Scroll through TikTok or Instagram today and you’ll quickly notice a familiar pattern: throwback photos from 2016, vintage filters, and references to “the good old days.” What makes this trend noteworthy isn’t the aesthetics. It’s the tone. This isn’t ironic nostalgia or playful retro styling. It’s reflective. Sometimes even reflective. Celebrities have joined in. […]
Who Touched What, And Why Permissions Aren’t Enough When something goes wrong, whether it’s a suspected breach, a regulatory inquiry, or an internal anomaly, organizations face a deceptively simple question: Who accessed the data? Not who could have accessed it. But who actually did. For many security teams, this is the moment when confidence begins […]
The Data Access Gap Putting Financial Institutions at Risk Data access almost always grows faster than it shrinks. This is even more true for financial institutions as it is a tangible risk on both the security and the compliance side. New permissions are granted as people change roles, support projects, or onboard new systems. But […]
2026 Security Resolutions: Fewer Assumptions, More Evidence Security failures rarely come from missing controls. They come from assumptions that hardened into policy and stopped being questioned. Risk emerges from access and data decisions made over time, through role changes, project work, access sharing, temporary exceptions, and system evolution, that quietly persist long after their original […]
Five Metrics to Reduce Financial Data Risk Financial institutions run comprehensive security programs, regular audits, access reviews, and controls testing. Yet when board members or regulators ask whether data risk is moving in the right direction, the answer often requires more explanation than it should. The issue isn’t missing controls. It’s that most reporting focuses […]
AI Security Needs a Reality Check AI has already changed how people work. Staff can ask a tool to draft notes, check data, review documents, or answer questions they cannot solve on their own. It has made work faster and more flexible. But it also introduced a risk many organizations still overlook. AI can quietly […]
What the BBC Ransomware Attempt Reveals It started with a message that looked more like a bribe than a breach. In September 2025, BBC cyber correspondent Joe Tidy became the target of every CISO’s nightmare: a sophisticated insider recruitment attempt by the Medusa ransomware gang. What began as an encrypted message on Signal quickly escalated […]
