Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

"Exploit mitigation" stalled around 2008. The attacks didn't.

"Exploit mitigation" stalled around 2008. The attacks didn't. AI turns a patched bug into a working exploit in hours. Why endpoint exploit mitigation stalled in 2008, and what a default-on mitigation layer looks like now. The core of my last post was an asymmetry. An attack can unfold in two steps or 20, but the vocabulary it draws from never grows.

How AI-leading Security Teams Are Building the Agentic SOC

AI-enabled attacks move faster than human analysts can track, at a scale that traditional SOCs weren’t designed to withstand. eCrime breakout times collapsed to 29 minutes on average in 2025, with the fastest clocked at 27 seconds. The rise of frontier AI models is expected to compress the time between vulnerability discovery and exploitation, intensifying pressure on SOC teams. Defending against AI-accelerated adversaries requires a new operating model.

What is a Ransomware Attack? Definition, Types & Prevention Strategies

Ransomware isn’t just a rising threat, it’s a daily reality for thousands of businesses around the world. These attacks are faster, smarter, and more damaging than ever, with global losses projected to reach $275 billion a year by 2031, according to Cybersecurity Ventures. Understanding how ransomware works is the first step toward stopping it. In this blog, we’ll break down how these attacks unfold and what you can do to defend your systems.

How to Gain Flexibility and Maximize Security Improvements with Self-Service Security Reviews

In this demo, we will see how Arctic Wolf security posture reviews and the self-service capability deliver high quality recommendations and give customers the flexibility to maximize posture improvements at their own pace.

Automated provisioning and governance for healthcare company, B Braun

Join B Braun representatives Andreas Müller, IT project manager, and Michal Kasynski, identity manager engineer as they explore their choice of One Identity Manager for their healthcare and pharmaceutical company’s identity governance and administration (IGA) needs.

NIST and CVE Grading - The 443 Podcast - Episode 377

This week on the podcast, we take a look at the impact of the US National Institute of Standards and Technology (NIST) backing away from their previous role of enriching vulnerability CVE records. Before that, we discuss Huntress's insider threat drama before ending with an AI-assisted vulnerability discovery in the Front Gate Tickets platform.

Enrich CrowdStrike detections with VirusTotal and send to TheHive

Automatically enrich CrowdStrike endpoint detections with VirusTotal and create fully enriched alerts in TheHive. When a new endpoint detection fires in CrowdStrike, this Tines story instantly creates a structured alert in TheHive and kicks off three parallel enrichment paths; checking every IP, file hash, and URL against VirusTotal. By the time your analyst opens the alert, the context is already there.

Kroll Conversations: Meet the Cyber Strategy and Advisory Experts

In a fast-moving threat landscape, finding the answers to complex security challenges can be fraught with unknowns. Asking the right questions can make all the difference, as Steven Escobar and Ben Habing know well through their work in the Assessments and Advisory practice within Cyber and Data Resilience at Kroll.