Resources

Cybersecurity white papers, data sheets, webinars, videos and more

Resource Library

Are Open Ports Putting Your Network at Risk?

Blog

Are Open Ports Putting Your Network at Risk?
Open ports can expose your organization to critical threats like ransomware, botnets, and data breaches. Learn how to identify, assess, and secure exposed services in your environment to reduce cyber risk in 2025.
What Is DLL Hijacking? Understanding and Preventing the Threat

Blog

What Is DLL Hijacking? Understanding and Preventing the Threat
DLL hijacking is a stealthy attack technique that exploits how Windows loads Dynamic Link Libraries. Learn how it works, what risks it poses, and how to prevent DLL hijacking in enterprise environments.
HTTPS vs. HTTP: Why Secure Connections Matter in 2025

Blog

HTTPS vs. HTTP: Why Secure Connections Matter in 2025
This blog unpacks the differences between HTTPS and HTTP and outlines key strategies for organizations to safeguard user data through proper certificate management and secure configuration.
How Does PGP Encryption Work—and Is It Still Secure in 2025?

Blog

How Does PGP Encryption Work—and Is It Still Secure in 2025?
PGP encryption remains a foundational technology for secure communication. This blog explains how it works and offers guidance for encryption use.
What Is Nmap and How Can It Help Identify Network Vulnerabilities?

Blog

What Is Nmap and How Can It Help Identify Network Vulnerabilities?
Nmap is a powerful open-source tool for network scanning and vulnerability detection. Learn how security teams use Nmap to discover hosts, assess risks, and strengthen cybersecurity postures.
What Is HTTPS and Why Is It Still Essential for Cybersecurity in 2025?

Blog

What Is HTTPS and Why Is It Still Essential for Cybersecurity in 2025?
HTTPS is not just about website encryption—it underpins secure digital transactions, protects privacy, and builds trust online. Discover why HTTPS is still vital for cybersecurity in 2025.
Threat-Informed TPRM
How File Transfer Software Became the #1 Third-Party Breach Vector

Blog

How File Transfer Software Became the #1 Third-Party Breach Vector
File transfer software vulnerabilities now lead third-party breaches. Learn how these tools are exploited and how to reduce your supply chain exposure through risk management.
Cybersecurity
What Is HSTS and How Does It Strengthen HTTPS Security?

Blog

What Is HSTS and How Does It Strengthen HTTPS Security?
HSTS is a browser security policy that protects users from HTTP downgrade attacks. Learn how HSTS works and why every secure website needs it in 2025.
Cybersecurity
Typhoon-like gang slinging TLS certificate ‘signed’ by the Los Angeles Police Department

Resources

Typhoon-like gang slinging TLS certificate ‘signed’ by the Los Angeles Police Department
Learn more in this resource.
STRIKE News
How Do You Write a Strong Information Security Policy in 2025?

Blog

How Do You Write a Strong Information Security Policy in 2025?
A strong information security policy in 2025 must go beyond compliance. Learn how to build a policy that supports risk management, zero trust, and Third Party Risk Management (TPRM) .
What You Need To Know About DeepSeek Security Issues and Vulnerabilities

Blog

What You Need To Know About DeepSeek Security Issues and Vulnerabilities
DeepSeek is a powerful AI model with significant enterprise applications. But it also introduces security risks, according to SecurityScorecard STRIKE Team’s research.
What Is a Web Application Firewall and Do You Need One?

Blog

What Is a Web Application Firewall and Do You Need One?
Web application firewalls help protect your digital infrastructure from attacks like SQL injection and cross-site scripting. Learn what a WAF is, how it works, and whether your organization needs one in 2025.
Erlang Erlang/OTP SSH Server Missing Authentication for Critical Function Vulnerability (CVE-2025-32433) Added to CISA KEV

STRIKE

Erlang Erlang/OTP SSH Server Missing Authentication for Critical Function Vulnerability (CVE-2025-32433) Added to CISA KEV
Erlang Erlang/OTP SSH Server Missing Authentication for Critical Function Vulnerability (CVE-2025-32433)
STRIKE Alert
What Are the Best Tools and Techniques to Recover from Ransomware in 2025?

Blog

What Are the Best Tools and Techniques to Recover from Ransomware in 2025?
Explore top tools and proven recovery techniques to respond to ransomware in 2025. Learn how to restore operations quickly and minimize long-term damage.
How Does Role-Based Access Control (RBAC) Improve Organizational Security?

Blog

How Does Role-Based Access Control (RBAC) Improve Organizational Security?
Role-Based Access Control (RBAC) minimizes risk by assigning permissions based on roles. Learn how RBAC improves enterprise security, compliance, and operational efficiency.
How Do You Stay FERPA Compliant? A Cybersecurity Guide for IT Leaders

Blog

How Do You Stay FERPA Compliant? A Cybersecurity Guide for IT Leaders
Learn how to maintain FERPA compliance in 2025 with this cybersecurity guide for IT leaders. Understand key requirements, common risks, and practical steps to protect student data.
What Is Doxing and How Can You Prevent It?

Blog

What Is Doxing and How Can You Prevent It?
Doxing is the malicious exposure of private information online. Learn how it works, the risks it poses to individuals and enterprises, and how to prevent it.
What Are Must-Do Security Steps When Setting Up a New Server?

Blog

What Are Must-Do Security Steps When Setting Up a New Server?
Setting up a new server? Follow this essential security checklist to harden your system, avoid misconfigurations, and defend against common threats from the start.
What Is CIFS and How Does It Impact Enterprise File System Security?

Blog

What Is CIFS and How Does It Impact Enterprise File System Security?
CIFS is an aging file-sharing protocol still found in enterprise environments. Learn what CIFS is, the security risks it introduces, and how to manage those risks in 2025.
Kerberos vs. LDAP: Choosing the Right Enterprise Protocol

Blog

Kerberos vs. LDAP: Choosing the Right Enterprise Protocol
Kerberos and LDAP serve different roles in enterprise security. This guide compares their features, use cases, and integration with modern access control strategies.
What Are Lessons Learned from the Biggest Financial Sector Cyber Breaches?

Blog

What Are Lessons Learned from the Biggest Financial Sector Cyber Breaches?
Explore the biggest cybersecurity breaches in the financial industry and learn the critical lessons organizations must apply to prevent similar incidents in 2025.