On July 2, 2025, Cisco released a security advisory detailing a maximum severity vulnerability (CVE-2025-20309) in Cisco Unified Communications Manager and Unified Communications Manager SME Engineering Special, caused by hard-coded root SSH credentials that cannot be changed or removed.

As organizations become increasingly reliant on third-party vendors and external partners, leaders must ensure that risk management practices are both robust and efficient. Automated third-party risk management (TPRM) offers a transformative opportunity to drive measurable returns on investment (ROI) while enhancing operational resilience.

Getting back to business as usual after a data breach involves an array of legal, regulatory and reputational challenges. Enabling organizations to navigate these at pace is everyday life for Josh Toon and Dustin Roth.

The cranes that move goods in and out of America's busiest ports (some of the most essential components of our national logistics chain) are under growing scrutiny. In a newly issued MARSEC Directive 105-5, the U.S. Coast Guard has raised red flags about the cybersecurity risks that come with ship-to-shore (STS) cranes manufactured in China. These cranes, mostly produced by state-owned enterprises like Shanghai Zhenhua Heavy Industries (ZPMC), make up nearly 80% of the STS equipment at U.S. ports.

The days of full remote work may be behind for most of us, but the hybrid work model is stronger than ever. In 2024, approximately 27% of workers in Europe are estimated to be working in a hybrid model, and around 36% in the US are working in a structured hybrid model. Hybrid work models also offer flexibility in their structure, with the different kinds of models companies use being: While hybrid work offers many benefits, what are the risks for hybrid workers in terms of security?

June sustained the stablecoin momentum, especially in the U.S., where legislation is at the final stretch. Around the world, regulators continued refining crypto intermediary and tokenization frameworks.

If your Maven project feels like a ticking time bomb of outdated dependencies, you’re not alone. Developers often put off updates—until a critical CVE or compatibility issue makes them wish they hadn’t. Keeping your dependencies current doesn’t just reduce risk—it improves performance, adds features, and aligns with best practices in secure software development.

We live in a world where infrastructures reside entirely in the cloud, threats evolve faster than ever, and attackers never sleep. Manual security processes simply can’t keep pace. Cloud-native security automation is the critical solution for organizations to secure large attack surfaces.

Minna Bank (“Minna no Ginko”), Japan’s first digital-native bank and a subsidiary of Fukuoka Financial Group, has announced a landmark initiative to explore how stablecoins and Web3 wallets can transform everyday financial services. In collaboration with Fireblocks, Solana, and TIS, the study will assess the technical and practical applications of stablecoins for real-world payments, trading, and next-generation user experiences.