Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Key Findings: The Role of DSPM in Addressing AI and Cloud Threats

As the cyber threat landscape continues to evolve, organizations face unprecedented challenges in securing their digital assets. With 49% of workloads already in the cloud and the rise of AI-driven threats, organizations are increasingly vulnerable to data breaches, compliance failures, and malicious actions.

Inside the AI Threat Landscape: From Jailbreaks to Prompt Injections and Agentic AI Risks

AI has officially moved out of the novelty phase. What began with people messing around with LLM-powered GenAI tools for content creation has rapidly evolved into a complex web of agentic AI systems that form a critical part of the modern corporate landscape. However, this transformation has given new life to old threats, transforming the API security landscape all over again.

Customer assurance portals: Enhancing trust and accelerating sales cycles

Effective leadership demands innovative strategies that address customer concerns while streamlining business processes. One such strategy involves the use of customer assurance portals to build trust and accelerate sales cycles. As business leaders explore new avenues to stay ahead, understanding the power and potential of these portals is imperative.

Top tips: Making the switch to a passwordless future

Top tips is a weekly column where we highlight what’s trending in the tech world today and list ways to explore these trends. This week, we’re exploring how passwordless authentication is becoming the new standard for secure, seamless access. For decades, passwords have been the cornerstone of digital authentication. But in today's cyberthreat landscape, this is no longer enough.

What is a SOC 2 Report?

You’re facing a SOC 2 audit, and you don’t quite know what to expect or how to prepare for it. Although an independent auditor will inspect your company’s IT security program, you’re not entirely sure what information the resulting report may contain. To get fully prepared, it can be helpful to look at some real-life SOC 2 audit report examples. In the following article, we’ll look at a few sample SOC 2 reports, but first, let’s address the obvious question.

What Are the Biggest HIPAA Compliance Risks in Retargeting and Digital Marketing for Healthcare Organizations?

Digital marketing relies on user behavior data — but for healthcare organizations, that data often includes protected health information (PHI). If ad platforms or third-party scripts collect PHI without consent or encryption, your organization could face HIPAA violations.

PCI DSS 4.0.1: A Comprehensive Guide to Successfully Meeting Requirements 6.4.3 and 11.6.1

To address stakeholder feedback and questions received since PCI DSS v4.0 was published, the PCI Security Standards Council (PCI SSC) has published a limited revision to the standard, PCI DSS v4.0.1. It includes corrections to formatting and typographical errors and clarifies the focus and intent of some of the requirements and guidance. There are no additional or deleted requirements in this revision.

What Is the Lowest Cost Way to Comply with PCI DSS Requirements 6.4.3 and 11.6.1?

To address stakeholder feedback and questions received since PCI DSS v4.0 was published, the PCI Security Standards Council (PCI SSC) has published a limited revision to the standard, PCI DSS v4.0.1. It includes corrections to formatting and typographical errors and clarifies the focus and intent of some of the requirements and guidance. There are no additional or deleted requirements in this revision.

Evil Twin Attack Prevention: How to Stop Real-Time Phishing Before It Leads to ATO

Evil Twin attack prevention has become more difficult than ever. With affordable, easy-to-use tools, these attacks are now more accessible and harder to detect, leaving customers vulnerable to sophisticated account takeovers without the usual phishing hallmarks. Tools like the Wi-Fi Pineapple Mark VII ($299) create rogue networks and phishing portals, while the ESP8266 Deauther V4 ($15) disrupts Wi-Fi handshakes to force devices onto less secure networks.

Agent-Based AI and the Machine Identity Revolution Are Reshaping Security

Is agentic AI the productivity revolution we've been waiting for, or a security nightmare in the making? With AI agents now outnumbering humans and secrets proliferating across enterprise systems, the answer isn't simple. Read our insights from SecDays {France} 2025.