759 articles · page 3 of 16
Security Boulevard, Wednesday, April 29th, 2026
Security leaders must focus on foundational controls and ownership clarity rather than chasing emerging threats in an increasingly complex environment.
more →
Security Boulevard, Tuesday, April 28th, 2026
Anthropic's Claude Mythos can autonomously find and weaponize software vulnerabilities, raising major cybersecurity implications.
more → Security Boulevard, Monday, April 27th, 2026
DDoS testing validates whether deployed protection tools actually work under real-world attack conditions, addressing configuration and coverage gaps.
more → Security Boulevard, Monday, April 27th, 2026
Most startups fail AI security questionnaires; a 4-layer Trust Stack framework provides the controls needed to pass enterprise reviews.
more → Security Boulevard, Sunday, April 26th, 2026
A CISO discusses intelligent risk management, balancing speed with security in an AI-driven world, and building resilient security programs.
more → Security Boulevard, Saturday, April 25th, 2026
Identity threats in 2026 have evolved beyond credential stuffing to include AI agents, deepfake voices, and quantum-era data harvesting.
more → Security Boulevard, Saturday, April 25th, 2026
Real-world passkey deployment insights from major companies reveal that triggered enrollment, mobile-first design, and clear UX drive adoption success.
more → Security Boulevard, Saturday, April 25th, 2026
An analysis of cumulative costs of password-based authentication systems and ROI case for passwordless alternatives.
more → Security Boulevard, Friday, April 24th, 2026
DNS is often overlooked but critical to cybersecurity, yet organizations treat it as a utility rather than a core security asset.
more → Security Boulevard, Friday, April 24th, 2026
AI-driven cybersecurity uses machine learning and behavioral analytics to enable real-time threat detection and automated response in modern enterprises.
more → Security Boulevard, Thursday, April 23rd, 2026
CISOs must translate complex cyber risk data into boardroom language to effectively communicate security performance.
more → Security Boulevard, Thursday, April 23rd, 2026
Organizations deploying AI assistants to employees must establish proper security infrastructure with distinct agent identity and audit trails.
more → Security Boulevard, Thursday, April 23rd, 2026
Copperhelm has launched an AI-powered autonomous cloud security platform that aggregates data and automatically remediates threats in real-time.
more → Security Boulevard, Thursday, April 23rd, 2026
AI SOCs combine artificial intelligence, automation, and orchestration to reduce manual work in security operations.
more → Security Boulevard, Thursday, April 23rd, 2026
B2B SaaS companies must support 15 specific identity providers to close enterprise deals, with Okta, Microsoft Entra ID, Google Workspace, Ping Identity, and OneLogin covering 80% of Fortune 2000 requirements.
more → Security Boulevard, Wednesday, April 22nd, 2026
Business logic flaws bypass automated security scanners because they exploit intended functionality in unintended ways, requiring human expertise to detect.
more → Security Boulevard, Wednesday, April 22nd, 2026
Recent supply chain attacks targeting open-source tools like Trivy and Axios highlight the need for short-lived credentials, least-privilege access, and environment separation.
more → Security Boulevard, Wednesday, April 22nd, 2026
A structured framework for evaluating whether enterprise networks can support AI workloads across performance, security, resilience, and scalability.
more → Security Boulevard, Wednesday, April 22nd, 2026
A guide to building MCP servers that connect applications with LLMs, including security best practices.
more → Security Boulevard, Tuesday, April 21st, 2026
ShinyHunters exploit compromised credentials and identity tokens to steal data from SaaS platforms, highlighting the shift from infrastructure to identity-based attacks.
more → Security Boulevard, Tuesday, April 21st, 2026
Phone-based authentication is evolving beyond SMS to include voice OTP, IVR, and AI voice agents for secure identity verification.
more → Security Boulevard, Tuesday, April 21st, 2026
Essential capabilities for enterprise SSO solutions in B2B SaaS, covering authentication, provisioning, and compliance requirements.
more → Security Boulevard, Monday, April 20th, 2026
Dark web monitoring is insufficient; organizations need Identity Risk Intelligence to contextually understand and act on identity exposure.
more → Security Boulevard, Monday, April 20th, 2026
CMMC is a mandatory DoD certification standard replacing self-attestation with formal audits for defense contractors handling sensitive information.
more → Security Boulevard, Monday, April 20th, 2026
Guide covering six essential security practices for remote workers including device separation, strong passwords, and security software.
more → Security Boulevard, Monday, April 20th, 2026
Anthropic's Claude Mythos Preview, capable of autonomously discovering and chaining vulnerabilities, has been restricted from public release due to security concerns.
more → Security Boulevard, Monday, April 20th, 2026
Continuous compliance keeps audit readiness as an ongoing state instead of an annual emergency scramble.
more → Security Boulevard, Saturday, April 18th, 2026
Browser extensions seem harmless-just tools to block ads, clean up formatting, summarize, or translate web pages. But in reality, they are cloud-connected mini applications with access to everything users do in SaaS. Most people don't think twice about installing a browser extension. In fact, nearly every enterprise user runs at least one, and the vast majority have ten or more installed across their devices.
more → Security Boulevard, Friday, April 17th, 2026
For years, organizations have approached cybersecurity with a simple mindset-add more tools to strengthen defenses. Firewalls, endpoint solutions, intrusion detection systems, and monitoring platforms have all been layered together to create what appears to be a comprehensive security posture.
more → Security Boulevard, Friday, April 17th, 2026
Imagine a retail company whose checkout service needs to ask its inventory service whether an item is in stock. How does the inventory service know the request is genuinely coming from checkout, and not from something pretending to be checkout? The traditional answers are simple: an IP allowlist, a shared API key, a certificate issued manually. Each one works reasonably well in a stable environment where services sit on known machines and rarely change.
more → Security Boulevard, Friday, April 17th, 2026
With Anthropic's Mythos Preview announcement, the race to patch all vulnerabilities is over. As defenders, we must move on.
more → Security Boulevard, Thursday, April 16th, 2026
Traditional application security focuses on finding vulnerabilities before code ships. However, pre-production scanning identifies theoretical risks while production reveals what is actually reachable, exploitable, and under active attack. Production-first security leverages runtime intelligence to prioritize remediation, giving teams visibility into real-world attack patterns rather than hypothetical weaknesses.
more → Security Boulevard, Thursday, April 16th, 2026
You've spent countless hours creating content, engaging with comments, and building a genuine presence on social media. Your follower count is climbing, your community is thriving, and the momentum feels real.
more → Security Boulevard, Thursday, April 16th, 2026
I've spent the past two years talking to AppSec engineers about their DAST tools experience. Some conversations lasted five minutes. Others turned into hour-long sessions on the podcast or elsewhere about false positives and broken authentication flows.
more → Security Boulevard, Thursday, April 16th, 2026
In late 2019, something unusual happened on Robinhood. Users discovered what the internet quickly labeled the 'infinite money glitch'. It wasn't a zero-day exploit. There was no malware involved. No one bypassed authentication or cracked encryption.
more → Security Boulevard, Thursday, April 16th, 2026
AI governance has quickly become one of the most crowded and misunderstood categories in security. For a deeper breakdown of how the category is evolving, see our AI governance guide.
more → Security Boulevard, Thursday, April 16th, 2026
AI risk is already inside your SaaS environment. It enters through user behavior, OAuth connections, browser sessions, and non-human identities interacting with AI tools. The model is only one part of the equation. The real risk comes from how AI is accessed, what it connects to, and what it can reach.
more → Security Boulevard, Wednesday, April 15th, 2026
Passkey security sidesteps many of the end-user and cybersecurity issues that plague traditional passwords. Learn how to successfully deploy passkeys in your organization.
more →
Security Boulevard, Wednesday, April 15th, 2026
The recent leak and confirmation of Anthropic Claude Mythos sent a ripple of anxiety through the cybersecurity community. In my recent conversations with security practitioners and leaders, there is a real concern that we are facing a brand-new, unsolvable category of AI risk.
more → Security Boulevard, Wednesday, April 15th, 2026
Most companies think authentication is simple. They assume that adding a login system is enough. They assume that one security layer protects their users. And they assume that granting access eliminates the risk.
more → Security Boulevard, Tuesday, April 14th, 2026
For the last few weeks, the cybersecurity world has been arguing about what Anthropic's Mythos and projects like Glasswing actually mean. Some people hear the alarms and think we are watching the beginning of the end. Others think we are finally seeing the breakthrough the industry has been chasing for decades.
more → Security Boulevard, Monday, April 13th, 2026
Have you ever wondered how the management of non-human identities (NHIs) impacts the efficacy of Security Operations Centers (SOC)? With cybersecurity professionals strive to maintain a robust defense, effectively managing NHIs becomes a central concern. Let's explore how this concept can revolutionize SOC operations by ensuring holistic security.
more → Security Boulevard, Monday, April 13th, 2026
For years, organizations have relied on monitoring tools to detect compromised credentials and exposed data. But as identity has become the primary attack surface, those tools are no longer enough.
more → Security Boulevard, Monday, April 13th, 2026
The dark web is often misunderstood, but it plays an important role in both privacy technology and cybercrime activity.
more → Security Boulevard, Monday, April 13th, 2026
A survey of 614 cybersecurity and IT leaders finds 89% of the applications deployed are not centrally managed via a multifactor authentication (MFA) platform.
more → Security Boulevard, Monday, April 13th, 2026
Every growing business has at least one lingering privilege management issue. It's not because your team is lazy. It's because organizations grow, restructure and hire far faster than manual access processes can keep up.
more → Security Boulevard, Friday, April 10th, 2026
Authentication is not an afterthought. With traditional password-based systems failing to keep pace, businesses need to adopt a strategic approach to enhance security and the user experience. Cyberattacks grew by 30% year-over-year in the second quarter of 2024, while the average cost of a data breach reached a record high of $4.45 million.
more → Security Boulevard, Thursday, April 9th, 2026
A Strategic Approach to Modern Security Operations -- The Growing Complexity of Security Decisions
more → Security Boulevard, Thursday, April 9th, 2026
The cybersecurity landscape of 2026 is defined by a staggering paradox: while organizations are investing more than ever in defense, the 'readiness gap' continues to widen.
more → Security Boulevard, Thursday, April 9th, 2026
Anthropic's new AI model, Mythos, is being framed as a 'cybersecurity reckoning.' And yes, it's probably impressive. (We'll have to wait and see once it's broadly available.) But it's also missing the point.
more →