Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Uncovering LLM Vulnerabilities: Insights from the AI Security Testing Front Line

Artificial intelligence (AI) is transforming the business landscape at an accelerated pace. The announcement of Mythos from Anthropic, with its limited public release, is just one example of how LLMs are changing the speed at which unknown flaws in IT systems can be exposed.

Best Practices for Securing Crypto Assets

Effective crypto asset management is now a critical priority. As adoption grows, so too does the scale and sophistication of threats that individuals and organizations now face. Digital asset security requires a layered approach, including cold storage, robust key protection, regular security testing and proactive regulatory compliance. This article examines the most prevalent threats to digital assets, outlines practical measures to mitigate risk and explores the evolution of global regulation.

Today's Cyber Risk Is the Industrialization of Known Weaknesses

This article was authored by Dave Burg Cybersecurity has long been framed as an arms race driven by increasingly sophisticated attacks. But that framing is increasingly outdated. The reality emerging from the front line is more uncomfortable: Today’s cyber risk is defined less by breakthrough innovation and more by the industrialization of existing weaknesses.

Kroll Conversations: Meet the Digital Identity Experts

Enabling seamless user access without compromising security is a complex challenge. Gaurav Sheth, Cynthia Yang and Sorabh Chopra are helping to change that. As part of Kroll’s recently established team dedicated to Digital Identity, their focus is on transforming fragmented administration, manual processes and siloed identity solutions into mature programs.

How to Integrate Breach Notification into Your Incident Response Plan

Operational disruptions, regulatory mandates and reputational risks now make data breach notification a strategic necessity. To ensure breach notification is truly impactful, it must be seamlessly integrated into an organization’s incident response plan, for timely, compliant and coordinated communication following cybersecurity incidents.

Simplifying the Complex Demands of a Third-Party Data Breach

When a leading insurance and asset management company was impacted by a third- party data breach, it needed to act quickly and decisively to notify affected customers. Kroll’s elite breach notification, monitoring and call center services enabled the company to provide tailored information and support to more than 2.5 million people in just four months, as well as delivering in-depth tracking and reporting for complete visibility and assured regulatory compliance.

December Threat Intelligence Spotlight Report

Each month, our Cyber Threat Intelligence team compiles data from our engagements to determine key industry trends. We look at the initial access methods threat actors are using to gain entry into a network, types of incidents most commonly impacting organizations, which sectors are being more heavily targeted, and which threat groups are most prevalent.

Securing OT Access with Identity and Visibility: Kroll, Saviynt and Nozomi Networks

Industrial organizations face a new era of risk. As operational technology (OT) environments become more connected, the challenge of securing access and maintaining visibility continues to grow. In response, Kroll, Saviynt, Nozomi Networks and CrowdStrike have joined forces to deliver a unified solution that empowers organizations to protect their critical infrastructure without disrupting operations.