Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Reach Security Named a Representative Provider in Gartner® Innovation Insight for Automated Security Control Assessment (ASCA)

Reach Security Named a Representative Provider in Gartner® Innovation Insight for Automated Security Control Assessment (ASCA)

Jan 27, 2026 By Reach Security In Reach Security
According to Gartner, by 2030, organizations that successfully operationalize ASCA technologies will experience a 25% reduction in cybersecurity incidents.
Read Post
reach security

Reach Security Recognized as a Representative Provider of ASCA in the Gartner Innovation Insight: Automated Security Control Assessment

Jan 27, 2026 By John Dominguez In Reach Security
In its January 2026 research report, Innovation Insight: Automated Security Control Assessment, Gartner discusses why misconfigured security controls remain one of the most persistent drivers of breaches and why automation is now required to address the problem at scale.
Read Post
reach security

What Device Code Phishing Reveals About Security Configuration Gaps

Jan 8, 2026 By John Dominguez In Reach Security
Recent research from Proofpoint highlights a growing trend in identity-based attacks. Rather than stealing passwords or exploiting software flaws, multiple threat actors are now abusing legitimate Microsoft authentication workflows to gain access to Microsoft 365 accounts at scale. This technique, known as device code phishing, is not new. What is new is how widespread the technique has become, particularly among both state-aligned and financially motivated adversaries.
Read Post
reach security

When Misconfigurations Become the Front Door: What Russia's Edge Device Campaign Signals for Modern Cyber Defense

Dec 19, 2025 By John Dominguez In Reach Security
A recent Dark Reading article highlighted a sobering shift in how nation-state threat actors are gaining access to critical infrastructure. According to reporting on a new Amazon Threat Intelligence disclosure, Russian actors affiliated with the GRU have spent years refining a campaign that increasingly bypasses traditional vulnerability exploitation altogether. Instead, they are walking straight through the front door left open by misconfigured network edge devices.
Read Post
Reach Security Joins the Microsoft for Startups Pegasus Program to Accelerate Agentic AI for E3/E5 Security Optimization

Reach Security Joins the Microsoft for Startups Pegasus Program to Accelerate Agentic AI for E3/E5 Security Optimization

Dec 2, 2025 By Reach Security In Reach Security
Reach Security announces its acceptance into the Microsoft for Startups Pegasus Program. Through the Pegasus Program, Reach will collaborate with Microsoft to help enterprise customers optimize their use of Microsoft E3 and E5 security suites by addressing configuration, visibility, and operational gaps through agentic AI.
Read Post
reach security

Threat Exposure Management: A Better Way to Answer "How Exposed Are We?"

Nov 26, 2025 By CP Morey In Reach Security
Security leaders are asking a new question with greater urgency: How exposed are we? In an era where every application, identity, and integration expands the attack surface, answering that question with clarity is no longer optional. The traditional model of vulnerability management cannot keep up. Findings come in faster than they can be addressed. Visibility is fragmented. Risk prioritization is often based on severity scores rather than business impact.
Read Post
Featured Post
My Black Friday Cybersecurity Wishlist

My Black Friday Cybersecurity Wishlist

Nov 20, 2025 By Chloe Potsklan, Senior Security Researcher In Reach Security
Black Friday and Cyber Monday always bring bargain buys as consumers hunt for deals to make the upcoming festive season special, but they are also a bonanza for cybercriminals. Attacks spike during the holiday season as cybercriminals take advantage of workers being out of their usual routine and less vigilant than normal. This makes for far from happy holidays for the businesses affected. However, what many organizations don't realize is that often they already have the tools to protect themselves in their security armory; they just haven't activated them.
Read Post
reach security

Proactively Identify and Eliminate Defensive Weaknesses with Cybersecurity Domain-Specific AI

Nov 20, 2025 By John Dominguez In Reach Security
AI is everywhere. I live in San Francisco, and a day doesn’t go by that I don’t see a billboard, an advertisement on the side of a bus, or a tech bro’s hoodie with two big letters on it: AI. It’s no different in cybersecurity marketing – AI terminology is everywhere. But too often, it’s tacked on as a buzzword – a thin layer washed on top of existing security tools, with little real impact. This makes it tricky to decipher what’s real and what’s hype.
Read Post
reach security

Network Security Policy Management (NSPM): Keeping Policy and Reality Aligned

Nov 19, 2025 By John Dominguez In Reach Security
Network Security Policy Management (NSPM) is the discipline of defining, enforcing, and maintaining the network policies that govern how systems communicate, what data moves where, and who can access what. It sits at the intersection of security and operations, helping organizations maintain consistent, enforceable rules across increasingly complex infrastructures.
Read Post
Reach Security Recognized as a CRN® 2025 Stellar Startup!

Reach Security Recognized as a CRN® 2025 Stellar Startup!

Nov 10, 2025 By Reach Security In Reach Security
Reach Security announces that CRN , a brand of The Channel Company, has included Reach Security on its 2025 Stellar Startups list in the Security category. This prestigious list highlights fast-rising technology vendors that are driving innovation and fostering growth in the IT channel with groundbreaking products.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.