Latest Blogs

In the manufacturing sector, the stakes have never been higher. Recent data shows that manufacturing is now the number one victim of cyber extortion globally, with 1,228 recorded incidents in a single year. That is a 32,2%increase over the previous year. NIS2 arrives at a time when industrial environments are under immense pressure, and it […]

TL;DR Explore the full CERT report Introduction Between early February and early April 2026, Orange Cyberdefense CERT was involved in separate malvertising incidents affecting three European clients. All three infection chains observed by our analysts revealed the use of the SmokedHam backdoor, delivered through malvertising and masquerading as common utility installers for RVTools or Remote Desktop Manager (RDM).  In one particular

Today’s organizations face a major challenge of identifying and understanding external attack surfaces. Hybrid cloud environments, work-from-anywhere capabilities, GenAI usage and a growing number of public-facing assets lead to uncertainty around data and IP protection. In addition, the average organization employs around 45 security tools, increasing the complexity of identifying misconfigurations and prioritizing critical vulnerabilities.

Data security posture management (DSPM) has quickly moved from a nice-to-have to a baseline requirement. But the space is getting crowded. Many tools deliver visibility without meaningful risk reduction. Not all are truly cloud-native, and speed of deployment has become a deciding factor. To keep pace with today’s fast-moving data environments, DSPM must be cloud-native,

When we talk about identity, we still tend to picture people: employees, contractors, partners logging in from laptops. But in most modern organizations, the fastest‑growing identity population isn’t human at all. It’s machines, workloads, applications and automation. These are known as non-human identities (NHIs), and they now outnumber human users in many organizations anywhere from

Identity has become the control point of modern security – and the biggest source of enterprise risk. Organizations have invested heavily in IAM platforms, IGA tools, PAM solutions, SSO, MFA and Zero Trust. Yet despite years of spend and effort, many identity initiatives still stall or fail to produce meaningful, measurable outcomes. Why? Most identity

Data is one of the most valuable and vulnerable assets in today’s digital world. From accidental file exposures to insider threats and ransomware, leaks are growing in scale and sophistication. Prevention requires an initiative-taking strategy that leverages technology, effective governance and robust security practices. This year’s Data Privacy Week theme, “Take Control of Your Data,” reminds us to

Cloud adoption promised speed, resilience and innovation. For many organizations, it has delivered on that promise. It has also introduced unprecedented complexity, expanding risk and rising costs. As enterprises scale across multiple cloud platforms, integrate AI-driven workloads and accelerate DevSecOps practices, cloud security has become one of the most critical disciplines shaping business outcomes today.

Blockchain often gets sold as “a better database,” plus a bit of sparkle. That story is convenient, but it breaks projects. Blockchain Development Services create value in a narrow set of situations: multiple parties need a shared record, nobody wants a single party to own the truth, and disagreements are expensive. Outside that zone, blockchain tends to

Crypto is no longer this experimental corner of the internet you could afford to ignore. It is infrastructure now. Real money, real systems, real consequences. And predictably, the attacks have caught up. In early 2025 alone, crypto-related cybercrime passed $1.9B. That number gets thrown around a lot, but what matters more is how those attacks are