Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

It seems everyone loves phishing attacks. Trustwave's Ed Williams, Vice President of SpiderLabs, during a recent Trustwave webinar, discussed the ongoing threat posed by the increasingly sophisticated phishing incidents that remain the primary vector for initial access in cyberattacks. What Williams interestingly noted was that threat actors are not the only group using phishing to gain access to organizations.

Every pipeline shift introduces a new blind spot. SAST catches coding flaws, and SCA catches dependency risks; however, as delivery moves to CI/CD, new risks have emerged, not in the code itself, but in how it is executed. From broken access controls and authentication drift to logic flaws behind feature flags, these threats show up in production. Continuous DAST in CI/CD pipelines isn’t just “another layer” but a runtime check that’s most likely to catch what gets exploited.

DAST often underdelivers, not because the tool is broken, but because it’s misapplied. It gets dropped into pipelines without strategy, runs against partial environments, skips authenticated areas, and generates findings that teams ignore. The result is predictable: wasted cycles and lost credibility. DAST best practices focus on addressing operational failures that render scans ineffective.

Your app isn’t just HTML anymore. It is containers talking to microservices, SPA front ends calling GraphQL, and third‑party SDKs everywhere. That mix creates blind spots and unpredictable OWASP Top 10 gaps. Continuous DAST looks through every layer, including mobile backends, APIs, and container workloads, simulating attacker behaviour across your entire technology stack. Hence, no more guessing which component hides the next SSRF, injection, or misconfiguration.

You may have read our recent blog about the EgnyteGov platform achieving FedRAMP Moderate Equivalency, and why it’s a significant milestone. In this latest blog, I’ll explain how Egnyte’s FedRAMP Moderate Equivalency benefits our current and prospective customers in managing their critical data.

Pharma fraud: How illegal online pharmacies endanger your health and your wallet Even when a website looks legitimate, buying medicine online can expose you to scams that might seriously impact your finances, data or even physical health. When you’re in urgent need of medication – whether it’s a routine antibiotic, a high-demand weight loss treatment, or something more private – the internet can seem like the quickest, most discreet option.

Ransomware activity continues to increase, and Bitsight data illustrates the scale of this growth. In our State of the Underground 2025 report, Bitsight TRACE observed a nearly 25% rise in unique ransomware victims publicly listed on leak sites. Additionally, the number of leak sites operated by ransomware groups grew by 53%.

Free your analysts to focus on what really matters: security outcomes. Security teams in the UK Ministry of Defence (MOD) are facing a dual burden: the growing volume and sophistication of cyber threats and the relentless operational grind of triaging alerts, managing compliance, and stitching together intelligence from fragmented systems. The reality is clear: Traditional security operations center (SOC) workflows aren't built for today’s pace and quantity of threats.

LevelBlue is proud to present the second edition of our biannual Threat Trends Report! This report builds on what we started in our first edition, providing cybersecurity teams with critical insights into current threats. Our second edition delves into threat actor activity observed in the first half of 2025 by LevelBlue Managed Detection and Response (MDR) and LevelBlue Labs threat intelligence teams.

Security teams are familiar with the comforting sense of safety that comes from utilizing security controls like Single sign-on (SSO) providers to manage their organization’s major applications and critical tools. When these applications are routed through Okta, Azure AD, or other identity providers, your SaaS environment can seem managed and accounted for. But lurking underneath is a significant vulnerability: the SSO blind spot.