The breach at Okta revealed a more significant impact than initially disclosed. Some key lessons learned.

We've dug a little deeper into the Danish CERT report on an attack against critical infrastructure. Was it really serious?

While it makes sense to detect malicious activity on endpoints, there is a strong case to integrate identity into EDR strategy.

Executives at organizations victims of cyberattacks are under pressure. Regulators are widely expected to charge them for cyber lapses.

Having internet facing devices on-premise is becoming untenable and should be considered a huge risk. Better use managed service offerings.

Surfacing email telemetry data within the XDR console can provide useful contextual info for the SOC analyst, but also actionable response.

A breach at Okta reveals how quickly the consequences propagate. The incentive to minimize risks is stronger than ever before.

The latest Cisco IOS XE bug shows that running your own public or internet facing device looks increasingly risky and inappropriate.

The costs of data breaches and cyber attacks are becoming all too visible. Here's some recent examples from mostly U.S. based organizations.