Featured Post

The new-age SOC analyst in 2026: tier 1.5

The role of the tier 1 SOC analyst has always been critical. It's the function responsible for holding the line day-to-day and responding when incidents happen. It's also the training ground for analysts, training them in a wide range of basics to prepare them to advance to tier 2. It's a role that has never been static but with the pace of change noticeably faster than ever before, the role of the tier 1 SOC analyst is evolving once again.

Understand the difference: Disaster recovery vs. DRaaS (and why it matters)

When a cyberattack or natural disaster strikes, the challenge isn’t just restoring data quickly — it’s resuming business operations just as fast. That’s where the distinction between disaster recovery (DR) and disaster recovery as a service (DRaaS) becomes critical for businesses. White paper A practical blueprint for cyber resilience to evolve from prevention to continuity.

UK Cybersecurity and Resilience Bill Provides a New Era of Accountability for Critical Infrastructure

The UK Government’s Cybersecurity and Resilience Bill marks a significant shift in how the nation safeguards critical infrastructure. The Bill moves beyond voluntary measures and fragmented self-regulation and introduces a mandated framework for resilience, signalling that cyber protection is now a strategic obligation for many sectors including healthcare, critical national infrastructure (CNI) transport and digital infrastructure.

Your API Is the New Titanic (Iceberg Already Here) #apisecurity #cybersecurity #riskmanagement #api

The Titanic didn't hit the iceberg by accident. Organizations hit the API security iceberg for the same reason: they didn't see it coming. Your API iceberg consists of: Public APIs — for customers (SaaS, partners, third-parties) Private APIs — internal infrastructure (larger companies = larger insider threat surface) Partner APIs — for ecosystem integration AI APIs — the new frontier (and the most dangerous)

CVE202620045: Exploited Unauthenticated Remote Code Execution Vulnerability in Cisco Unified Communications Products

On January 21, 2026, Cisco released fixes for a high-severity vulnerability impacting Cisco Unified Communications products that is under active exploitation, tracked as CVE-2026-20045. The flaw arises from improper input validation of user-supplied data in HTTP requests to the web-based management interface of affected devices.

How to Ignore Cybersecurity AI Bubble FOMO

Cybersecurity teams are no longer circling an AI bubble. Rather, they are staffing inside it, buying within it, and getting measured by it. This matters because bubbles create a predictable trap: expectations are set higher than teams truly can deliver. Cato Networks CEO Shlomo Kramer recently told Business Insider the market is experiencing an AI bubble driven by heavy investment and AI-driven profit improvements, which he expects to unwind. A correction will not pause attacker activity.

Context, Memory, and Learning in the AI SOC

Everyone’s chasing a smarter agent. But the model was never what held the SOC back. The sharpest LLM still won’t know your environment, your team’s past calls, or where they draw the line on risk. That lives in the layer beneath the agents: context, memory, and learning. Torq’s AI research team breaks down how we build it.