As we enter the age of AI, we’ve seen the first wave of AI adoption in software development in the form of coding assistants. Now, we’re seeing the next phase of adoption take place, with organizations leveraging increasingly widely available LLMs to build AI-enabled software. Naturally, as the adoption of LLM platforms like OpenAI and Gemini grows, so does the security risk associated with using them.

Code signing has successfully established itself in the backdrop of the rapidly transforming digital space as a critical security mechanism for software distribution. Through the digital signing of source code, developers and publishers offer users confidence about their software’s validity, founder, and quality. Though cyber threats had been positively enhanced, the demands for a high level of compliance and strict code signing requirements had become more necessary.

In late February of this year, Change Healthcare experienced a massive ransomware attack. The company, a subsidiary of United Healthcare, is the largest clearinghouse for insurance billing and payments in the U.S, processing 15 billion medical claims each year.

A few weeks ago, my wife asked me why stopping threat actors from impacting our lives is so difficult. In this digital age, the necessity to connect online brings inherent exposure to vulnerabilities. The challenge for you as a security leader lies in reducing the sense of vulnerability by building trust. You need to protect your organization and reassure employees so they can perform their jobs without fear.

Snyk is an excellent tool for spotting project vulnerabilities, including hardcoded secrets. In this blog, we'll show how you can use Snyk to locate hardcoded secrets and credentials and then refactor our code to use Doppler to store those secrets instead. We'll use the open source Snyk goof project as a reference Node.js boilerplate application, so feel free to follow along with us.

Identity and access management (IAM) plays a crucial role in security by helping to ensure that each user in the organization has access to only the data, systems, and other resources they need to do their job. This article explains the critical functionality of IAM solutions and how an IAM assessment can help you uncover essential risks to security, compliance, and business continuity. Then, it offers IAM best practices and guidance on choosing the right IAM solutions for your organization.

It is well-known that WatchGuard is 100% dedicated to our channel partners, which means that every deal made, every product sold, and every new customer gained is a win for us both. The relationships we develop with our partners are truly unique and hyper-focused on partner enablement and success. As a result of the success we’ve achieved with our partners, we are thrilled to share that WatchGuard has earned a multitude of channel industry award honors and recognitions in the first half of 2024.

Workplaces have evolved. While hybrid and remote work existed before COVID-19, these working arrangements became even more prevalent during and after the pandemic. Today, workplaces offer the flexibility for employees to work and access company resources from anywhere worldwide, with the Server Message Block (SMB) protocol at the center of this.

In the realm of industry and infrastructure, Operational Technology (OT) refers to hardware and software systems designed to monitor and control physical devices. OT is a cornerstone in managing and automating essential services in a variety of sectors including utilities, manufacturing, and transportation. Key elements of OT include Industrial Control Systems (ICS) and Industrial Automation, which support critical infrastructure operations.

Have you ever wanted to fine-tune the configuration of your Bot Management? With self-service rules, you get finer control over bot scoring and customize it according to user behavior on your applications. In this blog, we will cover three use cases that will explain how to use this feature.