Andras Cser

Back in 2007, the first US federal CIO, Vivek Kundra, was appointed. Shortly after in December of 2010, he launched one of the world’s first “cloud-first” initiatives, making many US federal agencies such as the General Services Administration (GSA) some of the earlier innovators in this arena.

From live goats and puppies to robot dogs and animal costumes, the RSAC Conference 2025 delivered some unexpected surprises. But it also delivered the usual insight into various trends in the security market today. Find out more in this RSAC review.

OpenAI announced that it will require organizations to complete an identity verification (IDV) process to verify their organization’s identity before being allowed to access the latest OpenAI models. Identity verification will likely require developers to digitally verify themselves using government-issued photo ID from permitted countries and prove their affiliation with their organization. Forrester expects that […]

Loads of news came out of a hot Google Cloud Next 2025 in Las Vegas. The most notable announcements? Sovereign AI solutions on-prem, developer innovations that meet timely needs, very applicable multimodality for content and CX, and new elements for building the enterprise agentic AI stack.

Learn what the largest-ever acquisition in cybersecurity means both for Google and the CNAPP space.

Last week, password wallet vendor LastPass experienced an outage. All LastPass systems and services have since been restored and are up and running. It is worth noting that this is not the first incident involving password wallet products. Past incidents include: LastPass had an outage in 2024. PasswordState had a malicious DLL cause a breach […]

The commercial availability of quantum computers that can compromise traditional asymmetric cryptography is still five to 10 years away. But security and risk (S&R) professionals must assess and prepare for the impact of quantum security now.

In the last two years, growing concerns around the proliferation of and advances in deepfakes has raised concerns around their potential to impede adoption of facial and voice biometrics.

Forrester's security and risk research team breaks down the key highlights and implications of former US President Joe Biden’s 2025 Executive Order (EO) 14144 on strengthening security, improving accountability for software and cloud service providers, and promoting innovation, including use of emerging technologies.

Cybersecurity platform provider CrowdStrike announced plans to acquire Adaptive Shield, a SaaS security posture management (SSPM) vendor. Some sources reported the purchase price to be around $300 million. If that purchase price is accurate, based on Forrester’s estimates of Adaptive Shield’s current revenue, that price represents an approximately 12–15x revenue multiplier and 6 times more […]

The International Air Transport Association (IATA) — the trade association for world airlines, representing over 330 airlines and over 80% of global air traffic — announced a new framework and plans for using decentralized digital identity (DDID) to provide end-to-end travel experiences for domestic and international passengers.

Bhutan became the first country to join the Global Acceptance Network (GAN), a foundation that aims to operate a nonprofit decentralized digital identity (DDID) network. Learn more about the use cases for GAN and how it can become successful in this post.

Last week, Visa announced the acquisition of Featurespace, a UK-based enterprise fraud management and anti-money-laundering (AML) vendor.

Looking for ways to improve your fraud management capabilities? Learn six key ways generative AI can help in this preview of a session at our upcoming Security & Risk Summit in Baltimore December 9-11.

Crises such as the one triggered by CrowdStrike's global outage shine a bright light on many aspects of business and technology. Our new report provides a thorough overview of recommended actions for tech leaders as they face the unfolding long-term repercussions.

Technology leaders woke up this morning to find that a software update by cybersecurity vendor CrowdStrike had gone badly wrong. Get updates on the steps that your organization should take now and in the long term as a result of the CrowdStrike outage.

After a previous sale fell through, Fortinet has announced the acquisition of Lacework for an undisclosed amount, catching some customers by surprise. Get a detailed analysis of the deal including side-by-side product comparisons in this post.

Cisco recently announced a new network and cloud security platform, called Hypershield. Find out what benefits it provides and why organizations should pay close attention to its development going forward.

Cloud detection and response is not a market category — it is a feature of existing cloud tools. Get a formal definition and more in this post previewing a new report.