Banks and Financial Market Infrastructures (FMIs) have approached blockchain technology with both excitement and caution in recent years. They have been discouraged by regulators from engaging with permissionless blockchains. Many financial institutions have spent large amounts of time and money developing digital asset capabilities on highly permissioned and proprietary alternatives.

In today's workplace, communication tools like Slack or Microsoft Teams are essential for staying connected at work. However, as orchestration and automation needs increase, so does the volume of notifications flooding these channels. What’s meant to streamline work can quickly become overwhelming. We call it "ChatOps fatigue" - when teams get so many alerts, they start tuning them out.

Almost a decade after its discovery, the critical remote code execution vulnerability known as CVE-2016-10033 continues to pose a significant threat to web applications worldwide. In this post, we explain why it's so dangerous and the essential steps to protect your systems from this critical exposure in 2025.

As an enterprise organization leveraging Microsoft's comprehensive security ecosystem — including Sentinel, Defender XDR, Defender for Cloud, and Microsoft Security Copilot — you've established a robust security operation. However, the security landscape continuously evolves including your organization's changing business requirements and Microsoft's ongoing platform enhancements.

Looking back at the early 2024 data breach at Change Healthcare — a provider of revenue and payment cycle management that connects payers, providers, and patients within the U.S. healthcare system — one key detail stands out: Initial access into the healthcare system’s network was much easier due to a lack of multi-factor authentication (MFA).

In today’s digital-first world, APIs serve as the core infrastructure of modern business. They power mobile applications, facilitate critical cloud integrations, and support digital transformation initiatives. It's therefore understandable that 73% of CISOs consider API security a top or critical concern. However, a recent survey of 300 security leaders uncovers a troubling paradox: a large gap between awareness and action.

It’s tempting to view bug bounty programs as a cheat code – an enticing shortcut to uncover vulnerabilities by tapping into the creativity of the global security community. Is there really any to invest in your own testing for vulnerabilities? But while these programs can surface critical flaws that traditional testing might miss, they’re inherently reactive and can be limited in scope.

Think back to when you were a kid, eyeing a cookie jar on the top shelf. Getting to it wasn’t just about reaching; it was about strategy. You had to avoid making noise, pick the sturdiest route, and time your move perfectly to avoid getting caught. Imagine having a team of expert scouts feeding you all the correct information: where the dangers are, which surfaces can support you, and the best way to grab that prize unnoticed. That’s exactly what BloodHound does.

Widespread implementation of artificial intelligence (AI) in security presents a paradox. On one hand, it helps security experts combat advanced threats at scale. On the other hand, AI is also contributing to the scale of sophistication of adversaries' threat campaigns. To fight fire with fire, organizations are increasingly automating security processes to make up for the uneven playing field on which they find themselves.

Trustwave has significantly enhanced its Microsoft Azure Marketplace offering with the addition of three security solutions that will help clients meet their Microsoft Azure Consumption Commitment (MACC). Starting immediately, Trustwave MXDR for Microsoft, MXDR Elite for Microsoft with Co-Managed SOC, and MailMarshal with Microsoft O365 are Azure Benefits Eligible in the Microsoft Azure Marketplace.