Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Endpoint security management ensures visibility, control, and protection across diverse devices in hybrid environments. It integrates policy-driven automation, patching, and conditional access to reduce risk and enforce compliance. Unified Endpoint Management and Zero Trust frameworks enable scalable, centralized defense against evolving threats and operational disruptions.

A recent healthcare IoT security breach exposed thousands of devices across multiple facilities, including connected medical devices and critical healthcare equipment used in hospitals. Sensitive patient information was compromised, putting not only privacy at risk but also threatening health insurance portability and compliance with the accountability act.

What’s happening under the hood of your AI systems? AI is now a crucial element of modern software applications, and if you don’t have visibility into its components, you’ll be left blind. Similar to a Software Bill of Materials (SBOM), an AI Bill of Materials, AI BOM, or AIBOM has become a crucial framework for documenting and securing this new and complex supply chain. This article is part of a series of articles on Shadow AI.

Cybersecurity tools are only as strong as the humans who use them. Training, culture, and awareness shape how individuals interact with those systems and whether they succeed. This is especially true when it comes to fraud prevention. While firewalls and encryption protocols can block many external threats, they can’t stop an employee from clicking on a fraudulent invoice, wiring money to a spoofed account, or falling for a phishing scam.

Starting in July 2025, Kroll has observed a new delivery method coming from the XWORM malware family. Previously known to leverage a self-contained executable in order to drop the final payload, XWORM now uses Ghost Crypt which is a service publicized on HackForums and used to exploit DLL side-loading vulnerabilities in known applications. The service includes support for a range of malware families, including LUMMASTEALER, BLUELOADER, RHADAMANTHYS, XWORM, DCRAT, PURELOADER, STEALC and others.