Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Simplifying industrial cybersecurity in a time of rising risk

Manufacturers face a trio of converging challenges: Cyberthreats are escalating, regulations are tightening, and operational environments are becoming more complex. The traditional approach to operational technology (OT) security is no longer working. Manufacturers need to respond by moving toward platform-based cybersecurity to reduce risk and improve resilience. An ARC Advisory Group report published in April 2026 provides details.

Agentic AI Security: Visibility and Control for AI Agents at Work

Security teams have spent years tracking what employees do with data. The harder problem now is tracking what agents do on their behalf. AI agents, whether running in an IDE, installed locally on a laptop, or connected to internal data through a model context protocol (MCP) server, operate with the permissions of the user who deployed them. They read files, query databases, call external APIs, and generate outputs. And in most enterprise environments, security teams have no reliable way to see any of it.

Mend.io and GitHub Partner to Bring Mend Renovate Cloud to Open Source Maintainers

At Mend.io, we understand better than some the weight that sits atop the shoulders of open source maintainers who support the ecosystem at large. These maintainers need to keep on top of supply chain security best practices, keep their dependencies up-to-date, taking on new contributions from users, all the while trying to squeeze that into their “off hours”.

Penetration testing vs vulnerability assessment: What's the difference?

Understanding the difference between penetration testing and vulnerability assessment is an important part of building an effective security programme. While the terms are often used interchangeably, they serve distinct purposes and provide different types of insight into an organisation’s risk profile. For technology-led organisations, particularly those operating complex SaaS platforms or cloud environments, both approaches have a role to play.

You still have passwords. Now enforce them.

So you still have passwords. Good to admit it, now let’s deal with them. The interesting problem isn’t whether passwords should exist. We know they shouldn’t. The practical problem, the one you’re living with every day, is what happens while your organization still does have them, on your endpoints, in every corner of your environment. Most organizations already have some form of password policy.

The New Vanguard: Strategic Leadership in the Age of Autonomous Threats

The threat landscape of 2026 is no longer defined by the singular hacker or the isolated malware strain. We have entered the era of the "Autonomous Adversary"-a period where AI-driven social engineering, automated vulnerability discovery, and polymorphic code are the standard tools of state-sponsored and criminal actors alike. For the security professional, the traditional defensive perimeter has dissolved. To navigate this complexity, the industry is moving away from purely tactical responses toward a model of "Cyber-Resilience and Strategic Governance.".

When One Layer of Encryption Isn't Enough: Understanding Double VPN

There's a question buried inside most conversations about VPN security that rarely gets asked directly: what exactly is a single-hop VPN protecting you against - and what isn't it protecting you against? The answer determines whether a double VPN is a sensible upgrade or an unnecessary complication for your situation.

What Role Does Visual Testing Play in Cross-Browser Testing Tools?

You've run your test suite. All checks pass. But then you open your site in a different browser and something looks completely off. A button is misaligned, a font renders at the wrong size, or an entire section collapses on itself. This is one of the most frustrating realities of cross-browser development, and it's more common than most teams expect. Functional tests can't catch these problems because the page technically "works." That's exactly where visual testing steps in, and understanding its role can change how confidently you ship across browsers.

Top 7 Best ERP Authorisation Software Providers Active in Europe

Unauthorised access within ERP systems remains one of the most underestimated risks in enterprise security. A 2023 threat report by Onapsis and SAP revealed that new SAP vulnerabilities were being weaponised within 72 hours of patch release. That finding alone should make any compliance officer rethink how access rights are governed internally.

Should Your Organization Rely on XDR For Cybersecurity?

The cybersecurity industry’s evolution from perimeter protection to holistic visibility, detection, and response is perhaps best illustrated in the evolution from endpoint protection platforms (EPP) to comprehensive security solutions that provide holistic protection for an organization’s ever-expanding attack surface, including network, cloud, and identity. Extended detection and response (XDR) is one of those solutions.