State sponsored threat actors have persistent access across critical infrastructure companies. Why is that so?

Most attacks against organizations with industrial control systems (ICS) or operational technology (OT) are still the usual ransomware...

How will the NIS2 implementation look in Croatia, a typical regional EU member? Lots of stakeholders and coordination ahead.

Driven by an unlikely actor, the U.S. Securities and Exchange Commission, quantitative cyber risk assessment and analysis is evolving.

Endpoint detection and response (EDR) technology has certainly improved the security posture of many organizations: by scanning for...

Automated scripts and tasks are expanding the attack surface: they often include privileged credentials. It's important to monitor them.