Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

When it comes to cyber attacks, it’s no longer a question of if but when. Threat actors aren’t discriminating between the public or private sector — each organization has valuable data, which means every organization is a viable target. In this new threat landscape, digital resilience — the ability to defend against, withstand, and recover from attacks — has become an operational imperative.

The healthcare industry, with its highly prized electronic health records, a myriad of connected devices, continued use of legacy systems, and expanding telehealth services, is a premier target for threat actors. To properly dissect the issues facing the healthcare industry, Trustwave SpiderLabs has updated its earlier healthcare cybersecurity coverage with the just-released 2025 Trustwave Risk Radar Report: Healthcare Sector - A New Era of Cybersecurity Challenges.

Cyberattacks and data breaches can’t be completely stopped in a day. As technology grows, attackers find different ways to intrude, constantly adapting to new security measures. Gartner forecasts that by 2027, generative AI will play a role in 17% of all cyberattacks, highlighting the growing threat of AI-driven tactics in the evolving landscape of cybersecurity. So, companies should always get ready to cope with any kind of sophisticated attacks at any time.

Malware continues to evolve with greater sophistication. Sandbox malware analysis offers a secure testing ground to detect and study potential threats before they impact production systems. According to MarketWatch, the network sandbox market’s growth reflects this technology’s rising importance, with projections reaching $5.1B by 2025. Advanced malware presents new challenges because it can now detect sandbox environments during analysis.

When it comes to closing a sales deal, trust and security are often just as important as the product or service you’re selling — sometimes even more important. The reason is simple. Before bringing you on as a new vendor, customers need to be confident that you’re a safe and secure partner. The challenge is proving your security posture quickly, without dramatically slowing the deal.

Recently, two critical security flaws were discovered in Kentico Xperience 13, a popular digital experience platform (CMS). Tracked as CVE-2025-2746 and CVE-2025-2747, these vulnerabilities allow unauthenticated attackers to bypass the Staging Sync Server’s authentication, potentially gaining administrative control over the CMS.

With the rise of hybrid work and IoT, the demand for secure, scalable, and adaptive network access has never been greater. Traditional network access control (NAC) was built for on-premises environments, focusing on visibility, device compliance, and access control. But it no longer meets modern security demands. This blog explores the limitations of traditional NAC and how Netskope offers a more dynamic and comprehensive solution for universal zero trust network access (UZTNA).

The cyber insurance industry continues to face challenges related to traditional cyber security risks, and more recently, data privacy risks. In many cases, traditional cyber insurance policies may cover legal fees or costs related to a data privacy infringement. Organizations not only get hit with class action lawsuits following incidents like breach of PII/PHI, but are seeing demand letters from law firms who are looking to protect their clients from any possible disclosure of their sensitive data.

When we first launched Project Calico in 2016, we set out to make Kubernetes networking easy, reliable, and scalable for all organizations. Our goal was to abstract away the complexity and performance overheads of other CNI plugins while simultaneously extending Kubernetes network policy to make it easier to secure your Kubernetes workloads.

The average amount of money requested in business email compromise (BEC) attacks spiked to $128,980 in the fourth quarter of 2024, according to the Anti-Phishing Working Group’s (APWG’s) latest report. This is nearly double the amount requested during Q3 2024. The researchers found that Gmail accounts were used to launch 81 percent of BEC scams last quarter. The report also warns of a surge in SMS phishing scams impersonating toll operators in the US, driven by a popular Chinese phishing kit.