Blog

Beyond the Checklist: Why Attackers Love Your Misconfigurations- And How to Stop Them

Some of the worst breaches in recent years didn’t come from sophisticated malware or cutting-edge exploits. They came from something…

Blog

Exposure Management in Retail: The Security Approach That Never Goes Out of Style

Retail changes fast – perhaps faster than any other customer-facing vertical. Online stores, mobile apps, and cloud-based operations are constantly…

Blog

Bridging Theory and Practice: How Continuous Security Controls Optimization Complements Proactive Defense and Posture Management

A report was recently published by Gartner®: Reduce Threat Exposures with Security Controls Optimization. This new report discusses how, in…

Blog

Forrester’s Unified Vulnerability Management (UVM) – What it Means and Why it Matters

Forrester recently published their new market guide for Unified Vulnerability Management (UVM), and we are excited that XM Cyber has…

Blog

From Blocker to Enabler: Translating Cyber Risk into Business Value

When it comes to justifying security investments to the CFO, technical arguments aren’t enough. Any CFO worth their paycheck will…

Blog

Ten Things You Need to Do Yesterday to Stay Compliant with NIS2

When it comes to the EU’s NIS2 Directive, meeting the basic requirements (according to the legislation in your company’s location)…

Blog

Seeing What Attackers See: How Attack Graphs Help You Stay Ahead of Cyber Threats

Cybersecurity can seem like a game of cat and mouse. Defenders try to anticipate attackers’ moves; attackers try to sneak…

Blog

CVE-2025-24813: Critical Apache Tomcat Vulnerability Already Being Exploited – Patch Now!

Overview Apache Tomcat, the free and open-source implementation of the Java Servlet, recently disclosed a critical vulnerability which is being…

Blog

The Artificial Intelligence Threat: Are You Losing Sleep Yet?

The rise of Artificial Intelligence (AI) has brought about incredible advancements, but it also casts a long shadow over the…

Blog

From ArgoCD To Azure Hybrid Attacks Part 2 – Leveraging Workload Identity for AKS to Move Laterally Across Tenants

Welcome back to our in-depth look at ArgoCD and hybrid Azure attacks. In the first part of this blog, we…

Blog

From ArgoCD To Azure Hybrid Attacks Part 1 – Leveraging Kubernetes ArgoCD RBAC Permissions to Escalate Cluster Privileges

In the ever-changing DevOps and cloud-native applications landscape, continuous delivery tools have become essential for managing deployments at scale. Among…

Blog

Exposure Management: Healthcare’s Preventive Medicine

Most people will agree that healthcare is pretty essential, and ergo, protecting it from threats should be top of any…

Blog

See XM Cyber In Action

See what attackers see, so you can stop them from doing what attackers do.

Platform

Company

Partners

Services

Resources

Privacy Policy