Articles In Security

By Steve Gold, Posted in Security

In Raiders of the Lost Ark, Indiana Jones doesn't wander into the Well of Souls hoping to stumble across the Ark of the Covenant. He has a map. More specifically, he has the headpiece of the Staff of Ra, the one piece of information that tells him exactly where to dig. Without it, Belloq and the Nazis spent weeks excavating the wrong location. They had resources, manpower, and determination. What they didn't have was accurate intelligence about the terrain. Your network is the Well of Souls. The question i... read more.

  • July 07, 2026

By Joshua Joseph, Posted in Infrastructure, Security

Executive Summary Enterprise cloud environments spanning Azure, AWS, hybrid data centers, and SaaS platforms have outgrown legacy "full interception" network security models. Routing all traffic through centralized Network Virtual Appliances (NVAs) for blanket inspection creates severe operational friction, inflates infrastructure costs, and introduces system bottlenecks. By transitioning from an indiscriminate "inspect everything" philosophy to a "context-aware traffic separation" model, an enterprise ca... read more.

  • July 07, 2026

By Steve Gold, Posted in Security

In Mission: Impossible, Ethan Hunt's team never broadcasts mission details over open channels. Every transmission is encrypted, every agent is authenticated, and the briefing self-destructs after viewing. The IMF doesn't leave sensitive operational details lying around where anyone can intercept them, because they understand that the channel matters just as much as the message. Meanwhile, plenty of organizations are still managing their routers, switches, and firewalls over Telnet. That's the network equiv... read more.

  • June 30, 2026

By Pablo Vidal, Posted in Security

I've been working in perimeter security for a while now, and if there's one thing that's always been true, it's that the work never really slows down. Between managing firewall policies, chasing down alerts, onboarding new services, and staying ahead of the threat landscape, there's always something on the list. And on platforms like Check Point, Fortinet, and Palo Alto Networks, the margin for error is about zero. What's changed lately, and I mean noticeably changed, is how AI has started fitting into tha... read more.

  • June 30, 2026

By Steve Gold, Posted in Security

Before Danny Ocean and his crew ever set foot inside the Bellagio, they spent weeks mapping it. Every zone. Every vault. Every access control point. Every camera blind spot. They understood the architecture better than the people who designed it, and that's exactly why they succeeded. Attackers do the same thing to your network. They map it. They probe segment boundaries. They look for flat areas where one compromised endpoint can reach everything else. They find the places where "least privilege" was the... read more.

  • June 23, 2026

By Steve Gold, Posted in Security

Think about Phil Connors in Groundhog Day. Every morning he wakes up in Punxsutawney, February 2nd, over and over again. At first it's a nightmare. Eventually, he realizes something: the loop is a gift. He can practice. He can rehearse. He can get it right, because tomorrow he gets another shot. Now imagine Phil wakes up one morning and the loop just stops. Permanent. Real. And he never once used those repeated days to actually prepare for the world beyond Punxsutawney. That's an untested backup. You assu... read more.

  • June 16, 2026

By Steve Gold, Posted in Security

Written with contributions from Bryon Singh, Director of Security Operations, RailWorks Corporation In Terminator 2: Judgment Day, the T-1000 is terrifying precisely because it looks like anything. It can morph into a police officer, a floor, a person you trust. A security system checking for a "known bad" appearance would have no chance, because the T-1000 has no fixed form. The only way to catch it is to watch what it does: it hunts, it pursues, it kills. The behavior gives it away, even when the appeara... read more.

  • June 09, 2026

By Steve Gold, Posted in Security, Support

Written with contributions from Bert Amodol and Jason Santamaria.  Turning every conversation into a word salad of acronyms wasn’t bad enough. Now, we’re taking words that have one meaning and assigning a different meaning. This must stop! First, it was “agent.” This always meant a piece of software that was installed on a computer. Now it means an autonomous system that can take goals, plan steps and carry out actions across multiple systems. Second is “Governance.&rdqu... read more.

  • June 05, 2026

By Bert Amodol, Posted in Security

You're using the same password for your bank, your email, and that pizza rewards app you signed up for in 2019 to save $2 on breadsticks. Those breadsticks may end up being very expensive. Here's why reusing passwords is basically handing a master key to every burglar on the internet and why they don't even have to work hard to use it. The math is brutal. The attackers are lazy. That's the scary part. When a company gets breached, and companies get breached constantly, attackers take those username/passw... read more.

  • May 27, 2026

By Steve Gold, Posted in Security

Written with contributions from Bryon Singh, Director of Security Operations, RailWorks Corporation In Avengers: Infinity War (2018), Earth’s heroes don’t lose because they lack power—they lose because they’re disorganized. Some fight in New York, others in Wakanda, others in space. Each group acts with good intent, but without centralized coordination, gaps appear—and Thanos exploits them. That is the exact problem CIS Safeguard 10.6: Centrally Manage Anti-Malware Software i... read more.

  • May 26, 2026