Reducing the Blast Radius of Zero-Days with Zero Trust and XDR
The clock starts ticking as soon as a zero-day vulnerability is disclosed. Cybersecurity teams scramble to shore up their defenses and search for signs of …
No More Sucking Chest Wounds
The world of cybersecurity continues to have a battlefield littered with sucking chest wounds that go untreated. We are too passive. Too afraid of action. Too intimidated to do the right thing for our organization. There are a ton of excuses for this…
The war situation in Ukraine and cyber threats
On February 24, we sent out a security update on the cybersecurity implications of Russia’s invasion of Ukraine. In this new bulletin, we give you …
Lessons learned from over fifty years of combined Zero Trust implementation
Biden’s Zero Trust advice, as well as the Dutch NCSC advice, has put Zero Trust on the map more than it has ever been before. …
The Log4j lessons: so what IS vulnerability management anyway?
In our first Log4j lessons blog, we focused on the necessity of becoming very, very good at patching, and making it a well-documented and automated …
The Log4j lessons: If it ain’t broke, fix it now!
A blog series with the title The Log4J lessons might suggest that the fallout of the Log4j vulnerability is mostly behind us. Indeed, since the end of …