In 2023, a threat actor launched a social engineering campaign on Retool involving smishing & credential harvesting, leading them to a one-time password token.

Why do manual identity workflows continue to exist, when the consequences of getting them wrong are so serious and when ...

Elevate your customer communications. Elixir’s revolutionary, cloud-native SaaS CCM Solution is set to change the CCM landscape. Break down silos, foster collaboration, and create personalized ...

A Commitment to Innovation and Care: How Houston Eye Is Building Cyber Resilience with Illumio. “Before Illumio, it was a matter of when, not if, a breach would happen,” Hornberger shared. “Now, if ...

Email attacks on financial services rose 25% year-over-year. Learn why FinServ is a top target and how threat actors exploit trust to deceive employees.

This comprehensive glossary combines all the glossaries created by CSA Working Groups and research contributors into one place. If you have a question or need other assistance please reach out to ...

Security remediation involves identifying, evaluating, and addressing security vulnerabilities to mitigate potential risks. In the ever-evolving landscape of cybersecurity, this remains a critical ...

This survey analyzes the level of adoption of cloud solutions and requirements from financial institutions’ perspectives. The study analyzed the cloud usage of financial institutions across three main ...

These organizations have signed the CSA AI Trustworthy Pledge, demonstrating their commitment to responsible AI development and deployment. Each signed organization has affirmed their alignment with ...

Traditional cybersecurity risk management is becoming ineffective. This survey report shows how data security risk assessment practices still need to change.

This mapping aims to identify the alignment between the AICM’s controls and the EU AI Act’s requirements, identifying areas of full, partial, or no coverage. Each control in the AICM is compared ...

Learn the core concepts, best practices and recommendation for securing an organization on the cloud regardless of the provider or platform. Covering all 14 domains from the CSA Security Guidance v4, ...