Exposure Management in Retail: The Security Approach That Never Goes Out of Style
Retail changes fast – perhaps faster than any other customer-facing vertical. Online stores, mobile apps, and cloud-based operations are constantly evolving and improving. But…
Bridging Theory and Practice: How Continuous Security Controls Optimization Complements Proactive Defense and Posture Management
A report was recently published by Gartner®: Reduce Threat Exposures with Security Controls Optimization. This new report discusses how, in their viewpoint, the growing…
Forrester’s Unified Vulnerability Management (UVM) – What it Means and Why it Matters
Forrester recently published their new market guide for Unified Vulnerability Management (UVM), and we are excited that XM Cyber has been recognized in this…
From Blocker to Enabler: Translating Cyber Risk into Business Value
When it comes to justifying security investments to the CFO, technical arguments aren’t enough. Any CFO worth their paycheck will prioritize financial impact, operational…
Ten Things You Need to Do Yesterday to Stay Compliant with NIS2
When it comes to the EU’s NIS2 Directive, meeting the basic requirements (according to the legislation in your company’s location) is only the first…
Seeing What Attackers See: How Attack Graphs Help You Stay Ahead of Cyber Threats
Cybersecurity can seem like a game of cat and mouse. Defenders try to anticipate attackers’ moves; attackers try to sneak through gaps in security…
CVE-2025-24813: Critical Apache Tomcat Vulnerability Already Being Exploited – Patch Now!
Overview Apache Tomcat, the free and open-source implementation of the Java Servlet, recently disclosed a critical vulnerability which is being tracked as CVE-2025-24813. This…
Four Real-Life Financial Service Attacks Paths
Back in the wild west, there was this guy, Willie Sutton. Willie’s chosen profession wasn’t the town dentist-barber or saloon owner. Nope, he was…
Exposure Management in Finance: A Proactive Approach to Cyber Resilience
The financial sector is perhaps the most cyber-targeted industry on the planet. It’s no secret why: financial institutions manage the world’s most valuable assets…
The Artificial Intelligence Threat: Are You Losing Sleep Yet?
The rise of Artificial Intelligence (AI) has brought about incredible advancements, but it also casts a long shadow over the cybersecurity landscape. Threat actors…
From ArgoCD To Azure Hybrid Attacks Part 2 – Leveraging Workload Identity for AKS to Move Laterally Across Tenants
Welcome back to our in-depth look at ArgoCD and hybrid Azure attacks. In the first part of this blog, we explored how a compromised…
From ArgoCD To Azure Hybrid Attacks Part 1 – Leveraging Kubernetes ArgoCD RBAC Permissions to Escalate Cluster Privileges
In the ever-changing DevOps and cloud-native applications landscape, continuous delivery tools have become essential for managing deployments at scale. Among these tools, ArgoCD has…
){kind=icon}
){kind=icon}
){kind=icon}
){kind=icon}
Find and fix the exposures that put your critical assets at risk with ultra-efficient remediation.
){kind=icon}