Cyber Defense Magazine

CIEM, practically: How to Make Least Privilege Stick in AWS, Azure, and GCP

In most cloud programs, permissions grow like weeds. A helper role becomes “temporary admin,” a service account gets a wildcard so a deployment won’t slip, and six months later nobody wants to touch ...
Cyber Defense Magazine

The CISO’s Next Step in Cyber Defense: When AI Becomes the Insider Threat

CISOs and security professionals have been getting ready for insider threats for years. These include people like dissatisfied employees, sloppy contractors, or third parties who have too much power.
Cyber Defense Magazine

Securing Satellite Networks Connecting into The Enterprise

Modern enterprises rely on reliable, high-performance connected technologies. In large organizations with distributed operations and facilities, that connectivity can be far from equal. Connectivity ...
Cyber Defense Magazine

Shadow APIs: The Silent Backdoor Undermining Application Security

APIs have become the connective tissue of modern applications. From mobile apps to cloud-native microservices, APIs now handle the majority of data exchange across enterprise environments. The ...
Cyber Defense Magazine

Lessons from the SEC’s Case Against SolarWinds

A well-known idiom, “the best defense is a good offense” is an appropriate take-away from SEC v. SolarWinds Corp., et al., Case No. 1:23-cv-09518, Dkt. 125 (S.D.N.Y. July 18, 2024) (hereinafter ...