Security operations | 2 min readSecurity alert: ConnectWise ScreenConnect 23.9.8 security fix
Vulnerabilities affecting ConnectWise versions 23.9.7 and prior leave self-hosted and on-premise ScreenConnect instances exposed to attackers. Here’s what happened and what can do about it now.
Security operations | 2 min readWhy is NIST adding Governance to the NIST CSF 2.0?
As the security industry waits for NIST CSF 2.0 to publish, you might be asking yourself why NIST is adding more guidance around governance. We shed some light on the question and share what we know.
Security operations | 3 min read2024 Annual Threat Report: findings and predictions
This year’s Annual Threat Report describes the major attack trends we saw last year and offers advice to safeguard your org. Some of our top security minds also make predictions for 2024.
Security operations | 5 min readWorking with your SOC/MDR during a security assessment
There are different kinds of security assessments, and what you perform should be aligned to your organization's goals.
Engineering | 6 min readWhat’s it like being a female site reliability engineer?
The tech industry, and engineering positions especially, can be very difficult for women. In this interview, one of Expel’s SREs discusses her career path and lauds the support she’s found here.
Security operations | 7 min readAttackers are expanding access through Amazon Cognito
AWS Cognito provides Identity and Access Management for AWS web applications. Improperly configured Cognito web portals can allow attackers to gain direct access to your AWS control plane.