Author: Nikhil

Benjamin Franklin once said, “In this world, nothing is certain except death and taxes.” Now we can add one more thing to the list: user authentication. Multi-factor authentication (MFA) and the flood of push notifications are issues we encounter every day. This eventually leads to something called MFA fatigue. This year’s severe breaches happening through MFA fatigue include the Marks & Spencer breach. Therefore, vendors are already looking for alternatives. These include passkeys and behavioral MFA. Since we are talking about behavioral MFA, let us stick to it. Behavioral MFA, as is clear from the name, uses user behavior as…

The Managed Detection and Response (MDR) services are witnessing increasing year-on-year growth because of powerful capabilities like 24*7 access to experts, quicker incident response, and proactive network monitoring and traffic insights that allow users to adopt a proactive security stance. However, the factors driving the market upwards are shaped by the introduction of newer technologies, the compliance norms, and the changing needs of the customers. Here, we take a look at some of the trends that are driving the MDR market in 2025. Industry-tailored products: While cybersecurity is key for all organizations, their needs are different. One size does not…

It is a redundant statement by now, but there is no better way to start a blog on anything involving SaaS: Businesses are increasingly using SaaS deployments for various reasons. However, as SaaS usage has increased, so have the associated risks. You see, with great capabilities come great risks. What are the risks? Shadow IT is a risk that security teams have to fight every day. While there are apps like Salesforce or Microsoft 365 that the organizational IT teams can manage, there are also apps that the IT teams can have a hand in purchasing and vetting, but granting…

As our dear friend ChatGPT says, compliance is no longer restricted to checking boxes off a list. The cost of non-compliance is rising—not only in fines but also in reputational damage and legal liabilities. Therefore, it makes total sense to check how the compliance landscape looks for the rest of the year, particularly as this year has been marked by various events that indicate clear noncompliance. The compliance norms becoming stringent is no longer just an empty, inevitable sentence that is a must-use for discussing anything about capabilities needing to follow compliance norms, like data storage. Countries like India have…

As the app economy continues to grow, it continues to attract increased attention from bad actors. The increased focus means the app is unsafe right from its development, right up to its eventual retirement. The various types of threats include tampering, reverse engineering, and a variety of runtime threats. App integrity is becoming increasingly important as the rising app economy and technologies mean apps now handle and access a lot of sensitive data like personal identifiable information (PII) and financial information, which means apart from protecting from threats, the software should also help comply with stricter norms about critical factors…

US President Donald Trump created (some more) controversy recently by posting an AI video that ends with his predecessor Barack Obama being jailed. Leaving the politics aside, the most disturbing part is the disturbing lifelike quality of the “arrest” sequence. This kind of trouble was expected with this video showcasing Google AI video’s capabilities. Pair this with the ever-evolving deepfake videos and images, and you can understand why the CISOs are getting increasingly stressed and the SecOps looking increasingly like zombies as the weekend nears. It is time to add N to WYSIWYG. What You See isn’t Necessarily What You…

Threat intelligence is a vital part of organizational security. It allows organizations to move from reactive to predictive cybersecurity. In simpler terms, while reactive cybersecurity investigates the reasons why the barn door was not bolted, which allowed the horse to escape the barn, a predictive or proactive approach warns that the door may be open or can be opened quickly. This allows the owners to check the barn door and ensure that the horse doesn’t exit the barn. Why compare? Now that we have established the importance of the Digital Threat Intelligence Management (DTIM) technology, let us further drill down…

Microsegmentation is a critical component of any organization’s Security Operations (SecOps) policies. It puts up barriers to ensure an intruder cannot proceed further. The methodology can be observed in advisory models. Most advisory models are detached from operational realities. They offer broad assessments without regard for region-specific needs, industry constraints, or the actual experience of users. Speaking strictly from the perspective of barriers limiting movement, we can state that this misalignment effectively ends up trapping businesses in information silos. The result? Companies end up choosing platforms that don’t fit their required use cases. Rollouts stall. Adoption suffers. And promising vendors…

Bots are all around us. These little pieces of software mimic human behavior and guide us through various processes, like customer service. They are everywhere; in fact, they reportedly comprise about 50 per cent of the internet traffic. The sheer numbers, coupled with their ability to be good or bad, make deploying bot management software a critical part of improving users’ security posture. Let us take a deep dive and see what trends are driving the market for bot management software. Final take: Lokesh Biswal, security analyst at QKS Group, elaborates “The combination of zero trust and edge computing is…

Most of us will have spotted the pun in the heading from a mile away, but that is what headings are for. Their intent is to arouse curiosity about the content. If you have come this far, it means we have succeeded in drawing your attention. So, without much ado, let us talk about the topic: A comparison of 2024 and 2025 SPARK matrices for the Security Orchestration and Response (SOAR) market. SOAR tools are becoming necessary as they help SOCs detect, investigate, and respond to threats faster. It achieves this objective by automating repetitive tasks and orchestrating (executing multiple…