Blog

Part I of our Quarterly Threat Report summarizes key findings and stats from Q2 of 2025. Learn what to focus on right now.

Expel updated our threat alerts to be clearer, so you understand precisely what's happening with credential theft and account compromise.

Discover why outsourcing alert triage falls short and how a human-AI collaborative approach can improve cybersecurity outcomes.

An important update and apology on the Expel blog, for a blog we published on PoisonSeed on July 17, 2025.

In this series, we explore Expel's auto remediations so you understand how they work. Let's explore disable access key.

Here's a refresher on the threat intel we shared throughout the second quarter of 2025. Catch up on what you missed.

Beware of the hidden costs of "cheaper" security, and know what you should ask and pay attention to before switching MDR providers.

Over the weekend, a zero-day vulnerability for SharePoint 16.0.0.0 and earlier versions was targeted. Here's what you need to know.

Part I of our Quarterly Threat Report summarizes key findings and stats from Q2 of 2025. Learn what to focus on right now.

Expel has three guiding principles that guide how AI & automation are used as the foundation of our SecOps platform, Expel Workbench™.

In this series, we explore Expel's auto remediations so you understand how they work. Let's explore disable user account.

Attack group PoisonSeed has recently found a way to downgrade FIDO key authentication in a new social engineering tactic via cross-device sign-in.

Many security orgs are trapped in a difficult cycle. Alert fatigue causes service quality degradation and fuels burnout. Rinse & repeat.