The Financial Sector’s Data Crisis: Why “Basic” Failures Are Fueling Advanced Threats

Keystrike is now SOC 2 Type II certified—independently proving our security controls are followed daily to protect customer data.

According to IBM’s last Cost of a Data Breach Report, 71% of breaches aren't discovered for months, and the average dwell time is 241 days. 

The U.S. water and wastewater sector is a lifeline service, essential for public health, economic continuity, and emergency response. In 2025, the threat environment continued to intensify.

According to new data highlighted by SecureWorld, 82% of financial services organizations suffered a data breach or leak in the past 12 months. That’s staggering.

MFA, EDR, and PAM, oh my! Despite having more tools and controls than ever, we still have breaches. What's really happening?

SIEMs are a great tool for investigation after an event occurred but what if we could use them to prevent the event in the first place?

SIEMs are a critical part of our security infrastructure but between false positives and response time, they're not nearly enough. How can we change that?

Scattered Spider is rewriting the cybercrime playbook. This group doesn't depend on malware or brute-force attacks; they exploit trust.

Unfortunately, Cozy Bear is one of the most innovative and creative APT groups out there. Instead of just adding more tools, let's see how they bypass the ones we have and how to counter them.

Join government, defense, and cybersecurity leaders for an executive breakfast briefing on one of today’s most urgent challenges: the rise of state-sponsored cyberattacks targeting Western critical in

While we've hardened our perimeters and identity controls, our workstations are still great targets for motivated attackers.

The danger to your infrastructure isn't in your protocols. Every protocol - yes, even Telnet - has legitimate use cases but you need to consider how to protect them.

PowerShell is one of the most powerful tools out there regardless of who's using it. While we can't remove it, can we confirm who's using it?

Telnet is dead. Right. Right? It turns out that telnet is still active in many OT networks by default. You may not have known but attackers do.

SSH is the de facto tool on effectively every system from the last 20 years. But while it's a great tool, it's also the source of many of our problems.

While CISA has warned us about Iranian cyber threats, the events of this weekend put it in the forefront everyone's mind. Dive in to find out how to protect yourself.

In incident response, you've seen the pattern before: An attacker lands on a system and within hours, multiple systems are compromised and every alert traces back to one thing: an RDP session.

WaterISAC is the only security information clearing house for water and wastewater sector. Serving hundreds of organizations worldwide and mitigates threats that put our common infrastructure at risk.

Throughout our deep dives into the various Typhoon APT groups, we saw that our existing controls still aren't enough. Instead of adding more defenses on the perimeter, let's think about some depth.

We're excited to announce the third edition of Skjaldtorg: Iceland’s Cybersecurity Meetup, a community-driven forum for professionals leading cybersecurity efforts in their organizations.

Cybersecurity threats don’t stand still - they move. After gaining initial access, adversaries use to move through a network aiming to escalate privileges, and access sensitive data.

All of our security tools, practices, and controls are based on a series of assumptions. What if those assumptions are wrong? Do our tools still protect our systems?

Volt Typhoon has quietly moved through critical infrastructure networks, unseen and unchallenged. Unlike gangs that try for disruptions, Volt Typhoon takes a stealth-first approach.

Attackers quietly living off the land is one of the most devastating threats to our systems. How do attackers manage it without detection?

The adversaries targeting water infrastructure are skilled, organized, and often well-funded. Understanding how they attack is as important as why they attack.

For years,Chinese state-sponsored attackers have moved through networks of the most critical industries—telecommunications, energy,defense, and government. Not to vandalize,not to ransom,but to wait.

PAM helped us limit the scope and timing of access but - like in any arms race - our opposition learned and adapted to a new class of attacks.

Cybercriminals are relentless and resourceful in their pursuit of vulnerabilities, and company employees and contractors often find themselves at the front line.

Multi-factor authentication (MFA) is a critical line of defense in cybersecurity, but the trust we place in its underlying infrastructure can be exploited.

It’s time for our second informal Icelandic forum for cybersecurity. Skjaldtorg: Iceland’s Cybersecurity Meetup, aimed at professionals responsible for cybersecurity within their organizations.

Multi-factor authentication (MFA) has long been seen as a strong defense against unauthorized access.

We are pleased to announce Skjaldtorg: Iceland’s Cybersecurity Meetup, aimed at professionals responsible for cybersecurity within their organizations.