Insights and analysis from the CYBERSOL team.
The Endesa data breach represents more than a single incident at a major energy operator.
The $515,000 settlement between Connecticut, Massachusetts, and ambulance billing vendor Comstar LLC represents more than a routine vendor enforcement action.
The alleged breach of Pickett and Associates—a Florida-based engineering consultancy serving major US utilities—reveals a structural governance failure that...
The alleged breach of Pickett and Associates, a Florida-based engineering firm serving major U.S.
The ransomware attack on Marquis Financial Services—a vendor serving over 400,000 bank and credit union customers across the United States—represents more than...
We've been building a methodology and toolset for designing software visually and letting AI implement it. Today we're making it all publicly available.
When RansomHub claimed responsibility for breaching Luxshare—a manufacturing partner serving Apple, Nvidia, Tesla, LG, and Qualcomm simultaneously—the incident...
Most organizations operate under a dangerous assumption: that vendor risk management is primarily a technical problem solved through security questionnaires,...
The San Diego Unified School District's class action settlement—with claim deadlines extending to January 2026—exposes a systemic governance failure in how...
The cyberattack on Spanish energy company Endesa—resulting in the theft of customer personal and payment information—demonstrates a structural governance...
The UK's emerging Cybersecurity and Resilience Bill represents a fundamental recalibration of how regulators perceive managed service provider (MSP) risk.
The proliferation of third-party risk management (TPRM) frameworks—including NIST CSF 2.0 and emerging regulatory standards—reveals a fundamental structural...
Senegal's DAF (Direction de l'Automatisation des Données) cyberattack exposes a structural governance failure that extends far beyond incident response...
When threat actors compromise a managed service provider to deploy ransomware through legitimate remote monitoring and management tools, they expose a...
The 2025 ransomware surge targeting industrial operational technology (OT) providers exposes a structural governance failure that extends far beyond individual...
The investigation into TriZetto Provider Solutions' breach affecting over 700,000 patient records reveals a structural governance vulnerability that extends...
Healthcare organizations face a structural paradox: vendor certification processes designed to reduce risk have become instruments of false assurance.
Australian organisations face a structural accountability crisis: the shift from periodic vendor assessments to continuous supplier monitoring is no longer...
The recent cyberattack on Pickett USA, an engineering services firm serving major utility companies, has exposed a vulnerability that keeps security executives...
The cybersecurity landscape has long recognized third-party risk as a significant concern, yet incidents continue to demonstrate how poorly most organizations...
Browse by month