July Industry Insights

July Industry Insights

Throughout this blog post, we have put together some of the latest industry insights from us and our vendors in KedronUK’s monthly Techbrief! This month we share with you information on Navigating Cybersecurity Challenges, Improving Operational Resilience, Insights into the 2025 Ransomware Economy, and much more.

KedronUK

Navigating Cybersecurity Tool Choices in the Age of AI. (Report)
In collaboration with SenseOn, an AI-driven cybersecurity platform, we conducted a survey to better understand how organisations are navigating cybersecurity challenges.

We wanted to hear directly from security practitioners and decision-makers to learn what’s working, what’s not, and where they see the greatest opportunities and risks in today’s cybersecurity environment.

Read the full survey report here.

Forescout Technologies

Improve Operational Resilience with Harm Reduction. (Blog Post)
Data can drive smart decisions. It tells a truth. You can pay attention to what it’s saying and reprioritise. Or it can be recognised and put aside. But putting it aside in business doesn’t mean ignoring it. It means finding a defensible risk model. One that works for you, your board, your shareholders, your customers, and employees.

You always need to understand your operational resilience – and you need to get agreement on acceptable and unacceptable security, cyber-physical, and OT security tolerances.

Find out more here.

Infosim

Developments in the Fiber Optic and Telecommunications Industry in Germany. (Blog Post)
Increasing global connectivity through new technologies such as the Internet of Things (IoT) and 5G is generating growing demand for high-speed internet access and more reliable wireless networks. The expansion of the fiber optic infrastructure is of central importance for Germany’s digital transformation. The current expansion rate at the end of 2024 is 48.8%. The government, network operators and industry associations such as the German Broadband Association (BREKO) are actively committed to achieving a nationwide fiber coverage as fast as possible.

Read the full blog post here, where Infosim examine the dynamic changes in the telecommunications industry in Germany, analyses the resulting challenges for network service providers (NSPs) and outlines key solutions.

Keysight Technologies

What the EU Cyber Resilience Act means for Digital Product Makers. (Blog Post)
The EU Cyber Resilience Act (CRA) is set to become a defining regulation for all manufacturers and developers of digital products that touch the EU market. It introduces strict requirements for cybersecurity practices, risk management, and compliance procedures, affecting a wide range of stakeholders from software developers to hardware vendors. This article unpacks what the CRA is, who it affects, and how to get ready.

Find out more here.

Rapid7

Inside the Ransomware Economy in 2025. (Blog Post)
Building on insights from Rapid7’s Q1 and Q2 2025 ransomware trend reports, it’s clear that the ransomware economy continues to evolve – and not just in volume, but also in business maturity. As threat actors shift tactics, tools, and partnerships, defenders face a complex landscape shaped by affiliate churn, rising ransom demands, and increasingly sophisticated social engineering campaigns.

This blog explores the latest ransomware trends 2025, threat intelligence, and practical takeaways to help security teams stay ahead of the threat.

Read more here.

BullWall

Securing VMware Environments in an Era of Escalating Cyber Threats. (Blog Post)
Ransomware has evolved into one of the most disruptive threats in cybersecurity, and virtualised environments have become an increasingly frequent target. Organisations running VMware vSphere and ESXi platforms are now prime targets, facing not just financial losses but the potential collapse of critical business operations. With cybercriminals continuously innovating their attack strategies, security leaders must rethink their defences and adopt a proactive, automated approach to safeguarding their virtual infrastructures.

Find out more here.

ExtraHop

From Potential to Performance: Maximising AI’s Impact with Modern NDR. (Blog Post)
Artificial intelligence (AI) and machine learning have become foundational components for effective network detection and response (NDR), fundamentally reshaping how organisations defend against modern threats.

According to the 2024 Global Cyber Confidence Index, 38% of security decision-makers said using AI and machine learning to help manage and mitigate cyber risk is a top priority for their organization this year.

Despite this clear priority, enterprises are only just beginning to really understand the transformational benefits that intelligent NDR solutions can offer.

Find out more here.

Chris Booth

Chris Booth

Solution Architect

Listens to your problems, then identifies the best tools and products to build solutions.

Rethinking SecOps: A Smarter Way Without Traditional SIEMs

Rethinking SecOps: A Smarter Way Without Traditional SIEMs

Watch our latest webinar, in collaboration with our newest partner, SenseOn, where we explore how traditional SIEMs are increasingly falling short for modern security teams, too costly, too complex, and generating too much noise. 

What was discussed? 

In the webinar we explore how AI-driven security operations can deliver SIEM-like outcomes without the overhead.

1. Chris Booth, Solution Architect at KedronUK shares insights into the evolving challenges faced by security teams, and why it’s time to rethink the traditional SIEM approach

2. Brad Freeman, Director of Technology and Co-founder of SenseOn, discusses how technologies like agentic AI and root cause triangulation empower lean security teams to detect, investigate, and respond to threats faster – while enhancing the performance of your existing security investments. 

Chris Booth

Chris Booth

Solution Architect

Listens to your problems, then identifies the best tools and products to build solutions.

June 2025 Industry Insights!

June 2025 Industry Insights!

Throughout this blog post, we have put together some of the latest industry insights from us and our vendors in KedronUK’s monthly Techbrief! This month we share with you information on our latest webinar in collaboration with our newest Partner SenseOn, Strengthening Security and Operational Efficiency, Data Centre Monitoring, and much more.

KedronUK

Rethinking Security Operations: A Smarter Approach Without Traditional SIEM. (Webinar)
Traditional SIEMs are increasingly falling short for modern security teams—too costly, too complex, and generating too much noise. In this refreshed webinar, we’ll explore how AI-driven security operations can deliver SIEM-like outcomes without the overhead.

In our latest webinar, in partnership with SenseOn, we’ll explore how AI-driven security operations can deliver SIEM-like outcomes without the overheads.

Register for the webinar here.

Forescout Technologies

Close Gaps with Forescout & Keysight. (Blog Post)
Security teams face a growing challenge with unknown and unmanaged devices, legacy systems, and specialised IoT and OT assets. Unknown and unmanaged devices often lack inventory records or proper authentication, making them difficult to monitor and secure. Legacy systems run outdated software and lack security controls due to obsolete protocols and weak encryption. And IoT and OT devices weren’t normally built with security in mind. Many OT environments are air-gapped or isolated, so temperature, vibration, and flow sensors may not be inventoried by current systems. Some newer IoT and OT sensors even connect to the cloud, creating new outbound pathways that bypass perimeter controls.

Find out more here.

Infosim

Data Centre Monitoring with StableNet®. (Blog Post)
Data centre monitoring is the continuous process of collecting, analyzing, and interpreting data from critical infrastructure components within a data center. This includes overseeing IT equipment, power systems, environmental factors, and physical security.

The main goal is to keep the data center healthy, efficient, and reliable. It helps teams spot problems early and make smart decisions to avoid downtime.

Modern data centres utilise a combination of automated tools and manual techniques to get a complete view of their operations. This hybrid approach provides the best visibility into how a data center is functioning and what changes might be necessary for optimal performance.

Read more here.

Keysight Technologies

Malicious URLs in LLM Prompts and Responses: A new Vector for Abuse. (Blog Post)
A common feature in the AI agents, such as ChatGPT, Claude, Gemini, and others, is their ability to access and summarise external web content when provided with a web URL. Although this added feature is highly beneficial for tasks like research, staying updated on current events and retrieving useful information from a webpage, it also creates an opportunity for attackers to exploit it.

In this blog, Keysight explores the different ways malicious actors can exploit LLM-based AI agents by injecting malicious or obfuscated URLs – both within the user prompt and as part of the LLM’s generated response.

Read more here.

Rapid7

Speed, Scale and Immediate Action with Agentic AI Workflows for MDR. (Blog Post)
Many aspects of what makes an investigation successful are the best parts of human intelligence: judgment, contextual awareness, and strategic thinking. But the overwhelming demands of the current security landscape — with attacker breakout times now under an hour — narrow the window for these techniques to be applied at scale. But what if you could encode the instincts of an experienced analyst into every investigation and execute at machine speed?

Rapid7’s view of the future of cybersecurity combines deep human expertise with intelligent systems that perceive, reason, and act with autonomy. They’re now proud to introduce agentic AI workflows, powered by the Rapid7 AI Engine: a system that brings structured thinking, deep analysis, and scalable decision-making to every investigation within our next-gen SIEM.

Find out more here.

Chris Booth

Chris Booth

Solution Architect

Listens to your problems, then identifies the best tools and products to build solutions.

May 2025 Industry Insights!

May 2025 Industry Insights!

Throughout this blog post, we have put together some of the latest industry insights from us and our vendors in KedronUK’s monthly Techbrief! This month we share with you information on our lastest Partnership with SenseOn, Cybersecurity in Manufacturing, GenAI in Network Management, and much more.

KedronUK

New Partnership with SenseOn! (Press Release)
KedronUK is proud to announce our new partnership with SenseOn, a leader in AI-driven cybersecurity.

As a result of this agreement, we can now offer customers a unified cybersecurity platform that integrates data from existing tools combined with native visibility, delivering actionable intelligence to strengthen their defense and reduce security team’s workload.

Read more about the partnership here.

BullWall

Ransomware in Manufacturing. (Blog Post)
The manufacturing industry is consistently under attack from cyber criminals. Cybercriminals are launching relentless ransomware attacks to shut down factories, stop production lines, and hold the critical infrastructure they gained access to as hostage.

Manufacturing businesses and the interconnected supply chain are particularly vulnerable to ransomware attacks due to several factors:

  • Industrial Control Systems (ICS): Many manufacturing facilities rely on outdated ICS systems. Due to outdated ICS, there are many potential entry points for cybercriminals.
  • Interconnected Supply Chains: Modern manufacturing relies on complex, interconnected supply chains, creating more entry points and increasing the value of the ransom demanded.
  • High-Value Assets: Manufacturing facilities often house valuable equipment and often house something that can be even more valuable: intellectual property.
  • Production Halt: Ransomware attacks shut down production lines, leading to a high cost of downtime while also impacting the supply chain.

Find out more here.

Forescout Technologies

Cybersecurity in Manufacturing: Threats, Trends, and Preparation. (Blog Post)
The manufacturing sector has consistently ranked among the most heavily impacted by ransomware groups, and other threats, such as data breaches. The sector includes a wide range of industries – from automotive and electronics to chemicals and heavy machinery.

In Forescout’s 2024 Threat Roundup, manufacturing ranked fourth among the most targeted critical infrastructure sectors in 2024 – while the number of threat actors increase by 71%. Given this major increase, Forescout has decided to look closer.

Read more the full blog here.

Infosim

GenAI in Network Management. (Blog Post)
Since ChatGPT was introduced at the end of 2022, generative AI (genAI) has gained significant attention. Every day, developers are creating novel and powerful applications and use cases that showcase the potential capabilities of genAI. The technology behind ChatGPT, known as Large Language Models (LLMs), has received significant attention. With the increased availability of information and computing power, numerous new models have emerged. The application possibilities of genAI and LLMs have steadily expanded in recent years. So, it’s no wonder the demand for AI-driven network management with genAI is also growing. Let’s discuss how genAI and LLM can be beneficial to network management and operations.

Find out more here.

Keysight Technologies

Understanding ReNeLLM (Blog Post)
In the rapidly evolving field of AI and LLM security, where researchers and adversaries are constantly pushing boundaries to come up with new attack vectors, a new jailbreak technique known as ReNeLLM is gaining attention. This method employs a multi-layer strategy to fool LLMs by carefully crafting prompts that evade safety mechanisms. In this blog, Keysight discusses how this attack works under the hood by breaking down its two-stage attack methodology and its support in BreakingPoint.

Read more here.

Rapid7

Seeing is Securing: How Surface Command Expands MDR Visibility and Impact. (Blog Post)
Shadow IT, orphaned assets and internet-facing exposures, and unmanaged cloud services are all part of an expanding attack surface. And, according to Enterprise Strategy Group, 76% of organisations have experienced some type of cyberattack involving an unknown or unmanaged internet-facing asset – the kind of risk that stems from gaps in visibility. The result? A critical mismatch between the Attack Surface (what adversaries can reach), and the Detection Surface (what MDR services are configured to see and respond to).

To maximise the effectiveness of security operations, MDR must continually evolve. Read the full blog here.

Logpoint

The Impacket Arsenal: A Deep Dive into Impacket Remote Code Execution Tools. (Blog Post)
In today’s evolving threat landscape, we continually see new threat actors emerge and novel attack techniques surface. To keep pace, defenders must monitor the tactics, techniques and procedures (TTPs) leveraged by these threat actors. A critical part of this understanding comes from analysing the tools attackers use to achieve their objectives.

Find out more here.

Heimdal

Cybersecurity in an Age of Geopolitical Uncertainty: The European Advantage. (Blog Post)
In today’s tumultuous world, trust is just as critical as technology. Geopolitical tensions in 2025 are blurring the lines between allies and adversaries, forcing organisations to rethink whom they trust with their cybersecurity.

The blog post explores how geopolitical uncertainty impacts cybersecurity, the unique value European providers offer, and how Heimdal Security remains a trusted and committed partner for European businesses.

Read more here.

Chris Booth

Chris Booth

Solution Architect

Listens to your problems, then identifies the best tools and products to build solutions.

Enhancing OT / IoT Visibility with Keysight & Forescout

Enhancing OT / IoT Visibility with Keysight & Forescout

Catch up on our latest webinar, in partnership with Keysight Technologies & Forescout Technologies, where we explore how organisations can achieve comprehensive OT/IoT Visibility and enhance security through cutting-edge solutions.

What was discussed? 

1. Chris Booth, Solution Architect at KedronUK sets the scene for OT / IoT security challenges. 

2. Luc Alptuna Director EMEA & APAC Business Development at Keysight Technologies discusses how Keysight can enhance Forescouts capabilities by providing actionable insights and network visibility to secure your infrastructure. 

3. Hassan El Karhani, Field Technology Officer at Forescout Technologies touches on how they can deliver real-time asset visibility and enfore Zero Trust principles in Operational Technology (OT) and Internet of Things (IoT) environments.

Chris Booth

Chris Booth

Solution Architect

Listens to your problems, then identifies the best tools and products to build solutions.