Traditionally, approaches to Attack Surface Management (ASM) went something like this: A business scanned its own IT estate to discover assets and understand what its attack surface actually included. We can think of this as Phase I. Following the completion of an asset inventory, they assessed each of their assets to identify risks and vulnerabilities, such as open ports, certificate issues, DNS misconfigurations, and more.

It’s becoming all too common these days: ransomware hitting another organization. However, most people don’t know exactly what happens when ransomware is found and what must be addressed. What makes it even more challenging for healthcare is that the data that can be stolen, like personal health information, is much more valuable than credit card numbers.

In my experience, computers are only as smart as the person in front of them. Same with AI. The results are dependent on the prompts given. Today, users typing prompts from their brains into Microsoft Security Copilot may find it hard to get value. Prompts with adequate specificity are difficult to create, let alone repeat.

However, the growing convergence of IT and OT due to digital transformation initiatives has exposed OT environments to a wide array of cybersecurity threats, creating an urgent need for robust and tailored security solutions.

Software as a Service (SaaS) applications have become indispensable for organisations in today's digital landscape. From collaboration tools enabling better communication, to SaaS applications that streamline operations, enhance productivity, and support remote work. However, their convenience comes with significant security challenges—many of which stem from human errors, insider threats, and inadequate configuration practices.

In this guest post, Eric Newcomer, Principal Analyst at Intellyx explores the practical applications and limitations of generative AI. Generative AI is a game-changing technology. Chat bots seem like magic compared to a traditional static web search. You submit questions in natural human language and receive back complete sentences and paragraphs. But it isn’t always clear what it is really good for, given limitations such as hallucinations and inaccurate answers, and possible bias.

Looking for a work-from-home gig this year? Cool, but beware of scams.

No matter what industry you’re in, solving for performance issues is always at the top of every networker’s mind. Especially with applications like Microsoft Teams, or similar unified communications as a service (UCaaS) solutions from Zoom, Webex, RingCentral, Mitel, Vonage, or 8×8, that have become critical to day-to-day business operations.

When it comes to cybersecurity, vulnerability management is one of the older technologies that still play a critical role in securing our assets. It is often overlooked, disregarded, or considered only for checkbox compliance needs, but a proper vulnerability management program can play a critical role in avoiding a series of data breaches. CIS Control 07 provides the minimum requirements and table stakes, if you will, for establishing a successful vulnerability management program.

In a team environment, it’s all about playing nice with others. The same could be said of your technology team (or stack), and its various components. The problem of disparate, complex systems – each coming from disparate, complex places – all being thrown together in an enterprise has been one the industry has been mulling over for some time.