Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

In a world where data provides companies with a competitive advantage, sharing it amongst other businesses, especially in the same industry, may seem counterproductive. However, in cybersecurity, where every company is a potential target for threat actors and organizations are increasingly interconnected through supply chains, sharing information can significantly enhance a company’s security posture and overall resilience.

Manual ticketing slows response time and invites errors. Forward Networks simplifies this by detecting drift, anomalies, or changes—and automatically creating ServiceNow incidents based on verified data. Incidents are enriched with hostname, config diff, device roles, and severity, saving time and ensuring accuracy. Implementing change management for network modifications has multiple benefits.

What if a single developer pastes sensitive code into a chatbot and, in seconds, exposes your company’s most valuable secrets? That’s not a thought experiment. Incidents at Samsung, Amazon, and other enterprises show how generative AI can turn everyday work into an unintentional leak.

As Generative AI revolutionizes businesses everywhere, security and IT leaders find themselves in a tough spot. Executives are mandating speedy adoption of Generative AI tools to drive efficiency and stay abreast of competitors. Meanwhile, IT and Security teams must rapidly develop an AI Security Strategy, even before the organization really understands exactly how it plans to adopt and deploy Generative AI.

Large Language Models (LLMs) are rapidly evolving from impressive information retrieval tools into active, intelligent agents. The key to unlocking this transformation is the Model Context Protocol (MCP), an open-source standard that allows LLMs to securely connect to and interact with any application — from Slack to Canva, to your own internal databases. This is a massive leap forward.

MITRE ATT&CK has become the de facto SOC framework for classifying adversary behavior — and for good reason. It gives SOC teams a common language to describe threats, uncover gaps, and fine-tune detection logic. But let’s be honest: mapping real-world activity to ATT&CK tactics and techniques is still a time-consuming grind.

Application Security Posture Management (ASPM) is a unified intelligence layer that transforms scattered security data into actionable business insights. Why should you care about this new security approach when you already have a working structure in place? To understand this, let’s first look at the security approach that enterprises usually follow and why it is dated.

This blog details how 1Password has addressed clickjacking in the latest version of our browser extension (version 8.11.7). We have no indication that this class of vulnerability directly puts 1Password’s systems at risk. Clickjacking is a technique where a malicious or compromised webpage visually disguises or overlays elements of a page or browser extension, like the autofill menu, so that a user unintentionally clicks on them.

In late July, we published new research on the risks of unmanaged AI, revealing four major security challenges companies face when AI slips under the radar.

BlueVoyant investigated the latest Oyster malware attacks, delivered in a widespread campaign targeting IT professionals by impersonating legitimate IT tools. The campaign was originally discovered by outside researchers, but when BlueVoyant’s SOC observed suspicious behavior in a client environment within the healthcare sector, the team, including the Threat Fusion Cell (TFC), decided to delve deeper.