How Is Your Enterprise IT Hygiene?
We’re hearing a lot these days about the need for strong and consistent enterprise IT hygiene and cybersecurity hygiene. But…
Blog
Extending The 5 Stages of CTEM to the Cloud
If you’re a regular reader of this blog, you’ll know that Continuous Threat Exposure Management (CTEM) is a major driver…
Blog
CVE-2024-3094 – Dangerous XZ Utils Backdoor is Discovered
On Friday, March 29th, a Microsoft researcher disclosed that he had found malicious code embedded in XZ Utils versions 5.6.0…
CVE Advisory
PCI-DSS – Out With the Old (v3.2), In With the New (v4.0)
Perhaps PCI-DSS 4.0 launched yesterday, March 31 – a Sunday – to avoid being labeled an April Fool’s Joke to…
Blog
Active Directory Security Checklist
Active Directory is the key to your network, responsible for connecting users with network resources – but it’s also a…
Checklists
Attack Techniques in Okta – Part 2 – Okta RBAC Attacks
Overview Welcome to Part 2 of Okta Attack Techniques. In the previous article, we took a deep dive into the…
Blog
Why Adversarial Exposure Validation? 5 Key Concepts Explained
What is Adversarial Exposure Validation? Adversarial Exposure Validation (AEV) is a proactive cybersecurity method that continuously simulates real-world attacks to…
Glossary
Top 20 Active Directory Security Best Practices in 2026
What Are Active Directory Security Best Practices? Active Directory (AD) security refers to the strategies, tools, and configurations used to…
Glossary
Continuous Exposure Management Across the Attack Surface
The attack surface of organizations keeps expanding to support digitization and business initiatives. As organizations expand their digital presence, forces…
Blog
The 3 Big Questions CISOs Ask Themselves
I recently had the pleasure of meeting with several CISOs and cybersecurity leaders across multiple verticals at the Innovate Cybersecurity…
Blog
The Five Steps of CTEM, Part 2: Discovery – Discovering Cyber Exposures Across Your Environment
Welcome to the second installment of our five-step journey through Continuous Threat Exposure Management (CTEM). In July 2022, Gartner unveiled…
Blog
What is Cyber Risk Quantification?
Cyber Risk Quantification (CRQ) is a vital process in cybersecurity that calculates the potential impact of risk in terms that…
Glossary
See XM Cyber In Action