Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

The Rise of Cross-Domain Attacks Demands a Unified Defense

Modern adversaries are quiet. No longer reliant on clunky malware to breach their targets, they have adopted more subtle and effective methods to infiltrate businesses, move laterally and access critical applications, steal data, impersonate users and more. They are also gaining speed: The average eCrime breakout time, now just 62 minutes, has fallen in recent years as adversaries accelerate from initial intrusion to lateral movement.

Admin update: Create auto-lock, release channel, and 1Password browser extension rules

Every organization has its own team culture, processes, and security requirements. That’s why we’re continuously updating 1Password Enterprise Password Manager with new options that give you greater flexibility and granular control.

Protecting Against Bot-Enabled API Abuse

APIs have become the backbone of modern digital ecosystems, powering everything from mobile apps to e-commerce platforms. However, as APIs grow in importance, they also become prime targets for malicious actors. Increasingly, bots are being weaponized to exploit vulnerabilities, overwhelm systems, and siphon sensitive data—all without triggering alarms until it’s too late.

Past, Present, and Future of IoT/OT Security in Automotive Cybersecurity

At the Device Authority Virtual Summit, Kaivan Karimi discussed how, as IoT and OT ecosystems grow more intertwined, especially within the automotive industry, the stakes in cybersecurity have never been higher. Connected vehicles, once a novel innovation, are now mission-critical infrastructure vulnerable to advanced threats.

The Quantum Horizon: Shaping the Future of IoT/OT Cybersecurity

The rapid evolution of the Internet of Things (IoT) and Operational Technology (OT) is transforming industries, especially in critical sectors like healthcare. While these innovations promise enhanced efficiency and connectivity, they also expose organisations to a broader and more complex cybersecurity threat landscape. With quantum computing on the horizon, the stakes have never been higher.

Introducing Fireblocks Key Link: A Seamless Integration for Existing Key Management Solutions

For digital asset businesses, the increased clarity in the global regulatory landscape, driven by frameworks like MiCA and DORA in the EU and from the Hong Kong SFC and Monetary Authority, has been a welcome evolution. It also means that internal and external compliance requirements are growing more complex to manage as digital asset businesses consider expansion strategies and the need to streamline operational plans.

Announcing the Fireblocks MPC-BAM Protocol

The Fireblocks Cryptography Research Team has developed MPC-BAM, a new two-party ECDSA MPC protocol that achieves an ideal balance among the three key efficiency metrics in cryptographic protocols: rounds, communication, and computation. Multi-party computation (MPC) cryptography protocols are critical for the decentralized finance (DeFi) ecosystem as they enhance security and privacy while allowing direct custody operations.

Enhancing Security in Low-Code Development: Tools and Techniques

Low-code development platforms have revolutionized the way organizations build and deploy applications by enabling rapid innovation and empowering citizen developers. However, this democratization of app creation brings new security challenges that traditional security approaches struggle to address. As businesses increasingly rely on low-code solutions, automating security becomes crucial to maintain an adequate defense against evolving threats.

Setting Guardrails for AI Agents and Copilots

The rapid adoption of AI agents and copilots in enterprise environments has revolutionized how businesses operate, boosting productivity and innovation. We continue to see more and more innovation in this space, between Microsoft Copilot continuing its dominance, and with Salesforce Agentforce recently announced, business users of all technical backgrounds can now even build their own AI agents that act on our behalf.

GitHub actions vs. Jenkins for CI/CD Pipelines

There’s an age-old saying you can tell an engineer’s age by their preferred CI/CD (continuous integration and continuous delivery) tool. Depending on who you talk to, the battle-tested Jenkins remains their weapon of choice, while GitHub Actions is the new kid on the block turning heads. However, here’s something that might surprise you – about half of all developers spend less than 20 hours per week on actual software development tasks.