Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Software supply chain security risks are mounting. As noted in Veracode’s State of Software Security (SoSS) report, organizations of all sizes are drowning in security debt, and a large portion of the critical debt can be attributed to third-party vulnerabilities.

Today's buyers are doing their homework—they want to know they can trust your business before they commit. According to Vanta’s latest State of Trust report, nearly 65% of companies say their customers, investors, and suppliers increasingly require proof of compliance before making a purchase. ‍

Organizations benefit from the speed of the cloud, but with great power comes great responsibility. An inadvertent cloud misconfiguration can leave the door open to bad actors. While cloud configuration issues most often stem from human error or lack of awareness, they are unfortunately a leading cause of data breaches.

Vulnerability management in the cloud is more challenging than ever. Security teams are drowning in vulnerability alerts, asked to deal with them quickly even as the list continues to expand. What they lack is a clear path to remediation. Legacy tools flood teams with critical alerts, while offering little guidance on which fixes will be most impactful. Vulnerability management isn’t just about identifying the biggest risks — it’s about taking decisive action.

Since 2008, the CIS Controls have been through many iterations of refinement and improvement leading up to what we are presented with today in CIS Controls version 8.1. CIS Controls reflect the combined knowledge of experts from every part of the ecosystem (companies, governments, and individuals). The controls reflect consideration by people in many different roles, such as threat analysts, incident responders, solution providers, policy-makers, and more.

In December 2024, Malaysia passed its Data Sharing Bill 2024, a new piece of legislation aimed at streamlining data-sharing across federal government agencies. This bill promises to revolutionize how data is managed, shared, and secured within Malaysia's government, fueling a more efficient, innovative, and secure public sector.

Big news for managed service providers (MSPs): You can now protect your clients with the enterprise password manager trusted by over 150,000 businesses. 1Password Enterprise Password Manager – MSP Edition is available to all MSPs, and you can try it free for 14 days. It’s an exciting and challenging time to be an MSP. Tech stacks are growing to unwieldy sizes, remote work is the new norm, and ransomware and its associated costs are rising.

When security strategies are designed with people in mind, the results speak for themselves. Striking a balance between security and usability is crucial to protect your business while always ensuring productivity does not suffer.

Passwords alone are no longer enough to protect your IT environment. With cyberattacks becoming more sophisticated, two-factor authentication (2FA) has become essential to today’s cybersecurity strategies. It verifies who users are by requiring two different forms of identification, adding an extra layer of security to your accounts and systems.

We’re proud to announce that Fireblocks has been named to the Forbes Fintech 50 for the fifth year in a row. This recognition highlights our ongoing work to transform the world of digital asset security. Being included on this prestigious list reflects the significant progress we’ve made in providing a comprehensive suite of tools for managing digital asset operations, along with a full development platform to help customers build a wide array of businesses on the blockchain.