For organizations in highly regulated industries, like financial services, shadow IT poses a double threat, with us exposing them to compliance risk as well as breaches and cybersecurity risk.

Enabling WAFs to identify new zero-day threats more quickly is a smart move. But not smart enough. WAFs are simply not up to the task of reliably protecting web apps from threats.

Two new techniques for creating and publishing fake sign-in forms are making it easier for users to fall for phishing attacks, demonstrating (yet again) that enterprises must protect their users from phishing, instead of depending on users to protect them.

Freelancers and 3rd party contractors often need access to your networks, software and cloud apps. But contractors' unmanaged devices pose a serious risk to your organization, since they can easily spread malware to your network or be used to expose sensitive data.

RBI stops steganographic attacks, in which malware is concealed within the code of images or other presumably innocent content, in ways that AV/firewalls cannot detect.

Savvy cybercriminals do careful reconnaissance to gather info about vulnerabilities in a target’s systems before launching a full-on attack. Blocking recon vastly reduces the odds that an attack will succeed.

Instant Messengers like WhatsApp are widely used to communicate with business associates as well as friends and family. But IM web clients can pose a real danger to network security.

Using open redirects takes phishing email deceptiveness – and therefore effectiveness -- up a notch by displaying a legit-seeming URL to users who are prudent enough to hover over a link.

According to CEOs of major US banks, cybersecurity "may very well be the biggest threat to the US financial system." That’s why almost 90% of financial institutions are making improving cybersecurity risk management capabilities a top priority for the next two years.