Blog

Blog

CSPM vs DSMP (or Both): How to Think About Cloud Security

By Jill Johnson on Tue, 05/26/2026

As organizations continue moving workloads, applications, and sensitive data into the cloud, security teams face a growing challenge: protecting both the infrastructure and the data that lives within it.That’s where cloud security posture management (CSPM) and data security posture management (DSPM) come in. While the two technologies are closely related, they solve different problems. CSPM...

Blog

Inside The Art of Security Podcast: Cybersecurity in the Age of Trust, Risk, and Complexity

By Heather Wiederhoeft on Fri, 05/22/2026

Explore Fortra’s The Art of Security podcast and its take on cyber hygiene, vulnerability management, supply chain attacks, and modern cybersecurity risk.

Blog

Defenders Fall Behind, as AI Rewrites the Rules of a Data Breach

By Graham Cluley on Thu, 05/21/2026

For almost 20 years, stolen credentials have been the most common route for attackers into organizations, according to the Verizon Data Breach Investigations Report (DBIR). But that's no longer the case.According to the newly published 2026 report, exploitation of vulnerabilities has overtaken credential theft as the leading vector for hackers to gain their initial access — accounting for 31% of...

Blog

Fortra Patch Priority Index for April 2026

By Lane Thames on Tue, 05/19/2026

Get the latest Patch Priority Index from Fortra which highlights critical Microsoft and Google vulnerabilities, covering Edge, Office, Windows, .NET, and key server components.

Blog

Agentic AI's Affordability Gap Is a Security Problem

By Josh Taylor on Mon, 05/18/2026

The first agentic SOC products entering trial or are in early access phases are already metering investigations by token consumption and rate-limiting how many an organization can run per hour. Enterprise buyers can absorb this. Mid-market companies, public sector agencies, and critical infrastructure operators running lean security programs cannot, and they face the same threat landscape.

Blog

New Calendar Invite Phishing Campaign: ICS Abuse and Post-Delivery Persistence

By Daud Jawad on Thu, 05/14/2026

Fortra FIRE uncovers a sophisticated phishing campaign combining ConsentFix and CalPhishing to bypass defenses, exploit trusted workflows, and steal Microsoft credentials — highlighting why calendar-based attacks are becoming the preferred delivery method.

Blog

Getting to Know Goher Mohammad, CISO at L&Q

By Joe Pettit on Thu, 05/14/2026

Goher Mohammad’s path into cybersecurity may feel familiar, and for good reason. Starting in IT, then moving into risk and compliance before stepping into security leadership, his journey followed the same path that played out in the industry. We recently spoke with Goher about how the CISO role is evolving, what it takes to lead through an incident, and the challenges of securing organizations...

Blog

May 2026 Patch Tuesday Analysis

By Tyler Reguly on Tue, 05/12/2026

This Patch Tuesday Analysis addresses Microsoft’s April 2026 Security Updates. Fortra Intelligence and Research Experts are actively working on coverage for these vulnerabilities.

Blog

BEC Global Insights Report: April 2026

By JT Newby on Mon, 05/11/2026

Discover key April 2026 BEC threat insights from Fortra Intelligence & Research Experts (FIRE), including a 151% surge in attack volume, increased cryptocurrency scams, advanced fee fraud trends, rising wire transfer requests, and evolving email tactics used by cybercriminals.

Blog

Navigating Indonesia’s Personal Data Protection Law: Key Takeaways for Organizations

By Jill Johnson on Fri, 05/08/2026

Indonesia's newest Personal Data Protection Law is set to go into effect in October 2024. Here's what you need to know to prepare for proper compliance.

Blog

One in Eight UK Workers Has Sold Their Company Passwords, and Bosses Think it's Fine

By Graham Cluley on Fri, 05/08/2026

It's all very well defending your organization from external hackers and malware attacks, but your systems are only as strong as the people to whom you have handed the keys.According to new research, an uncomfortable number of people appear willing to sell critical credentials and passwords to the highest bidder.The Workplace Fraud Trends report, published by Cifas, claims that an eyebrow-raising...

Blog

Interview with Troy Hunt: Getting Excited About AI for All the Right Reasons. And Knowing Where to Draw the Line.

By Dan Raywood on Wed, 05/06/2026

Coming from a security lens, skepticism about AI is the default. With last week’s Mythos debacle hardly in the rearview, the attitude is only reinforced. I recently had the chance to sit down with Troy Hunt and pick his brain on the subject. What he had to offer was surprising, and (dare I say) refreshing. While we can never stop asking “how is this going to hurt us,” a myopic view of the...

Blog

Mitigating Azure Blob Storage Security Risks

By Robbie Araiza on Mon, 04/27/2026

Azure Blob Storage can introduce significant data security risks and vulnerabilities. Find out how Fortra DSPM can address these challenges.

Blog

Getting to Know Ian Thornton-Trump: “There Is No Such Thing as Unprecedented”

By Dan Raywood on Fri, 04/24/2026

Ian Thornton-Trump looks at the shift towards intelligence-led, proactive defense, the growing battle for identity, and what makes the difference between a good reactive CISO.

Blog

ServiceNow Data Security Risks and Vulnerabilities

By Heather Wiederhoeft on Mon, 04/20/2026

ServiceNow can introduce significant data security risks and vulnerabilities. Discover how Fortra DSPM can address these challenges.

Blog

Sometimes Changing the Password on Your Email Mailbox Isn't Enough

By Graham Cluley on Thu, 04/16/2026

Have you ever taken a look at your Microsoft 365 mailbox rules? If not, it might be worth a few minutes of your time. Because newly released research reveals that hackers may already have beaten you to it.A new report from researchers at Proofpoint reveals that approximately one in 10 Microsoft 365 accounts compromised in Q4 2025 had malicious mailbox rules created shortly after the attacker...

Blog

April 2026 Patch Tuesday Analysis

By Tyler Reguly on Tue, 04/14/2026

Today’s Patch Tuesday Alert addresses Microsoft’s April 2026 Security Updates. The FIRE team is actively working on coverage for these vulnerabilities and expect to ship that coverage as soon as it is completed.

Blog

Why BrowserGate Is Mostly a Nothingburger, With Data to Prove It

By Tyler Reguly on Mon, 04/13/2026

BrowserGate explained: How LinkedIn used extension resource probing, why only a third were detectable, and why the privacy panic is misplaced.

Blog

Fortra Patch Priority Index for March 2026

By Lane Thames on Mon, 04/13/2026

Get the latest Patch Priority Index from Fortra which highlights critical Microsoft and Google vulnerabilities, covering Edge, Office, Windows, .NET, and key server components.

Blog

AI and Cryptocurrency Scams are Costing Americans Billions, FBI Reports

By Graham Cluley on Fri, 04/10/2026

The FBI's Internet Crime Complaint Center (IC3) has released its 2025 Annual Report, and two threats dominate the headlines: artificial intelligence and cryptocurrency. Together, crypto and AI is reshaping the fraud landscape in ways that should concern organizations and individuals alike.According to its report, for the first time in the IC3's 25-year history, complaints of cybercrime crossed the...

CSPM vs DSMP (or Both): How to Think About Cloud Security

Inside The Art of Security Podcast: Cybersecurity in the Age of Trust, Risk, and Complexity

Defenders Fall Behind, as AI Rewrites the Rules of a Data Breach

Fortra Patch Priority Index for April 2026

Agentic AI's Affordability Gap Is a Security Problem

New Calendar Invite Phishing Campaign: ICS Abuse and Post-Delivery Persistence

Getting to Know Goher Mohammad, CISO at L&Q

May 2026 Patch Tuesday Analysis

BEC Global Insights Report: April 2026

Navigating Indonesia’s Personal Data Protection Law: Key Takeaways for Organizations

One in Eight UK Workers Has Sold Their Company Passwords, and Bosses Think it's Fine

Interview with Troy Hunt: Getting Excited About AI for All the Right Reasons. And Knowing Where to Draw the Line.

Mitigating Azure Blob Storage Security Risks

Getting to Know Ian Thornton-Trump: “There Is No Such Thing as Unprecedented”

ServiceNow Data Security Risks and Vulnerabilities

Sometimes Changing the Password on Your Email Mailbox Isn't Enough

April 2026 Patch Tuesday Analysis

Why BrowserGate Is Mostly a Nothingburger, With Data to Prove It

Fortra Patch Priority Index for March 2026

AI and Cryptocurrency Scams are Costing Americans Billions, FBI Reports

Privacy Policy

Cookie Policy

Terms of Service

Accessibility

Fortra AI Use

Impressum