%term

How a Global Bank Nearly Eliminated Audit Response Time

Oct 9, 2025 By Forward Networks In Forward Networks

Across the financial sector, compliance teams face rising expectations from regulators and customers alike. Agencies such as the SEC, OCC, FDIC, CFPB, and the European Banking Authority now demand proof of continuous compliance—not point-in-time reports. Yet most financial institutions still depend on spreadsheets, manual command-line checks, and tribal knowledge to validate security controls.

Read Post

Forward Networks

Read more about How a Global Bank Nearly Eliminated Audit Response Time

Don't Just Sell the Product. Help Them Operationalise It.

Oct 9, 2025 By Razorthorn Security In Razorthorn

The sale is just the start. Deployment, support and tuning are where trust is built. Vendors who ignore that won’t last.#CyberSecurity.

View Video

Razorthorn

Security

Read more about Don't Just Sell the Product. Help Them Operationalise It.

Advanced SOC 2 Mistakes Even Mature Companies Make

Oct 9, 2025 By VISTA InfoSec In VISTA InfoSec

Even the most mature organizations can stumble when it comes to SOC 2 compliance. In this video, we uncover the critical SOC 2 mistakes that even experienced teams make. Did You Know? Over 68% of companies fail their first SOC 2 audit due to documentation or evidence gaps. 46% of recurring SOC 2 issues stem from poor control mapping and risk assessment misalignment. If your business handles customer data, this video is essential to ensure you stay audit-ready, trustworthy, and compliant with AICPA’s Trust Service Criteria.

View Video

VISTA InfoSec

Read more about Advanced SOC 2 Mistakes Even Mature Companies Make

Anatomy of a Modern Threat: Deconstructing the Figma MCP Vulnerability

Oct 9, 2025 By Eric Schwake In Salt Security

Threat researchers recently disclosed a severe vulnerability in a Figma Model Context Protocol (MCP) server, as reported by The Hacker News. While the specific patch is important, the discovery itself serves as a critical wake-up call for every organization rushing to adopt AI. This incident provides a blueprint for a new class of attacks that target the very infrastructure powering the AI Agent Economy. To understand the risk, we must first look at the mechanics of this emerging threat.

Read Post

Salt Security

Read more about Anatomy of a Modern Threat: Deconstructing the Figma MCP Vulnerability

If You Have Not Realized It, Vishing Is Really Taking Off

Oct 9, 2025 By Roger Grimes In KnowBe4

Fighting voice-based phishing needs to be a big part of your human risk management (HRM) plan. KnowBe4 and the HRM industry have been warning about voice-based social engineering and phishing for decades. Some of the biggest and most notable hacks have long been based on it. Stories have often been told of brazen calls that resulted in big hacks.

Read Post

KnowBe4

Read more about If You Have Not Realized It, Vishing Is Really Taking Off

Empower your team: Ultimate guide to employee IS issue response

Oct 9, 2025 By Shweta Dhole In TrustCloud

Even the best-prepared teams can stumble when an information security (IS) issue surfaces; the real risk isn’t just the incident itself, but how quickly and clearly your employees know what to do next. When an alert goes off, every second counts: Who do they call? Which system do they isolate? What’s the escalation path? Without a well-defined, practiced response plan, confusion can spread faster than the threat.

Read Post

TrustCloud

Read more about Empower your team: Ultimate guide to employee IS issue response

An AI/ML Deep Dive with Luke Wolcott

Oct 9, 2025 By WatchGuard Technologies In WatchGuard

AI is reshaping how we detect and stop cyber threats, but not always how headlines suggest. This, Luke Wolcott joins to unpack how real ML drives real defense.

View Video

WatchGuard

Read more about An AI/ML Deep Dive with Luke Wolcott

Tackling the Modern WAF Challenge: Why Managed WAAP Is the Key to Effective Application Security

Oct 9, 2025 By Trustwave In Trustwave

Organizations today face a continuous struggle to secure their web applications against threats that constantly evolve in the fast-paced digital landscape. The Web Application Firewall (WAF) serves as a primary line of defense against these threats; however, its management challenges often outweigh its security benefits, resulting in organizations not realizing the full value of their security investment.

Read Post

Trustwave

Read more about Tackling the Modern WAF Challenge: Why Managed WAAP Is the Key to Effective Application Security

Multitasking Employees Are Particularly Vulnerable to Phishing Attacks

Oct 9, 2025 By KnowBe4 Team In KnowBe4

Employees who multitask are significantly more vulnerable to phishing attacks, according to a study from the University at Albany published in the European Journal of Information Systems. “In real-world settings, users are frequently engaged in other digital tasks when a suspicious message appears, requiring them to momentarily interrupt their workflow,” the researchers write.

Read Post

KnowBe4

Read more about Multitasking Employees Are Particularly Vulnerable to Phishing Attacks

The Lost Payload: MSIX Resurrection

Oct 9, 2025 By Splunk In Splunk

MSIXBuilder transforms what was traditionally a complex, multi-tool process into a single automated workflow that mirrors actual attacker techniques. By automatically handling certificate lifecycle management, dependency resolution, and package signing, the tool removes the technical barriers that previously prevented security teams from creating realistic test scenarios. This means defenders can quickly generate both signed and unsigned MSIX packages to validate their AppXDeployment event log coverage, confirm detection rules, and build detection coverage that actually works against real-world threats.

View Video