Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Managed Detection and Response (MDR) providers are indispensable to organizations seeking to bolster their cybersecurity posture. The proliferation of sophisticated attacks and the persistent shortage of skilled security professionals, outsourcing advanced threat detection, investigation, and response to a specialized MDR provider is a strategic move that cannot be overlooked. However, the market is flooded with vendors, each offering a unique blend of technology and human expertise.

While we talk a lot on this site about the US Government’s various cybersecurity frameworks, like FedRAMP and CMMC, there’s one significant framework that deserves just as much attention: ISO 27001. ISO 27001, being an ISO standard, is an international framework for cybersecurity divorced from any one country’s government.

Third-party cyber risk management (TPCRM) has emerged as a critical discipline, moving beyond traditional approaches to address the unique and evolving cyber threats posed by vendor relationships. This post explains the core tenets of TPCRM, outlines key requirements for ideal tools, and suggests implementation strategies for this new, important branch of cybersecurity.

Today’s advanced threats move faster and cost more—average data breach costs exceed $3.8 million—while defenders struggle under a deluge of siloed alerts and high false-positive rates. This fragmented visibility means breaches often go undetected for months, giving attackers ample time to exfiltrate data, escalate privileges, and inflict major damage.

Did you know that more than 90% of web traffic is now encrypted?1 Encryption makes online security better but creates a major blind spot for security teams. Cybersecurity analysts believe that over 90% of malware can hide in these encrypted channels and bypass traditional security measures. Almost every website today uses HTTPS to encrypt data between a user’s browser and the site. This encryption protects legitimate traffic but also hides potential threats.

On June 10, 2025, Trend Micro released fixes for six critical vulnerabilities affecting Apex Central and Endpoint Encryption PolicyServer. Five of the vulnerabilities allow remote code execution (RCE), and one enables authentication bypass. The vulnerabilities were responsibly disclosed by the Zero Day Initiative (ZDI), a vulnerability research organization owned by Trend Micro.

Every new term comes with its own flavor of IT madness, whether you're managing 500 students or 50,000. From last-minute enrollment surges and forgotten passwords to stale accounts that should've been deprovisioned months ago, IT teams in schools, colleges, and universities know the drill. And yet, many educational institutions are still relying on manual provisioning, PowerShell scripts, and spreadsheets to get through it. If you’re nodding along, this is your cue to start automating.

After nearly two decades in cybersecurity and more customer conversations than I can count, one thing’s clear: no matter the industry, every organization is dealing with compliance headaches. Finance, healthcare, retail – it doesn’t matter. If you’ve got users with access to systems, you’ve got audit controls to worry about. And most of the time, people have way more access than they actually need. That’s where privileged access management (PAM) comes in.

Shadow AI refers to the unauthorized or unmanaged use of AI tools, models, frameworks, APIs or platforms within an organization, operating outside established governance frameworks. While employees may adopt these AI tools with good intentions, seeking to enhance productivity or solve problems more efficiently, the lack of oversight creates significant security, compliance, and operational risks.

There are many things in our lives we must prepare for to be ready. For other things, we wing it, or we're not prepared to deal with it at the moment. For me, I've reached that point in my life where I needed to have a medical procedure done, and it was something I've put off for several years. It may not be very comfortable to admit, but last week, I had a colonoscopy. That's not exactly how you'd expect a cybersecurity blog to start, but hear me out on this one!