Heavily digitized healthcare is especially at risk since it contains so much sensitive data, including patient records.

Mixed messages from the new GitLab DevSecOps Survey 2022: toolchain sprawl and limited budgets, but also wider usage of SAST and DAST tools.

The new Postman annual State of the API Report highlights the risks of programmatic integration via APIs

From pass-the-cookie attacks to adversary-in-the-middle (AiTM) schemes, bypassing MFA is becoming more frequent. There are ways to defend.

And a sharp rise in wiper malware - notes from the new FortiGuard Labs report covering the first 6 months of 2022.

The Abnormal Security report provides insights into the latest phishing trends.

The recent Twilio breach impacted Signal app users, highlighting again the role of phishing and supply chain risks in cyber attacks.

Ransomware is at the expanding intersection of cybersecurity and cyber insurance. It turns out EDR is the key benchmark for getting insured.

Healthcare providers should step up defenses, as ransomware gangs focus on both stealing/exfiltrating and encrypting sensitive data.