Helen Laidlaw

The security of personal information held by government agencies became a pressing concern as two separate data breaches at state-level Departments of Human Services were announced within a two-week period, collectively exposing the sensitive data of nearly one million residents in Illinois and

How long does it take for a threat actor to move from initial compromise to lateral movement within a corporate network? Just 18 minutes in mid-2025 , down from 48 minutes the year prior, according to recent industry reporting. This phenomenon, usually referred to as 'breakout time' in the

The very tools designed to teach cybersecurity best practices are now serving as an unlocked side door for malicious actors to infiltrate the cloud environments of the world's largest companies. A recently published investigation has uncovered a deeply ironic and widespread security flaw in which

The rapid integration of artificial intelligence into enterprise environments has created a landscape where powerful new tools are being deployed at an unprecedented pace, but this rush to innovate often overshadows a critical examination of the underlying security posture of the frameworks these

Deep within the digital architecture of countless organizations lie dormant credentials, relics of former employees and forgotten projects, that represent one of the most undermanaged yet potent security vulnerabilities of the modern era. These are not merely inactive entries in a database; they

The integration of large language models with development tools has unlocked unprecedented productivity, yet this new frontier of AI-assisted coding introduces complex security challenges that can be exploited in non-traditional ways. A recently disclosed set of three critical security

The widespread adoption of container-first infrastructure has inadvertently created a profound and dangerous chasm between the speed of digital innovation and the maturity of corresponding security frameworks. While enterprises have universally embraced containers and microservices as the

A single, perfectly timed video call from a chief executive officer, visually and audibly indistinguishable from the real person, has just authorized a multimillion-dollar transfer that will cripple a company before the actual executive even finishes their morning coffee. This is not a speculative

The security of the global cloud infrastructure often rests on the integrity of its most fundamental building blocks, and a critical vulnerability discovered in AWS CodeBuild served as a powerful reminder of how a seemingly minor error can create a significant supply chain risk. This flaw, dubbed

The promise of automated financial management relies on a foundation of digital trust, a foundation recently shaken for over a million investors following a significant security incident. A Crack in the Digital Vault: Understanding the Betterment Security Incident Betterment has built its