The world of cyber threats is rapidly evolving, and while we can see these changes more generally, it’s always crucial to understand them concretely. As the 2025 CrowdStrike Global Threat Report shows us, the landscape of our industry is changing. 

We’re digging into this report to discuss a challenging trend: the move of hackers foregoing malware and traditional attacks to leverage issues with identity management.

This change presents a fundamental rethinking of how modern cybercrime operates and how that impacts compliance.

Read More

The increasing adoption of AI by businesses introduces security risks that current cybersecurity frameworks are not prepared to address. A particularly complex emerging threat is prompt injection attacks. These attacks manipulate the integrity of large language models and other AI systems, potentially compromising security protocols and legal compliance.

Organizations adopting AI must have a plan in place to address this new threat, which involves understanding how attackers can gain access to AI models and private data to undermine intelligent applications.

Read More

The ink has barely dried on the CMMC final rule, and already the defense contracting community is buzzing with speculation about what comes next. Just when contractors thought they had a moment to catch their breath after years of regulatory limbo, whispers of CMMC 3.0 have begun circulating through the industry.

But is this just noise, or is there something more substantial happening behind the scenes? As it turns out, recent DoD actions suggest that conversations about the next iteration of CMMC might be closer than we thought.

Read More