whitepaper

  • Crowdstrike Global Threat Report 2025

    Crowdstrike Global Threat Report 2025

    CrowdStrike’s 2025 Global Threat Report details the evolving cybersecurity landscape, emphasizing the increasing sophistication and business-like approach of cyber adversaries. The report underscores the rise of “enterprising adversaries” leveraging genAI for social engineering and malicious activities. TLDR:

    read more

  • PRC-linked Cyber Espionage: Protecting Your Mobile Communications

    The Cybersecurity and Infrastructure Security Agency (CISA) recently released guidance on best practices for securing mobile communications. This comes in response to identified cyber espionage activity by actors linked to the People’s Republic of China (PRC) government. These actors are targeting commercial telecommunications infrastructure to steal call records and compromise communications of high-profile individuals, such

    read more

  • Navigating the National Cyber Incident Response Plan: A Summary

    The National Cyber Incident Response Plan (NCIRP) is a crucial document outlining the U.S. government’s strategy for addressing cyber incidents. It serves as a blueprint for collaboration between federal agencies, private entities, and state, local, tribal, and territorial (SLTT) governments in the face of increasingly sophisticated cyber threats. If you’d rather, here is a AI

    read more

  • Key Takeaways From the FIRPA Practitioner Insights Report

    This blog post summarizes the key takeaways from the Five Eyes Insider Risk Practitioner Alliance (FIRPA) Practitioner Insights Report. The report is based on workshops with over 100 insider risk practitioners from Australia, the USA, and Canada. AI Generated Podcast: Stakeholder Engagement and Collaboration Security Culture and Leadership Education and Training Tools, Techniques, and Indicators

    read more

  • 2024 Phishing by Industry Benchmarking Report Summary

    2024 Phishing by Industry Benchmarking Report Summary

    This post will summarize the key findings from KnowBe4’s 2024 Phishing by Industry Benchmarking Report. This report highlights the continuing severity of phishing attacks and underscores the importance of robust security awareness training as a critical defense strategy. AI generated podcast, if you prefer to listen to this content: The report uses a metric known

    read more

  • TLDR From the CyberArk 2024 Identity Security Threat Landscape Report

    As a cybersecurity expert with 20 years of experience, I’ve witnessed the evolution of cyber threats, and the CyberArk 2024 Identity Security Threat Landscape Report highlights some critical trends that all cybersecurity enthusiasts should be aware of: The CyberArk 2024 Identity Security Threat Landscape Report offers valuable insights into the current and future state of

    read more

  • 2024 “Insider Threat Guide” Takeaways for Cybersecurity Professionals

    The National Insider Threat Task Force (NITTF) has released its 2024 “Insider Threat Guide,” a valuable resource for US government departments and agencies. Here’s a breakdown of key takeaways for cybersecurity professionals: AI generated podcast: Insider Threats Remain a Critical Concern Programmatic Minimum Standards are Essential Collaboration and Information Sharing are Crucial Employee Training and

    read more

  • Security Awareness Training: Snoozefest or Superhero Training?

    Security Awareness Training: Snoozefest or Superhero Training?

    Today we will review a new study that was recently released: Understanding the Efficacy of Phishing Training in Practice. Here is an ai generated podcast summary of the paper, but also below is a great overview. Mandatory security awareness training sounds about as fun as watching paint dry! It’s no surprise that employees aren’t exactly

    read more

  • Cloudy With a Chance of Hackers: Key Takeaways from the IBM X-Force Cloud Threat Landscape Report 2024

    Hold onto your hard drives, folks, because the cloud, as convenient as it is, isn’t exactly a hacker-free haven. The IBM X-Force Cloud Threat Landscape Report 2024 is here to remind us that while cloud computing might be soaring to new heights (think USD 600 billion!), so are the threats targeting it. Let’s break down

    read more

  • Google’s Cybersecurity Forecast 2025: Key Takeaways

    Google’s Cybersecurity Forecast 2025: Key Takeaways

    Google’s Cybersecurity Forecast 2025: Key Takeaways The Google Cloud Cybersecurity Forecast 2025 report offers insights into the evolving cybersecurity landscape and predicts key trends for the upcoming year. The report, drawing on the expertise of Google Cloud security leaders and researchers, highlights the growing role of artificial intelligence (AI), escalating cybercrime, and geopolitical influences on

    read more