Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Why Every MSP Should Be Offering a 30-Minute Cloud Risk Assessment

As businesses continue moving critical workloads to the cloud, attackers are increasingly targeting identities, SaaS applications, and cloud configurations. While many organizations believe their cloud environments are secure, hidden risks often go unnoticed until it's too late. For MSPs, this presents an opportunity to deliver greater value while growing recurring security revenue.

Quantum is the least interesting part of quantum certificates

On June 3, Let’s Encrypt announced that the post-quantum web is going to run on something called Merkle Tree Certificates. The internet did what it does and turned this into a doomsday Q-Day countdown. The quantum computers are coming, your certificates are about to break, panic! Unlike every other security vendor, I’m not worried about quantum computers. But the announcement is still worth your attention. Just not for the reason you’ve been told.

Top 25 Cyberattacks in Sports: Does Defense Win Championships?

First made famous by Bear Bryant in the 1970s, “defense wins championships” has since become a popular sports adage that’s at times overused. But when it comes to the sprawling attack surface of modern athletic events, like the tri-hosted 2026 World Cup or the Super Bowl, that cliché applies just as much to cybersecurity as it does to the playing field. Modern sports franchises are no longer just athletic clubs.

2026 LastPass Breach: What Happened This Time?

Although customer password vaults were not affected, LastPass confirmed that customer information was exposed when cybercriminals compromised a third-party market intelligence platform in June 2026. This is not the first time LastPass customers have had their information put at risk; LastPass’s major 2022 breach involved cybercriminals stealing backups of customer vault data.

Datadog achieves GovRAMP High authorization

As state and local governments modernize critical technology systems, they must also meet growing demand for cybersecurity, reliability, operational efficiency, and fiscal accountability. From citizen services and public safety operations to transportation networks, education systems, and emerging AI initiatives, agencies are managing increasingly complex environments with limited resources.

Preparing for OMB M-26-14: How Datadog supports federal logging maturity

Memorandum M-26-14 from the Office of Management and Budget (OMB) marks a significant evolution in federal cybersecurity guidance, establishing a new risk-based framework for logging and network visibility across the United States federal government. The memo replaces the prescriptive requirements of Memorandum M-21-31 with an approach that emphasizes continuous monitoring, threat detection, investigation, and forensic readiness.

Project Havoc: Breaking Identity Trust with Real-Time Synthetic Media

Under normal conditions, experiencing our digital reflection can feel surreal or even uncomfortable. So first off, we commend our participating execs for allowing us to use their publicly available personal data to create live audio/visual doppelgangers – as we found out just how advanced, believable, and potentially malicious our identity cloning tools currently are.

Scaling security reviews at 1Password: Building an AI-powered pipeline

The developers and engineers here at 1Password are always working to improve our products. With all the active development to introduce features, fix bugs, and enhance the overall user experience, numerous code changes go into every release. We strive to ensure each iteration is better than the last and that new code doesn’t introduce vulnerabilities. A key part of this process is our Product Security (ProdSec) team’s review of all code changes that may have security implications.

Sentra and Cato XOps: Turning Data Risk into Active Mitigation

AI did not create data exposure. It changed the consequences of it. Sensitive data, excessive permissions, and broad access policies have long existed across cloud environments. In the AI era, those issues are no longer passive governance concerns. They directly influence what AI users, copilots, agents, and applications can access, process, and expose. AI has turned a posture problem into operational risk. The challenge is not simply that more data is available.