Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

At RSAC 2025, we announced Extended Device Compliance, a new capability within 1Password Device Trust that enforces device posture Checks before allowing access to web applications, including those not protected by single sign-on (SSO). Extended Device Compliance redefines industry expectations for device trust solutions, ensuring devices are secure and compliant even when users access apps outside traditional admin control.

Spectro Cloud Palette is an enterprise-grade Kubernetes management platform that simplifies the deployment and lifecycle management of clusters across data center, cloud, and edge environments. Designed around a declarative model, Spectro Cloud Palette enables users to define full-stack cluster profiles—including the operating system, Kubernetes version, and curated integrations—all governed by policy.

CIS compliance is the voluntary practice of aligning IT systems with the Center for Internet Security’s benchmarks and controls to proactively mitigate cybersecurity risks, meet regulatory requirements, and enhance organizational security posture.

REST APIs are the arteries of today’s digital ecosystems, silently exchanging data between countless applications, users, and devices. Yet, in the race to protect endpoints, authenticate users, and encrypt payloads, the security nuances of API responses are often overlooked. This oversight leaves a dangerous gap where attackers don’t need to break in; they simply listen, observe, and exploit what’s willingly given away.

In today’s increasingly interconnected digital landscape, APIs have become the invisible backbone of organizational efficiency, enabling data sharing, automation, and business innovation with quiet efficiency. However, as APIs proliferate, so do the vulnerabilities and targeted attacks that threaten to disrupt operations, compromise sensitive information, and damage an organization’s reputation.

How do you stop identity-based attacks in real time — across both human and non-human identities? CrowdStrike Falcon Identity Protection now delivers powerful new capabilities to answer that question. The innovations announced today address urgent challenges facing security teams: unprotected non-human identities (NHIs) such as service accounts, insider risk during employee offboarding, and standing privileges in hybrid Microsoft environments.

Threat analysts are being bombarded with hundreds, if not thousands, of threat intel data points including new indicators of compromise (IoCs), evolving threat actor groups, shifts in regions and industries being targeted and new tools, techniques and procedures (TTPs). Security operations must be data driven so you can understand threats and efficiently allocate resources to address your most important requirements.

Online fraud is, unfortunately, becoming a lucrative business for cybercriminals, hackers, and scammers. It’s now easier than ever to use AI to help generate phishing emails, and people can even use fraud-as-a-service to buy pre-made malware to target and steal our financial and business information.

Over the past year, India witnessed a steep rise in cyberattacks. While news focused on big-ticket data breaches and mainstream ransomware attacks, it ignored how the overall threat landscape has become more sophisticated and ingrained. India detected over 369 million malware events between October 2023 and September 2024, at a rate of 702 potential threats per minute on average.