Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

The quantum threat isn’t theoretical—it’s operational. Quantum computing is rapidly shifting from research to reality, forcing chief information security officers (CISOs) to rethink cryptography, risk management and long-term data protection. In a previous post, I explained the quantum challenge. Recently, we explored why quantum readiness is not optional. Now, it’s time for action.

Prioritizing which vulnerabilities to fix across your application isn't always easy. Is it exploitable? Is it reachable? Will the update introduce breaking changes? Are there any other teams using this library that you should be aware of? What does the backlog look like if other changes need to be made? And that's just this week. Next week, it'll be the same thing all over again, with new discoveries, new version releases, and maybe even a new cybersecurity breach.

Running servers on virtual machines provides you with a list of advantages such as scalability, rational resource usage, high availability, load balancing, convenient management, data protection features, etc. For this reason, you may want to migrate some of your physical servers to virtual machines. This process is also known as physical to virtual conversion, and referred to by the acronym P2V.

NATO has fundamentally redefined what it means to defend the alliance. At the 2025 NATO Summit in The Hague, allies made a commitment to investing 5% of Gross Domestic Product (GDP) annually on core defense requirements and defense and security-related spending by 2035. This represents a dramatic escalation from the previous 2% GDP benchmark. The commitment also includes a condition about how they are to invest that money.

Phishing attacks impersonating HR are on the rise. Between January 1 – March 31, 2025, our Threat Lab team observed an 120% surge in these attacks reported via our PhishER product versus the previous three months. These attacks have remained at elevated levels since peaking in February. (FYI in our previous post, we explored the psychology that makes these attacks so effective.

We all trust HR - or at least we do when we think they’re emailing us! Data from KnowBe4’s HRM+ platform reveals that phishing simulations with internal subject lines dominate the list of most-clicked templates in 2025. Out of the top 10 templates people interacted with between May 1 - June 30, 2025, an incredible 98.4% had subject lines relating to internal topics - with HR mentioned in 45.2%.

The average cost of a data breach has reached $4.45 million globally (IBM, 2023). While most organizations invest heavily in firewalls, endpoint protection, and network monitoring, those defenses focus almost entirely on keeping threats out. The reality is different: over 70% of breaches involve human error or misuse. That means many of the most serious risks are already inside your systems. This is where employee monitoring data protection strategies make a difference.

Between June and August 2025, the CrowdStrike Falcon platform successfully blocked a sophisticated malware campaign that attempted to compromise over 300 customer environments. The campaign deployed SHAMOS, a variant of Atomic macOS Stealer (AMOS) developed by the cybercriminal group COOKIE SPIDER. Operating as malware-as-a-service, COOKIE SPIDER rents this information stealer to cybercriminals who deploy it to harvest sensitive information and cryptocurrency assets from victims.

UnitedHealth was established as CharterMed Incorporated in 1974 in Minnesota by Richard Burke and a team of healthcare professionals. It was reorganized and renamed UnitedHealth in 1998, indicating diversity from typical insurance services to incorporate more healthcare options. At present, UnitedHealth operates as the Healthcare branch, which offers health insurance coverage, and Optum, which affords tech-centered health services.

In the first blog of the KMM series, we introduced Kotlin Multiplatform Mobile (KMM) and its cross-platform advantages. In this part, we go deeper into mobile security in KMM apps, focusing on: But, before that, let’s quickly recap what KMM is. Kotlin Multiplatform Mobile (KMM) enables developers to write shared code for both Android and iOS, while still maintaining platform-specific implementations where necessary. For the sake of simplicity, we have divided this blog into two sections.