Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Connecting all your company resources in a network for sharing is valuable, but you need a way to verify that only authorized users and devices can access these resources. Authentication serves this purpose by providing methods for users and devices to prove their identity. In Windows environments, two main authentication protocols are used: NTLM (New Technology LAN Manager) and Kerberos. In this article we will discuss NTLM vs Kerberos and show why it is important to implement Kerberos if possible.

The terms “patch management” and “vulnerability management“ are not the same. And that difference is a big difference. They may be confused because applying patches is one of the many ways to mitigate cyber risks. However, it is one piece of the entire vulnerability management puzzle and organizations that do not realize this are burdened with a false sense of security.

At a time when cyber threats seem to escalate daily, security teams are always on the lookout for new ways to protect their sensitive data and systems. For some, Privileged Access Workstations (PAWs) are being viewed as one solution to keep privileged accounts and critical systems safe from compromise. These are specialized workstations built for administrators and users who manage highly sensitive environments.

At the 2025 Gartner Identity & Access Management Summit this week in London, a stark statistic was shared: 17% to 25% of organizations have experienced security incidents related to Non Human Identities (NHI) and specifically machine identities.

A series of vulnerabilities, known as IngressNightmare (CVE-2025-1097, CVE-2025-1098, CVE-2025-24514, CVE-2025-1974), have been identified in ingress-nginx, a widely used Kubernetes ingress controller. When exploited together, these vulnerabilities allow for configuration injection through the Validating Admission Controller.

Canada's digital infrastructure relies heavily on APIs, facilitating a range of services from citizen interactions to vital government data exchanges. This interconnectedness, though revolutionary, brings forth intricate security challenges. Comprehending and complying with the Government of Canada's API standards is now imperative rather than optional. We will delve into these standards, the increasing threat landscape, and examine how solutions like Salt Security can protect your APIs.

The Enterprise OPA Platform is growing fast. With some organizations having hundreds of teams managing close to a thousand applications, we knew it was time for a major UI upgrade—on top of all the backend optimizations we make behind the scenes. Today, we’re excited to introduce the new Styra DAS UI, designed to help IAM engineers and application developers manage authorization at an unmatched scale.

Data centers are the backbone of our digital economy, housing critical applications, customer data, and Cloud services. As we observe International Data Center Day, it's imperative to address the escalating cybersecurity challenges these facilities face. The rise of sophisticated cyber threats, including AI-driven attacks and supply chain vulnerabilities, necessitates a proactive and robust security posture.

In 2024, Cyjax observed the emergence of 72 extortion and ransomware group data-leak sites (DLSs). As of late March 2025, Cyjax has identified DLSs for 21 new groups this year, as noted in recent blogs on Morpheus, GD LockerSec, Babuk2, Linkc, Anubis, and Arkana. The latest DLS Cyjax has identified is named Frag, which constitutes one of 14 new DLSs identified in March 2025 alone.

Cybersecurity regulations are constantly evolving to keep pace with emerging cybersecurity risks, and the Directive on Security of Network and Information Systems (NIS) is no exception. The introduction of NIS2 in December 2022 reshaped the compliance landscape across the EU, and organizations that don’t meet its requirements risk facing far more than just regulatory fines. The true cost of NIS2 non-compliance can be devastating, affecting not only finances but also business continuity and trust.