Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Blog

All About RAG: What It Is and How to Keep It Secure

AI is growing in power and scope and many organizations have moved on from “simply” training models. In this blog, we will cover a common system of LLM use called Retrieval-Augmented Generation (RAG). RAG adds some extra steps to typical use of a large language model (LLM) so that instead of working off just the prompt and its training data, the LLM has additional, usually more up-to-date, data “fresh in mind”.

How to Overcome the Security Questionnaire Burden

If you’re on the frontlines of your organization’s cybersecurity department, you’ve likely found yourself burdened by security questionnaires. Whether you’re in charge of evaluating vendor responses or completing questionnaires yourself, it’s no secret these requests can be time-consuming for everyone involved. Well, what if this didn’t have to be the case?

What are Source Code Leaks? Detect & Prevent Source Code Exfiltration

Source code leaks refer to the process in which the source codes of proprietary applications are made available to unauthorized persons or the public domain for various reasons. This might happen in several scenarios, including when information is leaked through public repositories, hacking attacks, internal threats, or when it is posted in version control systems.

Cloud Alphabet Soup Examining CSPM, DSPM, KSPM, and CNAPP

Cloud native applications are dominating the tech landscape for modern enterprises. A garden-variety cloud native application consists of microservices deployed in containers orchestrated with Kubernetes, and these microservices interact together via APIs. Netflix, Salesforce, and Atlassian products like Jira and Confluence are all common examples of cloud native applications.

Building a unified identity management strategy using AD, Entra ID and Microsoft 365

We all know identity management and security are critical to hardening cybersecurity ecosystems. We also know that we can make it happen using the many features and functions across Active Directory (AD), Entra ID and Microsoft 365. The challenge is making sure these are deployed in a way that allows them to work seamlessly together, staying aligned even in environments where there’s fluidity and decentralization.

Protect Your Weakest Link: New Account Linking Capabilities Use AI to Thwart Identity-Based Attacks

As networks become increasingly distributed, user identities are becoming a top adversary target. CrowdStrike’s 2024 Threat Hunting Report and 2024 Global Threat Report state 5 of the top 10 MITRE tactics we observed in 2023 were identity-based, and the CrowdStrike 2023 Threat Hunting Report noted a 583% year-over-year increase in Kerberoasting attacks. These findings illustrate how modern adversaries aren’t breaking in — they’re logging in.

NIS2 is Here: Frequent Penetration Testing is the New Standard

With sophisticated cyberattacks getting more frequent every day, and regulations around data privacy tightening, businesses across Europe are facing a big challenge: How do you keep your network safe, stay ahead of threats and make sure you're compliant with the latest regulations? Enter the NIS2 Directive — a step up for cybersecurity that demands organizations be ready to face any cyber storm that comes their way.

Top 9 Dynamic Code Analysis Tools

Ever wonder what lurks in your code that static analysis can’t find? That’s where Dynamic Code Analysis (DCA) comes into play. Unlike static analysis, which inspects code without running it, DCA examines software during execution. For developers, DCA is invaluable because it provides real-time insights into how your code operates under actual conditions.

From Detection to Remediation: Securing Cloud Data with Lookout

Cloud storage in SaaS apps has become an indispensable tool for organizations of all sizes, with as much as 60% of corporate data now residing in the cloud. However, the convenience of cloud storage comes with the risk of data leaks, which can have devastating consequences. While cloud storage allows for easy data sharing and collaboration, it also opens up potential vulnerabilities that must be addressed.

How Parking Technology Enhances Cybersecurity

Parking lots are a staple of our daily routines - whether we're shopping, working, or visiting. This is where we spend considerable amounts of time surrounded by cars and people. Given the high foot traffic and density of vehicles, enhancing the safety and security of these spaces is crucial for businesses looking to create a secure and enjoyable experience for their customers. Here, technology plays a pivotal role in supporting this endeavor, offering solutions that enhance safety, privacy, and cybersecurity.