%term

NIS2 Fines and Legal Consequences Every Business Should Know

Dec 2, 2025 By VISTA InfoSec In VISTA InfoSec

The network and information security directive 2 (NIS2) is an EU-wide cybersecurity law that contains strengthened cybersecurity regulations and is a general set of mandatory security requirements aimed at already identified critical and important sectors.

Read Post

VISTA InfoSec

Read more about NIS2 Fines and Legal Consequences Every Business Should Know

Mend.io + Wiz: A New Code-to-Cloud Integration for Accurate, Context-Driven Risk Prioritization

Dec 2, 2025 By Tiffany Jennings In Mend

Today, we’re excited to announce the availability of Mend.io’s new integration with Wiz, delivering a powerful Code-to-Cloud security workflow for joint customers. By bringing Mend SAST’s high-accuracy code findings directly into the Wiz platform, organizations can now unify code-level risks with cloud posture, runtime context, identities, and infrastructure—unlocking the complete picture needed to prioritize and remediate risk with confidence.

Read Post

Mend

Read more about Mend.io + Wiz: A New Code-to-Cloud Integration for Accurate, Context-Driven Risk Prioritization

Why Account Takeover Is a CX Problem, Not Just a Security One

Dec 2, 2025 By Julian Agudelo In Memcyco

Account takeover is usually and unsurprisingly approached as a security incident, yet much of the customer impact begins earlier in the journey, long before security teams detect or analyse the event. When users face friction, lockouts, or unexpected changes to their accounts, trust starts to erode. This makes the account takeover impact on customer experience a major determinant of brand trust and loyalty.

Read Post

Memcyco

Read more about Why Account Takeover Is a CX Problem, Not Just a Security One

Reco + Torq: Dynamic SaaS Security, Fully Automated

Dec 2, 2025 By Bob Boyle In Torq

See how Torq harnesses AI in your SOC to detect, prioritize, and respond to threats faster. Request a Demo Torq AMP spotlights the partners redefining what’s possible in security operations. Each partner brings a unique strength that seamlessly extends Torq’s autonomous SOC platform. Together, these partnerships help SOC teams achieve speed, accuracy, and scale that were once out of reach. Explore the future of SOC in the AMP’d Sessions video series.

Read Post

Torq

Read more about Reco + Torq: Dynamic SaaS Security, Fully Automated

Reach Security Ranked #5 on the TechRound100 | Exposing and Fixing Real Security Risk

Dec 2, 2025 By Reach Security In Reach Security

Honored to share that Reach Security has been named on the TechRound100, recognizing the most impactful and innovative startups of the year. This milestone reflects the problem we’re focused on solving: most organizations don’t lack tools—they lack visibility into how those tools are actually deployed. By exposing misconfigurations, shallow deployments, and missing protections, Reach helps teams fix the risks that matter most before they become incidents.

View Video

Reach Security

AI
Security

Read more about Reach Security Ranked #5 on the TechRound100 | Exposing and Fixing Real Security Risk

Cato CTRL Threat Research: From Productivity Boost to Ransomware Nightmare - Weaponizing Claude Skills with MedusaLocker

Dec 2, 2025 By Inga Cherny In Cato Networks

Claude Skills is a new feature from Anthropic that has gained rapid adoption, with more than 17,000+ GitHub stars already since its launch in October 2025, allowing users to create and share custom code modules that expand Claude’s capabilities and streamline workflows. But as this ecosystem grows, Cato CTRL uncovered a serious oversight into how Skills are executed.

Read Post

Cato Networks

Read more about Cato CTRL Threat Research: From Productivity Boost to Ransomware Nightmare - Weaponizing Claude Skills with MedusaLocker

Introducing Persona's Ashby integration

Dec 2, 2025 By Jenna Kim In Persona

Hiring teams face a new reality: your recruiters are now the first line of defense against workforce security threats. Gartner predicts that by 2028, one in four candidate profiles worldwide will be fake. Multiple forces are already paving the way for this surge in fake candidate identities.

Read Post

Persona

Read more about Introducing Persona's Ashby integration

Defining and Defending Against a Zero Day Attack

Dec 2, 2025 By LevelBlue In LevelBlue

Unexpected attacks are the hardest to fend off. In the realm of cyber, Zero Day vulnerabilities are among the greatest risks, as these software flaws are unknown and exploited before a fix is available, potentially compromising the thousands of organizations that are unwittingly using vulnerable software.

Read Post

LevelBlue

Read more about Defining and Defending Against a Zero Day Attack

Secure Your AWS Cloud with Falcon Next-Gen SIEM: Seamless Integration & Intelligent Detection

Dec 2, 2025 By CrowdStrike In CrowdStrike

See how Falcon Next-Gen SIEM delivers instant, frictionless integration with AWS for full visibility in minutes. Watch how pre-built detections analyze every API call, connecting events into clear attack stories. With automated response playbooks that take immediate action, you can detect faster, respond smarter, and stop cloud threats before they spread. CrowdStrike Falcon Next-Gen SIEM: Consolidate security operations with the world’s most complete AI-native SOC platform.

View Video

CrowdStrike

Read more about Secure Your AWS Cloud with Falcon Next-Gen SIEM: Seamless Integration & Intelligent Detection

Your SaaS Integrations are Leaking Sensitive Data - Salesloft /Salesforce incident #aws #apisecurity

Dec 2, 2025 By Wallarm In Wallarm

The Salesloft/Salesforce incident revealed the danger of BLA 5: Artifact Lifetime Exploitation. The flaw is simple: the application fails to expire tokens and sessions properly. Stolen OAuth tokens that should have been short-lived were used to steal AWS keys, Snowflake tokens, and passwords. Key Takeaway: If an artifact is meant to be short-lived (a token, a session, a temporary file), it must be retired immediately upon expiration. Rotate your keys aggressively!

View Video