Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

January 2025

Zero Trust vs Traditional Security Models: What's the Difference?

As cyber attacks grow in sophistication, traditional security models become more vulnerable, prompting many organizations to adopt zero-trust security. The main difference between traditional and zero-trust security models is how they approach access control. Traditional security models assume trust for users inside their networks, whereas zero-trust security verifies every user and device by default, requiring continuous authentication.

How to Prevent a Subdomain Takeover in Your Organization

When was the last time you checked DNS configurations for subdomains pointing at services not in use? According to Crowdsource ethical hacker Thomas Chauchefoin, while expired and forgotten subdomains can easily become an entry point for an attacker to steal sensitive data and launch phishing campaigns, having the right tool in place can keep them at bay.

Understanding the EU's Cyber Resilience Act (CRA)

The Cyber Resilience Act (CRA) introduces a much-needed framework for standardizing the cybersecurity practices of companies operating in the European Union (EU). The regulation sets clear expectations for hardware and software manufacturers, developers, and distributors, outlining how they should manage and address vulnerabilities at every stage of the product lifecycle.

Trustwave SpiderLabs 2025 Trustwave Risk Radar Report: Energy and Utilities Sector

The energy sector plays a crucial role in national security by ensuring the delivery of essential infrastructure services and supporting transportation systems. Acknowledging the need to safeguard this vital industry, Trustwave SpiderLabs has published the highly detailed 2025 Trustwave Risk Radar Report: Energy and Utilities Sector. The primary report is joined by two specialized supporting pieces of research focusing on these critical areas of concern.

Trustwave SpiderLabs: Ransomware Attacks Against the Energy and Utilities Sector Up 80%

The energy sector is a cornerstone of national security, ensuring the delivery of critical infrastructure services and supporting transportation systems. Recognizing the importance of protecting this vital industry, Trustwave SpiderLabs has released the comprehensive 2025 Trustwave Risk Radar Report: Energy and Utilities Sector.

11:11 Systems Receives Prestigious 2024 Zero Trust Security Excellence Award

The Greek philosopher Aristotle once remarked, “Excellence is never an accident. It is always the result of high intention, sincere effort, and intelligent execution.” When you’re winning, the thrill is undeniable. Success, whether in the casino or on the basketball court, requires focus and discipline. It’s a feeling like no other when everything finally clicks.

Stop Demonizing CVSS: Fix the Real Problem

If you read the newest risk-based vulnerability management literature, it appears we have a new favorite punching bag: the Common Vulnerability Scoring System (CVSS). You seemingly can’t throw a rock into the “vuln-o-sphere” without hitting someone dunking on CVSS or the National Vulnerability Database (NVD). The argument goes something like this: “Exploitation rates are up, ransomware is surging, and vulnerabilities are multiplying like rabbits.

Synchronize Jira Data Center Issues With GitGuardian Incidents

We are happy to announce that our new integration empowers Jira Data Center users to synchronize their GitGuardian incidents with Jira Data Center issues. We have previously integrated with Jira Cloud for issue creation and coordination, but now anyone running their own Jira Data Center installation can reap the same benefits of both automatic and manual creation of Jira issues from your GitGuardian incidents using customized templates. With our auto-resolve feature, you can automatically close GitGuardian incidents when the corresponding Jira issue is closed.

Is This the Ultimate Fix for Infosec Challenges? Decoding Zero Trust #cybersecurity

Is your infosec team overwhelmed by data sprawl, alert fatigue, and endless security challenges? Discover how Fidelis Security's Elevate solution can transform your approach with: Network Data Loss Prevention (DLP) Comprehensive Visibility Risk Profiling Powerful Detection, Response, and Analytics It’s time to stop struggling and start securing. Watch now to learn more!#ZeroTrust.

From alerts to insights: Establishing resilience with Recorded Future and Tines

Today’s security teams are faced with an overwhelming volume of alerts and data, making it difficult to respond quickly and effectively. Join us as we explore how Recorded Future and Tines help security teams streamline threat investigations, enrich alerts with actionable intelligence, and accelerate decision-making. During the webinar, we covered: From alert ingestion to enriched data analysis and remediation, discover the ways Recorded Future and Tines equip teams with the information to make faster, more informed threat-related decisions.