every day, cybersecurity researchers discover dozens of new vulnerabilities, malware packages, and cyber criminals. One way for IT teams to stay on top of these threats is to monitor threat intelligence feeds. These databases provide real-time information on both established and emerging cyber threats, allowing organizations to catalog and analyze the results. This is particularly salient in the era of hybrid and remote work, as mobile devices are particularly tempting targets for cyber attacks.

Remote and hybrid work models have transformed how organizations operate, offering flexibility, cost efficiency, and other benefits. However, this shift also introduces challenges, particularly in securing sensitive data against breaches and maintaining employee productivity. Remote employee monitoring has emerged as a vital solution to address these concerns. In this article, we will explore the risks of remote work and how to manage these risks with actionable practices.

Your Apple ID is valuable to hackers because, if compromised, someone could use it to access your sensitive accounts, important documents, private photos and more. Signs that your Apple ID may be hacked include receiving emails from Apple about a new login, being locked out of your Apple device or iCloud account, getting notifications of account changes or noticing unfamiliar charges from Apple on your bank statements.