Category: Security Boulevard

Sonatype Security Research has identified a potential compromise of a trusted npm maintainer account that has now published two malicious npm packages — sbx-mask and touch-adv — designed to exfiltrate secrets from victims’ computers. The post Sonatype Discovers Two Malicious npm…

Read more →

Are Businesses Truly Prepared for the Challenges Presented by Machine Identities? Cybersecurity is constantly evolving, and one of the emerging complexities is the management of Non-Human Identities (NHIs). These machine identities, require astute management to ensure robust security frameworks and…

Read more →

Are Organizations Truly Harnessing Non-Human Identity Lifecycle Management? The digital frontier is expanding, yet many organizations are still grappling with securing machine identities or Non-Human Identities (NHIs). How crucial is proactive NHI lifecycle management in maintaining robust cybersecurity? Let’s delve…

Read more →

The FBI has seized two websites, including the leak site, of Handala, a highly active pro-Iranian threat group responsible for the high-profile wiping attack on U.S.-based medical tech company Stryker in which it erased the data from about 80,000 corporate…

Read more →

Many teams start by running Kubernetes with a few enthusiastic engineers and some shared clusters. As those clusters become critical to your operations, you eventually have to decide when you actually need a dedicated Kubernetes platform team instead of ad‑hoc…

Read more →

Lawmakers pressed the FBI this week after Director Kash Patel confirmed the agency is purchasing information that can track Americans’ movements, reopening a contentious debate over privacy and the limits of government surveillance. The acknowledgment came during a Senate Intelligence…

Read more →

AUSTIN, Texas, Mar. 19, 2026, CyberNewswire—SpyCloud, the leader in identity threat protection, today released its annual 2026 Identity Exposure Report, one of the most comprehensive analyses of stolen credentials and identity exposure data circulating in the … (more…) The post…

Read more →

If you run a Windows environment, you already know how critical PowerShell is. It’s the backbone of modern administration, used for automation, configuration, and day-to-day operations at scale. And it doesn’t stop at Windows. If you manage Azure, Microsoft 365, Entra ID, or Exchange Online,…

Read more →

Mar 19, 2026 – Lina Romero – The speed of AI adoption is unlike any tech shift we’ve seen before. While the transition to SaaS and BYOD took years, AI has integrated into the enterprise in months, often moving faster…

Read more →

I recently joined Tim Peacock and Anton Chuvakin on the Google Cloud Security Podcast to talk about SIEM, AI SOC, pricing, federated architecture, detection engineering, and why network telemetry is quietly becoming important again. The short version is simple: SIEM…

Read more →

Author, Creator & Presenter: James Pope Our thanks to BSidesCache for publishing their Creators, Authors and Presenter’s outstanding BSidesCache 2025 content on the Organizations’ YouTube Channel. Permalink The post BSidesCache 2025 – Oh, The Places Your Packets Will Go! appeared…

Read more →

60% of phishing breaches now bypass traditional MFA. Learn how AI-powered adaptive authentication and behavioral biometrics create continuous security without adding friction, with real deployment data and implementation roadmap. The post AI-Powered Adaptive Authentication and Behavioral Biometrics: The Enterprise Guide…

Read more →

President Trump’s Cyber Strategy for America makes a few things very clear: the United States must detect adversaries earlier, secure critical infrastructure, strengthen technology supply chains, and ensure that systems can recover rapidly after cyber incidents.  These goals appear throughout…

Read more →

The post <b>What Is Data Mapping and Why It Matters for GDPR</b> appeared first on Sovy. The post What Is Data Mapping and Why It Matters for GDPR appeared first on Security Boulevard. This article has been indexed from Security…

Read more →

By 2026, AI agent sprawl has become a critical SaaS security risk. With 80% of organizations reporting unintended agent actions, the “visibility gap” is the new frontier for cyber threats. Learn how to govern autonomous agents using comprehensive inventories, permission…

Read more →

With 52% of U.S. employers adopting hybrid models, traditional perimeters are failing. Discover how to build a robust hybrid work security architecture using Secure SD-WAN, SASE, Zero Trust Network Access (ZTNA), and automated threat detection (SIEM/SOAR) to protect a dispersed…

Read more →

Open-source dependencies introduce hidden risks, from transitive vulnerabilities to supply chain attacks. Learn how to reduce exposure. The post The Hidden Security Risks in Open-Source Dependencies Nobody Talks About appeared first on Security Boulevard. This article has been indexed from…

Read more →

In the hybrid work era, 80% of breaches stem from compromised credentials. Explore why identity-centric security and Zero Trust are now the “only perimeter that matters,” and learn practical strategies for IAM, MFA, and automated governance to secure your modern…

Read more →

While companies use “perp walks” for terminated employees, 48% of manufacturers fail to revoke digital access within 24 hours. Explore the growing risk of dormant accounts, the 74% automation gap in provisioning, and why experts like Darren Guccione and James…

Read more →

Key Takeaways CVSS v3.1 base score of 7.2 (High) according to NVD analysis Affects WatchGuard Fireware OS versions 11.9-11.12.4_Update1, 12.0-12.11.7, and 2025.1-2026.1.1 Authenticated privileged administrators can execute arbitrary code with root permissions via management interface NVD published March 3, 2026;…

Read more →