Infosecurity Opinions
Why Organizations Need to Adapt Their Defenses to Protect Against the Rise of Phishing-as-a-Service
Democratization of cybercrime is driving PhaaS expansion. Here's what you need to know to protect your network
Agentic AI’s Problem Isn’t Capability It’s Accountability
Agentic AI sees organizations moving from managing system risk to managing decision risk, and that is a far more complex challenge
AI Is Getting Smarter. Is Your Supply Chain Keeping Up?
Coding errors or data poisoning can create security challenges in the AI supply chain. Here's how to prevent that from happening
The Rising Risk Landscape for Critical National Infrastructure
Cyber resilience in critical infrastructure is essential to critical services running. A stronger mindset is needed to protect against attacks
OpenClaw Exposes the Real Cybersecurity Risks of Agentic AI
As recent incidents have showed, without effective governance, visibility and control, risks around Agentic AI can escalate rapidly
Passwords are the Weakest Link in a Phishing-First World
As traditional network perimeters continue to disappear, modern SaaS environments, remote work, and expanding third-party access have shifted cyber risk away from networks and toward how trust is established and enforced.
When Agentic AI Becomes Your Riskiest Third Party
Agentic AI is not just another tool. It is a new type of third-party vendor with autonomy and privileges that require oversight
When the World Splits: Are Businesses Really Ready?
Geopolitical rifts are becoming more frequent, more complex and more interconnected. Businesses cannot control global politics, but they can control their preparedness
The UK Cyber Security and Resilience Bill: What OT Asset Owners Need to Know Now
While the bill’s fine points may still evolve, its overall direction is clear. OT operators should act now.
Clawing Back on Security: Challenges with Agentic AI Systems
Agentic AI Ecosystems are Rewriting the Rules of Traditional Cybersecurity Issues
IT and OT Are Not Equal. IT Can Fail. Your OT Cannot
It’s high time that OT cybersecurity got the attention and investment it deserves, writes Secolve's Aaron Singleton-Martin
Strengthening Supply Chain Cyber Resilience: A Leadership Imperative
In an increasingly interconnected business environment, third-party resilience is no longer optional.
Strategic Leadership in Digital Transformation
Executives who treat transformation as a technology upgrade often see limited returns. Those who treat it as a strategic reinvention unlock new business models, security by design and adaptive operating models.
The Path of Least Resistance: Why Active Inertia is the Real AI Threat
Cyber teams must stop looking at environments as a list of compliance requirements. Stop checking boxes and start measuring resistance to AI threats
Decentralized Cybersecurity: Why the EU Vulnerability Database Is a Blueprint For the Future
In a world where attackers innovate without central permission, defenders must learn to do the same
Digital Psychological Warfare: How the Weaponization of Digital Platforms Threatens Minds, Markets, and Modern Institutions
Unlike traditional cyberattacks, which target systems and data, psychological warfare targets people. Here's what cybersecurity leaders need to know.
AI Raises the Cybersecurity Stakes, But People Still Open the Door
John Eccleshare, Head of Information Security at bet365, explores why the real cybersecurity battle in the age of AI remains human vs. human
From Cyber-Attack to Burglary: The Surprising Impact of the French Shooting Federation Breach
The impact of data breaches isn't just felt in cyberspace. Criminals use leaks to facilitate physical crimes too
GenAI Has Become the Biggest Data-Exposure Risk in Enterprise History
GenAI adoption is outpacing enterprise security. Here's what organizations must do to close the widening gap
Why Your Organization Should Start Quantum Preparedness Today (Even If Quantum Computers Are Years Away)
Quantum preparedness manageable, using skills and resources security teams already have and embedding the activities in ongoing security remediation work
