So, you’ve enabled multi-factor authentication. You’ve taught your staff never to type their passwords into dodgy-looking login pages. Surely your Microsoft 365 accounts are safe now? Well, think again. Read more in my article on the Hot for Security blog.
Tag: never
Exploits, Global Security News
Most Remediation Programs Never Confirm the Fix Actually Worked
Security teams have never had better visibility into their environments and never been worse at confirming what they fix stays fixed. Mandiant’s M-Trends 2026 report puts the mean time to exploit at an estimated negative seven days. The Verizon 2025 DBIR puts median time to remediate edge device vulnerabilities at 32 days. These numbers have…
AI, Apps, Compliance, Cybersecurity, Endpoint, Global Security News, malware, Network Security, Risk Management
Margin vs. Madness: Fixing MSSP Top 5 Operational Nightmares
Leading a managed security services provider has never been a comfortable job. And it isn’t now, though the demand for MSSPs has never been higher. The global threat landscape is expanding faster than most enterprise security teams can keep pace with, and organizations across every sector are turning to managed providers to fill the gap. For MSSP leaders, this…
Global Security News
Ransomware Negotiator Pleads Guilty to BlackCat Scheme
A cautionary tale illustrates why the person negotiating should never be involved with any part of the ransom payment process, experts noted.
AI, Compliance, Cybersecurity, Endpoint, Global Security News, Network Security, Risk Management
4 questions to ask before outsourcing MDR
Security teams are stretched thin. Alerts never stop, attackers move faster, and expectations for uptime and resilience keep rising. For many IT and security leaders, Managed Detection and Response (MDR) has become less of a “nice to have” and more of a practical way to stay ahead. But outsourcing MDR is not just about handing…
AI, Endpoint, Exploits, Global Security News, Risk Management
Hybrid Vishing Campaigns Abuse Online Services to Evade Anti-Spam Filters
Phone-based fraud never went away. It evolved. Vishing, or voice phishing, is a social engineering technique that uses phone calls to extract money or sensitive information from victims. A few years ago, these attacks typically arrived as unsolicited calls from criminals impersonating the IRS, the FBI, or Microsoft support. The approach was simple and high…
Cybersecurity, Data Breaches, Global Security News
Enterprise Security in 2026: Why Most Organizations Are Still Getting It Wrong
Enterprise security has never been more urgent — or more misunderstood. Despite ballooning security budgets, the average cost of a data breach hit a record high in 2024, and the trend hasn’t reversed. Organizations are spending more on tools than ever before, yet the breaches keep coming. The uncomfortable truth? Spending more isn’t the problem.…
AI, china, Endpoint, Exploits, Global Security News, Government & Policy, malware, Network Security, Russia
The rise of the evasive adversary
Since the earliest days of the internet, there has never been a let-up in adversarial activity. According to CrowdStrike’s just-released 12th annual Global Threat Report, malicious activity in cyberspace continues to not only accelerate but also expand its scale and increasingly abuse the trust of targeted organizations. The good news is that, despite discussion of…
Global Security News
How Technology is Transforming Online Learning and Education in 2026
Education has never stood still. From chalkboards to textbooks, from computer labs to smartphones, every generation has witnessed a shift in how knowledge is delivered and consumed. But what is happening in 2026 goes far beyond incremental change.
AI, Cybersecurity, Data Breaches, Funding, Global Security News, Government & Policy, Risk Management
CISO Julie Chatman wants to help you take control of your security leadership role
Julie Chatman never planned to get into cybersecurity. In fact, she believes most don’t but are mentored into it, as she was. Chatman started her professional career as a Navy Hospital Corpsman, specializing in medical laboratory science and technology — a core part of medical diagnostics. “I analyzed blood work, monitoring quality control, ensuring accuracy…
AI, APAC, Cybersecurity, Exploits, Global Security News, Patch Management Software, Risk Management, Security, Threat and Vulnerability Management, Risk Management
CISOs must separate signal from noise as CVE volume soars
In 2026, the cybersecurity industry is expected to cross a threshold it has never reached before: More than 50,000 publicly disclosed software vulnerabilities in a single year. According to a new forecast from the Forum of Incident Response and Security Teams (FIRST), the median projection for 2026 is roughly 59,000 Common Vulnerabilities and Exposures (CVEs).…