Server patch management 101: Strategies for secure infrastructure
Server patch management is the process of identifying, testing, and deploying software updates to close security vulnerabilities in server operating systems and applications.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Falcon Data Security: Stop Data Loss, Not Productivity - End-User Justification & Forensics Capture
End the rigid, binary choice of traditional DLP. Falcon Data Security changes the game by using End-User Justification (EUJ) to educate employees at the point of risk, empowering them to make smart security decisions and keeping legitimate business transfers moving. For full context and compliance, Forensic Capture gives your security team the complete story with encrypted file retrieval and screen recordings of user activity before and after the event. Watch the demo to see how to maintain security without slowing down your team.
SecurityScorecard Weekly Brief: The Cyber Risk and Policy Edition - Amanda Smith
In this week’s Weekly Brief: The Cyber Risk and Policy Edition, SecurityScorecard’s Director, Public Sector Channel Amanda Smith unpacks the complexity of government procurement in the expansion of public sector vendors and how that impacts the technologies available to government entities. Historically, government partners have been slowed down by the nature of the government procurement process but changes implemented by the administration are changing this precedent.
Sophos named a Leader in the KuppingerCole Analysts Leadership Compass for Managed Detection and Response 2026
Sophos named a Leader in the KuppingerCole Analysts Leadership Compass for Managed Detection and Response 2026 Sophos recognized across four leadership categories: Overall, Product, Innovation, and Market Sophos has been named an Overall Leader in the 2026 KuppingerCole Analysts Leadership Compass for Managed Detection and Response (MDR).
Multi-agent security operations: LimaCharlie's architecture, built for auditability
Most multi-agent security deployments fail in production not because the agents can't act, but because there's no shared context layer between them. When something goes wrong, the audit trail doesn't exist. In LimaCharlie, solving that problem is architectural, and the solution starts with how individual agents are defined.
Remote deployment scripting
Getting a certificate from a CA is a solved problem (ACME). Distributing it to the rest of your infrastructure is not. Your F5 has its own API. Your Palo Alto has a different one. Azure Key Vault is a third thing entirely, and the appliance in the back of the rack only has an SSH interface.
Shadow IT: Tiering the Unseen to Manage Vendor Risk
Another ping. And another. Employees are urgently logging IT tickets, trying to figure out why their trusted SaaS writing assistant subscription has expired. Meanwhile, your InfoSec team is frantically looking through the avalanche of alerts across the network, scouring vendor policies, and digging into procurement records to determine exactly when the organization provisioned this SaaS tool. Spoiler alert: The organization didn’t.
The Mythos Effect and the End of "Business as Usual" for Security Operations and Risk Management
Something fundamentally shifted in cybersecurity. Claude Mythos, Anthropic’s frontier AI model, signaled the arrival of what the Cloud Security Alliance called an “AI vulnerability storm,” a world where vulnerabilities are discovered and exploited at machine speed. This is a compression event, collapsing timelines, expanding attack surfaces, and forcing a rewrite of how organizations think about security operations, software development, risk, and ultimately, business survival.
GCSI 2026: AI Readiness in a City Built in Layers
GCSI 2026 showed why cyber readiness depends on visibility into vendors, AI tools, identities, workflows, and hidden business dependencies.
The AI Inflection Point That Will Redefine Software Trust
Every few years, something enters the market that doesn’t just change the conversation — it restructures the underlying assumptions of an entire industry. The rapid advancement of AI systems purpose-built for software and security workflows is one of those moments. And I think most of the market is still misreading what it actually means. There will be no shortage of takes. Some will declare that AI has finally “solved” software security.