Blog

Blog

What Actually Is a Zero-Day

By Tyler Reguly on Thu, 06/18/2026

If everything is a zero-day, nothing is. Learn why the term is being misused and why it matters for vulnerability reporting and real-world security risks.

Blog

Getting to Know Myriam Abiaad, BISO at Sky

By Dan Raywood on Wed, 06/17/2026

We recently sat down with Myriam Abiaad, BISO at Sky, to explore her journey from “cyber born and bred” technologist to leading BISO, and to understand how this evolving role is reshaping the relationship between security and the business. We discussed subjects including the BISO as a bridge between cyber and the business, why chasing zero risk can undermine real security outcomes, and how...

Blog

Phishing Campaign Targets Banks with Fileless Phantom Stealer Malware

By Aranzazu Casillas on Tue, 06/16/2026

Executive SummaryFortra Intelligence and Research Experts (FIRE) have identified an active phishing campaign targeting high-capital organizations, particularly those operating within the banking sector. The campaign uses evasive techniques to distribute Phantom Stealer, a commercially available Malware-as-a-Service (MaaS) infostealer used to steal credentials, financial data, and sensitive...

Blog

6 AI Data Security Platforms for Securing Enterprise AI in 2026

By Heather Wiederhoeft on Mon, 06/15/2026

Explore six AI data security platforms and learn how to protect enterprise AI with DLP, DSPM, governance, and full data visibility at scale.

Blog

Silent Ransom Group: What You Need to Know

By Graham Cluley on Thu, 06/11/2026

Examining the Silent Ransom Group, a financially motivated cybercrime gang that has been stealing data from companies and demanding payment.

Blog

From Floppy Disks to AI: Rethinking Ransomware Defense for a New Era

By Cary Hudgins on Wed, 06/10/2026

Build a stronger ransomware defense strategy. Discover how AI-driven attacks work and the critical steps to protect your organization now.

Blog

June 2026 Patch Tuesday Analysis

By Tyler Reguly on Tue, 06/09/2026

A record-breaking Patch Tuesday brings 568 CVEs. Tyler Reguly breaks down the most critical vulnerabilities, including a high-risk HTTP.sys RCE, and what security teams need to watch for potential exploitation.

Blog

DSPM for AI: A Practical Look at AI Data Security

By Jill Johnson on Fri, 06/05/2026

By now, you've probably heard the airplane analogy when it comes to AI and cybersecurity. If not, cybersecurity for AI has been likened to a plane being assembled while airborne. This is a fitting visual as many of us are trying to keep up with something that is already taken off. With this same analogy, you can start to think of data as the plane fuel. No one really knows what's in the tank at...

Blog

Meta's Own AI Chatbot to Blame for Instagram Accounts Being Stolen in Seconds

By Graham Cluley on Thu, 06/04/2026

Hackers have been hijacking Instagram accounts at scale by exploiting Meta's AI support chatbot. And, as if that weren't bad enough, the technique required no technical skill whatsoever.When we think about accounts being taken over, we often imagine something of at least some level of sophistication: a credential stuffing attack, a phishing campaign, a SIM-swap, or call center workers being bribed...

Blog

BEC Global Insights Report: May 2026

By JT Newby on Wed, 06/03/2026

Discover key May 2026 BEC threat insights from Fortra Intelligence & Research Experts (FIRE), including a 16% increase in overall attack volume from the prior month.

Blog

BEC: Why This Basic Threat Is Difficult to Detect

By Cybersecurity Experts at Fortra on Tue, 06/02/2026

Business email compromise is a form of phishing that involves social engineering to masquerade as executives for personal gain.

Blog

RatPressto Phish Kit

By Aranzazu Casillas on Thu, 05/28/2026

Learn how the RatPressto phishing kit exploits compromised WordPress sites to deploy ScreenConnect RATs through Adobe-themed social engineering attacks.

Blog

CSPM vs DSMP (or Both): How to Think About Cloud Security

By Jill Johnson on Tue, 05/26/2026

As organizations continue moving workloads, applications, and sensitive data into the cloud, security teams face a growing challenge: protecting both the infrastructure and the data that lives within it.That’s where cloud security posture management (CSPM) and data security posture management (DSPM) come in. While the two technologies are closely related, they solve different problems. CSPM...

Blog

Inside The Art of Security Podcast: Cybersecurity in the Age of Trust, Risk, and Complexity

By Heather Wiederhoeft on Fri, 05/22/2026

Explore Fortra’s The Art of Security podcast and its take on cyber hygiene, vulnerability management, supply chain attacks, and modern cybersecurity risk.

Blog

Defenders Fall Behind, as AI Rewrites the Rules of a Data Breach

By Graham Cluley on Thu, 05/21/2026

For almost 20 years, stolen credentials have been the most common route for attackers into organizations, according to the Verizon Data Breach Investigations Report (DBIR). But that's no longer the case.According to the newly published 2026 report, exploitation of vulnerabilities has overtaken credential theft as the leading vector for hackers to gain their initial access — accounting for 31% of...

Blog

Fortra Patch Priority Index for April 2026

By Lane Thames on Tue, 05/19/2026

Get the latest Patch Priority Index from Fortra which highlights critical Microsoft and Google vulnerabilities, covering Edge, Office, Windows, .NET, and key server components.

Blog

Agentic AI's Affordability Gap Is a Security Problem

By Josh Taylor on Mon, 05/18/2026

The first agentic SOC products entering trial or are in early access phases are already metering investigations by token consumption and rate-limiting how many an organization can run per hour. Enterprise buyers can absorb this. Mid-market companies, public sector agencies, and critical infrastructure operators running lean security programs cannot, and they face the same threat landscape.

Blog

New Calendar Invite Phishing Campaign: ICS Abuse and Post-Delivery Persistence

By Daud Jawad on Thu, 05/14/2026

Fortra FIRE uncovers a sophisticated phishing campaign combining ConsentFix and CalPhishing to bypass defenses, exploit trusted workflows, and steal Microsoft credentials — highlighting why calendar-based attacks are becoming the preferred delivery method.

Blog

Getting to Know Goher Mohammad, CISO at L&Q

By Joe Pettit on Thu, 05/14/2026

Goher Mohammad’s path into cybersecurity may feel familiar, and for good reason. Starting in IT, then moving into risk and compliance before stepping into security leadership, his journey followed the same path that played out in the industry. We recently spoke with Goher about how the CISO role is evolving, what it takes to lead through an incident, and the challenges of securing organizations...

1
2
3
4
5
6
7
8
9
…
Next page
Last page

Top DSPM Solutions for Enterprises

What Actually Is a Zero-Day

Getting to Know Myriam Abiaad, BISO at Sky

Phishing Campaign Targets Banks with Fileless Phantom Stealer Malware

6 AI Data Security Platforms for Securing Enterprise AI in 2026

Silent Ransom Group: What You Need to Know

From Floppy Disks to AI: Rethinking Ransomware Defense for a New Era

June 2026 Patch Tuesday Analysis

DSPM for AI: A Practical Look at AI Data Security

Meta's Own AI Chatbot to Blame for Instagram Accounts Being Stolen in Seconds

BEC Global Insights Report: May 2026

BEC: Why This Basic Threat Is Difficult to Detect

RatPressto Phish Kit

CSPM vs DSMP (or Both): How to Think About Cloud Security

Inside The Art of Security Podcast: Cybersecurity in the Age of Trust, Risk, and Complexity

Defenders Fall Behind, as AI Rewrites the Rules of a Data Breach

Fortra Patch Priority Index for April 2026

Agentic AI's Affordability Gap Is a Security Problem

New Calendar Invite Phishing Campaign: ICS Abuse and Post-Delivery Persistence

Getting to Know Goher Mohammad, CISO at L&Q

Privacy Policy

Cookie Policy

Terms of Service

Accessibility

Fortra AI Use

Impressum