Featured Blog
A Routine Pen Test Found a Zero-Day. The Vendor Response Was the Real Lesson.
This was supposed to be a routine external penetration test. Within minutes, it was not. A colleague on our pen test team was running asset discovery when he flagged an internet-facing HMI tied to industrial control systems. At first, it looked like one more exposed web interface on a non-standard high port. He brought it […]
Data Breaches, News, vCISO
Treat Data Like Hazardous Material: Risks of Over-Collection and Retention
News, Tabletop Exercises
When Power Goes Out, Cyber Risk Goes Up: What the Venezuela Outages Really Teach Us
Cybersecurity, Microsoft 365, Microsoft Office 365
