top of page
Dec 10, 20244 min read
Deep Dive into Compliance and Regulatory Requirements for Third-Party Risk in the Swiss Financial Institutions
As the Chief Security Officer (CSO) or member of a security team within a Swiss financial institution, you face an ever-evolving...
Mar 29, 20242 min read
XZ Compression Backdoor, Linux Distros and Supply Chain Attack
The discovery of a sophisticated backdoor lurking within the popular xz/liblzma compression software recently sent shockwaves through the...
Mar 21, 20242 min read
CISA Breach, Security Software and Proactive Attack Surface Management
In an era where cyber threats loom larger each day, the recent cyberattack on the Cybersecurity and Infrastructure Security Agency (CISA)...
Mar 8, 20242 min read
Navigating Cybersecurity in Mergers and Acquisitions: A Holistic Approach
Mergers and acquisitions (M&As) are pivotal to the growth strategies of numerous companies, serving as a linchpin for maintaining a...
Feb 7, 20242 min read
Why Can't We Get MFA Right? Lessons from Recent SEC and Microsoft Incidents
Ever caught yourself shaking your head at the latest security breach headline, wondering why Multi-Factor Authentication (MFA) wasn't the...
Jan 23, 20242 min read
Google Flights vs. Google Ad: The Battle of Ad Squatting Attacks
In an age where digital advertising is paramount, Google Ad Squatting emerges as a sophisticated cyber threat. It's a practice where...
Jan 16, 20242 min read
The Hidden Risks in Security Software: Lessons from the Boeing Ransomware Attack
The recent in-depth case study by CISA on the ransomware attack on Boeing by LockBit 3.0 in late 2023 brings to light a critical yet...
Dec 12, 20232 min read
Enhancing Industrial Control System Security: Insights from CISA's Latest Advisories
The Cybersecurity and Infrastructure Security Agency (CISA) issued critical advisories on December 12 and 7, 2023, spotlighting...
Dec 5, 20234 min read
Preparing for DORA Compliance: Strengthening ICT Supplier Risk Management in Finance
The Digital Operational Resilience Act (DORA) Explained The Digital Operational Resilience Act (DORA) is a comprehensive regulatory...
Nov 27, 20232 min read
Strengthening Supply Chain Defenses Against Ransomware: Insights from Xplain and Concevis Incidents
The ransomware attacks on Xplain and Concevis, two Swiss IT service providers, represent critical case studies in understanding the...
Nov 21, 20234 min read
Harnessing C2SEC's XSPM to Empower Gartner's CTEM Framework
In the complex and ever-changing landscape of cybersecurity, Gartner's Continuous Threat Exposure Management (CTEM) framework, introduced...
Nov 14, 20232 min read
Navigating the Shift Away from Third-Party Cookies with C2SEC XSPM
In a significant development for digital privacy, Google's recent announcement about phasing out third-party cookies in Chrome heralds a...
Nov 8, 20232 min read
Maximizing Efficiency: How C2SEC Empowers Cost Optimization in Cloud Operations
In an economic climate marked by rising interest rates, tightening enterprise budgets, and a fast-paced transition to the cloud, CTOs and...
Oct 17, 20232 min read
The Hidden Risks of Third-Party App Consents in Microsoft 365
As we delve deeper into the intricacies of managing critical SaaS dependencies like Microsoft 365 within the broader context of attack...
Oct 4, 20232 min read
Introducing XSPM: Redefining the Paradigm in Attack Surface and Security Posture Management!
We are excited to unveil XSPM, our transformative Extended Security Posture Management SaaS platform. This innovation marks a pivotal...
Apr 14, 20212 min read
The Back to Basics Approach: Security
"Unbreakable". "100% detection with zero false positive". "Full unsupervised machine learning". In the cybersecurity industry, the last...
Feb 2, 20212 min read
Security software is still software
The past few weeks, I'd noticed an annoying problem with my Edge Chromium browser. It was getting painfully slow and sometimes opening a...
Feb 2, 20212 min read
Enable trust in the digital interconnected world
We were asked quite a few times why we decided to quit our well paid corporate jobs and dive headfirst into the startup world. To be...
bottom of page