Any company that processes payments knows the pain of an audit under the Payment Card Industry Data Security Standard (PCI DSS). Although the original PCI DSS had gone through various updates, the Payment Card Industry Security Standards Council (PCI SSC) took feedback from the global payments industry to address evolving security needs.

Picture a company like a global logistics platform. On a regular Tuesday morning, shipments are crossing continents when the tracking updates suddenly stop. Then, delivery routes are rerouted by themselves, and thousands of customers are left with no information. A single exposed API endpoint or an authentication check that was left incomplete had drastic consequences for this company.

I’ve been in the cybersecurity industry for over 36 years. Surprisingly, hackers and malware haven't changed all that much. The malware today is not all that different from the stuff I was disassembling for John McAfee back in the late 1980s and early 1990s. A lot of the involved programming languages, technology and communication channels have changed, but not how malware operated and what it did. We had ransomware back in 1989. We had polymorphic, crypto-morphing malware back then.

We’re pleased to announce that a new Digital Risk Protection (DRP) integration has been added to Outpost24’s External Attack Surface management (EASM) platform: the Dark Web module. Security teams need complete visibility on their organization’s exposure and potential threats. This doesn’t only include your owned online assets, but also your dark web presence.

The robustness and reliability of an organization’s infrastructure are paramount in an evolving digital landscape. Effective infrastructure monitoring ensures seamless operations, preemptively identifies potential issues, and maintains optimal performance. As technology leaders, understanding and implementing comprehensive monitoring strategies is crucial to sustaining business continuity and achieving strategic objectives.

CVE-2025-1094 presents a critical challenge to established SQL security paradigms, effectively circumventing fundamental best practices. Though initially reported over a month ago, the gravity of its implications warrants an extensive analysis. This vulnerability challenges the long-held assumption that proper escaping guarantees protection against SQL injection attacks.

At its core, cyber risk quantification (CRQ) is a data-driven process that, in the end, offers security and risk managers an overview of their enterprise’s exposure to cyber risk.

Xona Systems, a leading provider of secure access management solutions for critical infrastructure, is partnered with Barrier Networks, a managed security service provider for industrial organisations, to deliver a comprehensive, fully managed secure access solution for critical OT environments. The partnership combines Xona’s cutting-edge secure access platform with Barrier’s deep operational cyber security expertise.