Blog

Blog

Transitioning to ISO 27001:2022 by October 25, 2025

By Meriam Senouci on Thu, 06/19/2025

The three-year grace period for complying with the new ISO 27001 guidelines for securing Information Security Management Systems (ISMS) is coming to a close. Is your organization prepared?

Blog

When Yesterday’s Emails Never Happened: The Conversation Hijacking Attack

By Josh Taylor on Tue, 06/17/2025

Blog

Pharmaceutical Data Security: How to Safeguard Sensitive Information

Mon, 06/16/2025

Discover the types of sensitive data in the pharmaceutical industry, including patient records, clinical trial data, and regulatory compliance information.

Blog

AI Data Governance: Challenges and Best Practices for Businesses

By Robbie Araiza on Mon, 06/16/2025

AI data governance refers to the management and control of data used in AI systems in an organization.

Blog

Bert Ransomware: What You Need To Know

By Graham Cluley on Fri, 06/13/2025

What is the Bert ransomware?Bert is a recently-discovered strain of ransomware that encrypts victims' files and demands a payment for the decryption key.Why is it called Bert?I truly have no idea. Maybe whoever created Bert put all of their efforts into the coding of their ransomware, rather than thinking of its marketing. Or maybe they just really like the name "Bert."Or maybe the hacker who...

Blog

BEC Global Insights Report: May 2025

By John Farina on Thu, 06/12/2025

The monthly Global BEC Insights Report from Fortra presents a comprehensive analysis of the latest tactics, techniques, and procedures (TTP) employed by BEC threat actors. This report draws on extensive intelligence gathered from hundreds of active defense engagements conducted throughout the month. Key insights include geolocation data, attack volume, and the variety of scams, such as payroll diversion and advance fee fraud. The report also highlights the use of gift cards in scams, the requested amounts in wire transfer fraud, and the banks and webmail providers frequently targeted by attackers. These findings provide a critical understanding of the evolving BEC threat landscape.

Blog

June 2025 Patch Tuesday Analysis

By Tyler Reguly on Tue, 06/10/2025

Today’s Patch Tuesday Alert addresses Microsoft’s June 2025 Security Updates. We are actively working on coverage for these vulnerabilities and expect to ship ASPL-1160 as soon as coverage is completed. In-The-Wild & Disclosed CVEsCVE-2025-33053A WebDAV code execution vulnerability, CVE-2025-33053 requires that a user open a malicious .URL file for compromise to...

Blog

CMMC Compliance Checklist: Steps to Achieve Certification

Mon, 06/09/2025

CMMC is a cybersecurity standard implemented by the US Department of Defense to protect sensitive data within its supply chain. Use this checklist to help achieve certification.

Blog

What Is a DLP Policy? Steps to Implement Effective Data Loss Prevention

By Robbie Araiza on Mon, 06/09/2025

A DLP policy is an organization's set of guidelines and procedures for protecting, monitoring, and managing its sensitive data.

Blog

Fortra Patch Priority Index for May 2025

By Lane Thames on Wed, 06/04/2025

Fortra's May 2025 Patch Priority Index (PPI) brings together important vulnerabilities for Microsoft and Google.Up first on the list are patches for Microsoft Edge (Chromium-based) and Google Chromium that resolve 6 issues including spoofing, out of bounds memory access, insufficient data validation, inappropriate implementation, use after free, and heap buffer overflow vulnerabilities.Next on the...

Blog

What Is End User Experience Monitoring (EUEM)?

By Robbie Araiza on Mon, 06/02/2025

End User Experience Monitoring (EUEM) measures and analyzes user interactions with a company's software, website, application, or service.

Blog

SSL Interception Explained: Balancing Security and Privacy

Mon, 06/02/2025

SSL interception is when an intermediary device (e.g., proxy or firewall) intercepts and decrypts SSL/TLS traffic.

Blog

Top 8 Benefits of Network Monitoring

By Kevin Jackson on Fri, 05/30/2025

Lack of network visibility makes life hard for IT. Network monitoring helps you stay ahead of outages with real-time visibility into your network health.

Blog

Bi-weekly Cyber Landscape Reviews - May 29th 2025

By Meriam Senouci on Thu, 05/29/2025

A bi-weekly summary of the latest news, trends, and shifts within the cybersecurity threat landscape.

Blog

Get Insider Advice on the 12 Compliance Requirements of PCI DSS 4.0

By Cybersecurity Experts at Fortra on Wed, 05/21/2025

Navigating PCI DSS compliance can be tricky. What is important? Get a top-level summary of each version 4.0 requirement along with an insider tip for tackling each one.

Blog

Top Five AI Threats to Watch Out for in H2 2025

By Meriam Senouci on Wed, 05/21/2025

AI threats can be plentiful and widespread. This blog breaks through the noise by identifying the top five riskiest AI threats to pay attention to this year. Fortra’s threat research breaks down what these threats are, how they are carried out by threat actors, and the risks they pose to all organizations regardless of size or industry.

Blog

What to Look for in a Vulnerability Management Solution

By Cybersecurity Experts at Fortra on Tue, 05/20/2025

Click the infographic to view and download in full size One of the most fundamental — and often overlooked — processes of a strong security posture is vulnerability management (VM). VM is much more than just running a vulnerability scan; it’s at the core of all the layers that make up solid cybersecurity. Whether your organization has a simple...

Blog

From Ransomware to Exploited Vulnerabilities: Key Lessons from Coalition’s 2025 Cyber Claims Report

Tue, 05/20/2025

The latest Coalition cyber report is out. Glean insights from cyber-insured companies around the world and find out how proactive defense could help circumvent your next claim.

Blog

Threat Analysis: Malicious NPM Package Leveraged in O365 Phishing Attack

By Israel Cerda on Tue, 05/20/2025

Blog

Prescription For Disaster: Sensitive Patient Data Leaked in Ascension Breach

By Graham Cluley on Fri, 05/16/2025

Ascension, one of the largest private healthcare companies in the United States, has confirmed that the personal data of some 437,329 patients has been exposed following an attack by cybercriminals. To the undoubted distress of Ascension's client base, the details of hundreds of thousands have fallen into the hands of hackers, opening up opportunities for fraud and identity theft. Breached...

Transitioning to ISO 27001:2022 by October 25, 2025

When Yesterday’s Emails Never Happened: The Conversation Hijacking Attack

Pharmaceutical Data Security: How to Safeguard Sensitive Information

AI Data Governance: Challenges and Best Practices for Businesses

Bert Ransomware: What You Need To Know

BEC Global Insights Report: May 2025

June 2025 Patch Tuesday Analysis

CMMC Compliance Checklist: Steps to Achieve Certification

What Is a DLP Policy? Steps to Implement Effective Data Loss Prevention

Fortra Patch Priority Index for May 2025

What Is End User Experience Monitoring (EUEM)?

SSL Interception Explained: Balancing Security and Privacy

Top 8 Benefits of Network Monitoring

Bi-weekly Cyber Landscape Reviews - May 29th 2025

Get Insider Advice on the 12 Compliance Requirements of PCI DSS 4.0

Top Five AI Threats to Watch Out for in H2 2025

What to Look for in a Vulnerability Management Solution

From Ransomware to Exploited Vulnerabilities: Key Lessons from Coalition’s 2025 Cyber Claims Report

Threat Analysis: Malicious NPM Package Leveraged in O365 Phishing Attack

Prescription For Disaster: Sensitive Patient Data Leaked in Ascension Breach

Privacy Policy

Cookie Policy

Terms of Service

Accessibility

Impressum