Blog

Bring-your-own-device (BYOD) policies are becoming the new norm and, in combination with several recent events, the risk of a data breach via a stolen device or an insider threat is a cause for concern. Learn...

This post describes security controls that an enterprise can deploy to prevent and detect attackers who are attempting to insert malware into the source control repository.

Device authentication is a core component of a zero trust architecture and should always be enforced in addition to strong user authentication. Learn more about implementing device authentication in this post.

To ensure strong security, a code signing system must verify that the code being signed precisely matches the code in the repository. In this post, learn how to deploy such a system using a technique...

All too often, enterprises take a piecemeal approach to PAM. Some elements of PAM may be properly secured (e.g., SSH), while all the other methods used to access privileged resources are overlooked. This blog post...

It's not a secret that some enterprise products see very little adoption while others experience full-scale deployment. This post examines why this is the case.

The strength of your cybersecurity posture is dependent on how well you can keep a secret. Learn how to safeguard your secrets here.

Online payments, more formally known as Card Not Present (CNP) transactions, aren't as secure as they could be. Learn how an old protocol could improve the security of online payment processing.

Learn how to improve the security of your VPN without needing to make changes to your existing server-side VPN configuration.