All Articles

In today’s rapidly evolving threat landscape, human risk remains one of the most critical challenges for CISOs. While technology defenses are essential, employee behaviors often define the difference between a contained incident and a costly breach.

China has implemented regulations for 1-hour reporting of severe cybersecurity incidents. This would include disruptions that impact over 50% of the people in a province or 10 million people, such as critical infrastructure attacks.

The irony is that

I am looking forward to the upcoming HMG Strategy annual Silicon Valley C-Level Leadership Summit on Oct 7th! The summit theme is ENTERPRISE 2030: Navigating the Innovation and Invention Supercycle.

I will be leading a panel of fellow cybersecurity ex

In today’s digital era, the healthcare industry is more connected than ever. Electronic health records (EHRs), telehealth platforms, wearable medical devices, and cloud-based systems have transformed how medical professionals access and manage patien

We’re excited to bring you an insightful AI Demo Talk on "Building Trust in AI-Driven Interactions: Securing Agentic AI with Trusted Identity and Privacy-First Biometrics" with Nadav Stern (Head of Engineering, Anonybit) & Jeremiah Mason (Chief Produ

We’re excited to bring you an insightful AI Demo Talk on "Task driven agents for investigation, response, analysis and more!" with Steve Povolny (Senior Director, Security Research & Competitive Intelligence, Exabeam).

In this session, we’ll take a d

With artificial intelligence limiting the scope of creativity and automation, it is also posing new issues- the most notable of them being the phenomenon of deepfakes. Making people look like they never said or did things they did, these hyper-realis

Business fraud prevention is a crucial part of modern risk management. In a world where online purchases and long-range business relationships are becoming increasingly popular, the necessity to ensure you are doing business with a person you can cou

The Human Story: Alert Fatigue Is Real

If you’ve ever sat in a SOC at 2 a.m., drowning in a wall of alerts, you know this truth: fatigue kills focus. SOC analysts spend hours triaging false positives, while true threats quietly slip through the noise.

In today’s digital-first economy, startups face a paradox. On one hand, they are agile, fast, and driven by innovation. On the other, their speed often comes at the cost of robust security practices. Many founders initially focus on building their pr

We are incredibly honored to have Cybersecurity Insights be named as one of the 50 Thought Leading Companies on Cybersecurity 2025 by Thinkers360!

Thank you so much!

Addressing cyber risks is a daunting challenge that requires innovation and forward th

When is the right time to hire a CISO? It's a question many organizations face, and the answer isn't one-size-fits-all.

Key factors include regulatory requirements, organizational size, data sensitivity, and risk tolerance. Startups might benefit from

Knowing when to hire a CISO is a challenging proposition – one which most organizations will eventually need to answer.

The need to hire a CISO depends on a combination of factors, including but not limited to:

• Relevance of regulatory requirements

• Size

A new report from MIT Sloan cybersecurity research reveals that AI is leveraged in 80% of ransomware attacks.  Of the 2811 ransomware cases investigated, adversaries used AI 80.8% of the time in their attacks.  Organized threat agents like LockBit, R

We are entering the greatest window of opportunity for criminals and malicious actors since the creation of the Internet. Carnegie Mellon researchers have shown how AI systems can autonomously plan and execute cyberattacks against enterprise-grade de

Palo Alto, Calif., July 29, 2025, CyberNewswire — Despite the expanding use of browser extensions, the majority of enterprises and individuals still rely on labels such as “Verified” and “Chrome Featured” provided by extension stores as a security in

Remember when I said don’t install browser extensions, as they have unimaginable access to your private data and secrets?  Well, password managers definitely fall into that category as well! 

In general, never install a browser extension, seriously –

Google’s vulnerability finding team is again pushing the envelope of responsible disclosure:

Google’s Project Zero team will retain its existing 90+30 policy regarding vulnerability disclosures, in which it provides vendors with 90 days before full