Enterprise Security Tech

We sat down with Peter Ford, Executive Vice President of Information Solutions at iconectiv, to explore why measures against illegal robocalls are backfiring, who’s being hit hardest and what enterprises must do to protect revenue, trust and security. Read more: https://lnkd.in/gbrN4YAW

Voice is still central to business outcomes -- from banks confirming fraud alerts, to hospitals coordinating care, to retailers following up on customer inquiries. But legitimate calls that originate outside the U.S. and use U.S.-based numbers are increasingly and inadvertently mislabeled as spam or blocked outright due to FCC rules and fragmented verification frameworks. The result: missed connections, wasted resources and new openings for fraud. In this Q&A with Peter Ford, Executive Vice President of Information Solutions at iconectiv, we explore why measures against illegal robocalls are backfiring, who’s being hit hardest and what enterprises must do to protect revenue, trust and security. Read more: https://lnkd.in/gbrN4YAW

When it comes to enterprise identity infrastructure, few attack surfaces are as pervasive—and as persistently exposed—as Microsoft Active Directory (AD) and Entra ID. Cayosoft, a longtime player in this domain, is stepping up its defense game with Guardian Protector, a free, always-on identity threat detection and monitoring solution aimed squarely at the hybrid Microsoft ecosystem. “Active Directory and Entra ID are the backbone of business operations, and still one of the most under-protected attack surfaces,” said Robert Bobel, founder and CEO at Cayosoft. “For the first time, every organization, no matter the size, can get free, real-time protection against identity threats. No licenses. No quotas. Just continuous defense and real-time alerts.” Read more: https://lnkd.in/gDQpz-ie

In a move that underscores how identity has become the battlefield of enterprise security, Silverfort today rolled out two major modules for its identity protection stack: Access Intelligence and Identity Graph & Inventory. Together, they bring deeper behavioral visibility, relational mapping, and context-driven control to a platform already tackling some of the hardest corners of identity risk. “The evolving threats around AI, non-human identities and privileged access require a unified platform that can discover, analyze and protect all identities, everywhere,” said Hed Kovetz, Silverfort’s CEO & Co-Founder. He pointed to recent waves of M&A activity in the identity/security space as affirmation that the market is demanding something more integrated. Read more: https://lnkd.in/giZGX-Hc

In a move that signals the next evolution of healthcare identity security, Imprivata has acquired Verosint, a fast-growing player in Identity Threat Detection and Response (ITDR). The acquisition underscores a growing industry shift toward continuous, adaptive identity assurance—where authentication is not a one-time checkpoint, but an intelligent, risk-driven process that protects every user, from clinicians on shared workstations to third-party contractors accessing critical data. “Understanding risk is an essential component of a modern access management solution, and this acquisition allows us to deliver greater value to our customers at a faster pace,” said Fran Rosch, CEO of Imprivata. “By integrating Verosint’s capabilities, our platform continuously validates that access is appropriate and authorized… boosting productivity, strengthening security, and reducing costs.” Read more: https://lnkd.in/gp8bqVbR

At its Risk Operations Conference (ROCon) in Houston, cybersecurity heavyweight Qualys unveiled a sweeping update to its Enterprise TruRisk Management (ETM) platform — a move that signals a turning point for risk management in an age increasingly defined by agentic AI and autonomous digital identities. For Qualys CEO Sumedh Thakar, this evolution is about more than keeping pace with automation — it’s about quantifying security in a world increasingly shaped by autonomous decision-making systems. “Agentic AI is transforming cybersecurity and forcing organizations to rethink how they manage risk. To stay ahead, they must proactively reduce risk, anticipate where attackers are most likely to strike, and clearly demonstrate the impact of their security investments,” Thakar said. “We’re empowering organizations to measure, communicate, and eliminate cyber risk in ways that drive real, verifiable risk reduction at the executive and board level.” Read more: https://lnkd.in/gxFaW36e

In the race to secure the modern enterprise, identity is emerging as the ultimate control point — and Saviynt is betting that AI is the key to managing it at scale. This week, the Los Angeles–based identity security company announced sweeping upgrades to its platform, introducing agentic AI capabilities designed to automate one of cybersecurity’s most intractable problems: governing every identity, human and otherwise, across sprawling digital ecosystems. “AI is reshaping enterprise security at every level. Identities no longer belong only to people – they now extend to non-human users like machines, applications, and AI agents,” said Sachin K Nayyar, CEO of Saviynt. “Our latest AI innovations ensure that every identity is governed with the same rigor, context, and automation.” Read more: https://lnkd.in/ghVnRYVA

Spanish fashion giant Mango is the latest retailer to be caught in the crossfire of a third-party security breach—this time through a compromised marketing services provider that exposed customer data. The incident underscores a growing problem for global brands: even the best-defended companies remain exposed through their digital supply chains. Peter Luban, Field CISO at AttackIQ, called Mango’s rapid response “reassuring,” noting that its segregation of financial data likely prevented a far worse outcome. “It’s difficult to prevent any data theft once an attacker has entered, but keeping banking information, credit card data, and account credentials unaffected is a sign that Mango had effective security defenses in place, likely learning from the previous attacks on prominent retail chains like Harrods and Co-op,” said Luban. “That being said, impacted individuals should not let their guards down. Attackers can still extort victims further by conducting phishing attacks using the stolen names, email addresses, and phone numbers. We’re currently seeing examples of the damage these ‘second-wave’ phishing attacks can reap in the aftermath of ShinyHunters’ widespread attacks on Salesforce.” Read more: https://lnkd.in/gwiiG7Fr

Radware is upping the ante in AI-powered cybersecurity. Less than a year after debuting AI SOC Xpert for cloud DDoS protection, the company has rolled out a major expansion that brings its agentic AI capabilities deeper into the heart of the Security Operations Center (SOC). “While the growing ecosystem of agentic capabilities provides vast opportunities for businesses, as AI systems gain autonomy the attack surface expands dramatically,” said Gabi Malka, Chief Operating Officer at Radware. “Radware is extending AI SOC Xpert to further protect applications in an AI agentic world. Think of it as an AI agent for the SOC, reducing MTTR by up to twenty times.” Read more: https://lnkd.in/giQ68ACh

In late January 2025, SimonMed Imaging—one of the largest outpatient medical imaging providers in the U.S.—became the latest victim in a wave of ransomware-driven healthcare breaches, confirming that more than 1.2 million patients had their data exposed following a sophisticated cyberattack attributed to the Medusa ransomware group. “This is a costly incident,” said Damon Small, board member at Xcape, Inc. “SimonMed responded by immediately updating patient credentials and authentication methods, implementing endpoint detection and response capabilities, terminating third-party vendor access, and offering additional identity theft protection services free of charge to its clients. While the post-incident actions taken by SimonMed are appropriate, those are things that should’ve been in place from the start.” “We have seen more and more healthcare organizations adopt continuous security posture testing as part of their defense strategy,” said Lydia Zhang, president and co-founder of Ridge Security Technology Inc. “Since advanced social engineering can bypass passwords and multi-factor authentication, organizations must build resilience into their internal systems by continuously reviewing policies, detecting threats, and patching critical vulnerabilities.” Read more: https://lnkd.in/gFCkRSZs