Chris Reffkin, Chief Security & Risk Officer at Fortra, authored an article for Manufacturing.net that outlines how technology and security leaders should react in the critical early moments of a ransomware attack. He explains why containment must remain the top priority, how leaders should communicate clearly and quickly with executives, and how to assess the impact with support from legal and incident response teams.

Rohit Dhamankar, Fortra’s vice president of product strategy, sits down with CyberRisk TV at Black Hat 2025 to examine how offensive security is shifting from periodic pen tests to continuous, AI-assisted approaches that provide measurable proof of defensive effectiveness.

Fortra’s Amy Zola joined AWS Security LIVE! to talk about the human side of offensive security.

Dark Reading reports that with PCI DSS 4.0.1 now in effect, merchants can no longer assume third-party service providers carry the full burden of compliance.

Healthcare organizations are under mounting cyber threats, but regulatory frameworks like Abu Dhabi’s Healthcare Information and Cyber Security (ADHICS) Strategy are paving the way for stronger protections.

Compliance frameworks like ISO 27001 and SOC 2 provide structured guidelines, but they don’t automatically equate to strong cybersecurity.

Josh Taylor explores Adversarial Cognitive Engineering (ACE) in his latest piece for The CTO Club.

AI is evolving at a pace that policymakers struggle to match, raising concerns about its security implications.

​​Fortra's security research team has identified a novel exploit chain, tracked as CVE-2024-6769, which allows attackers to bypass Windows User Access Control (UAC) and escalate privileges to gain full system control.

​​Fortra researchers are urging organizations to be vigilant about potential risks associated with a vulnerability affecting Microsoft systems.​

​​CSO covered Fortra’s disclosure of a Microsoft privilege escalation issue that allows attackers to bypass UAC prompts. Fortra's Tyler Reguly explained that this bypass removes key security checks, posing a risk. Microsoft disagrees, calling it a convenience issue, but the debate continues.​

Cyber threats are becoming more sophisticated and frequent, yet many organizations still face challenges due to limited resources. In ITSecurityWire, Fortra's Chris Reffkin highlights prioritizing remediation, closing the skills gap, and ongoing improvement.

Fortra CISO Chris Reffkin spoke with IT Nerd and shared valuable insights from Fortra’s 2024 Penetration Testing Report.

How will the GDPR affect businesses handling personal information? Donnie MacColl spoke with TechTarget News about the seven principles of GDPR.

Ethical hacking has become one of the most powerful tools for preventing cyber threats. Kyle Gaertner spoke with The AI Journal about the tool's importance.