<?xml version="1.0" encoding="UTF-8"?><rss version="2.0"
	xmlns:content="http://purl.org/rss/1.0/modules/content/"
	xmlns:wfw="http://wellformedweb.org/CommentAPI/"
	xmlns:dc="http://purl.org/dc/elements/1.1/"
	xmlns:atom="http://www.w3.org/2005/Atom"
	xmlns:sy="http://purl.org/rss/1.0/modules/syndication/"
	xmlns:slash="http://purl.org/rss/1.0/modules/slash/"
	>

<channel>
	<title>Heimdal Security Blog</title>
	<atom:link href="https://heimdalsecurity.com/blog/feed/" rel="self" type="application/rss+xml" />
	<link></link>
	<description>A blog about all things internet security</description>
	<lastBuildDate>Tue, 30 Jun 2026 15:34:41 +0000</lastBuildDate>
	<language>en-US</language>
	<sy:updatePeriod>
	hourly	</sy:updatePeriod>
	<sy:updateFrequency>
	1	</sy:updateFrequency>
	<generator>https://wordpress.org/?v=6.9.4</generator>
	<item>
		<title>How Dynamic Defense shuts an attacker out without shutting down the business</title>
		<link>https://heimdalsecurity.com/blog/how-dynamic-defense-shuts-attacker-out/</link>
		
		<dc:creator><![CDATA[Morten Kjaersgaard]]></dc:creator>
		<pubDate>Fri, 26 Jun 2026 15:49:14 +0000</pubDate>
				<category><![CDATA[Endpoint security]]></category>
		<guid isPermaLink="false">https://heimdalsecurity.com/blog/?p=87796</guid>

					<description><![CDATA[<p>AI has handed hackers a resource advantage. Winning it back means spending your own resources far more precisely, and that&#8217;s the strategy we call Dynamic Defense. The principle is simple. Contain the threat just enough, for just long enough, until the risk is removed. This piece shows how that works as a five-stage loop that [&#8230;]</p>
<p>The post <a href="https://heimdalsecurity.com/blog/how-dynamic-defense-shuts-attacker-out/">How Dynamic Defense shuts an attacker out without shutting down the business</a> appeared first on <a href="https://heimdalsecurity.com/blog">Heimdal Security Blog</a>.</p>
]]></description>
		
		
		
		<image>https://heimdalsecurity.com/blog/how-dynamic-defense-shuts-attacker-out/dynamic-defense-featured-image/</image><subtitle></subtitle>	</item>
		<item>
		<title>Static security has run out of road. The case for Dynamic Defense</title>
		<link>https://heimdalsecurity.com/blog/case-dynamic-defense/</link>
		
		<dc:creator><![CDATA[Morten Kjaersgaard]]></dc:creator>
		<pubDate>Fri, 26 Jun 2026 10:10:38 +0000</pubDate>
				<category><![CDATA[Endpoint security]]></category>
		<guid isPermaLink="false">https://heimdalsecurity.com/blog/?p=87789</guid>

					<description><![CDATA[<p>AI has flipped the economics of cybersecurity in the attacker&#8217;s favor. For most of the last decade, defenders held the cost advantage, buying down their risk with a stack of largely static controls. That advantage is gone, and winning it back is the central problem facing every security team in 2026. I think the answer [&#8230;]</p>
<p>The post <a href="https://heimdalsecurity.com/blog/case-dynamic-defense/">Static security has run out of road. The case for Dynamic Defense</a> appeared first on <a href="https://heimdalsecurity.com/blog">Heimdal Security Blog</a>.</p>
]]></description>
		
		
		
		<image>https://heimdalsecurity.com/blog/case-dynamic-defense/featured-image-3/</image><subtitle></subtitle>	</item>
		<item>
		<title>Breaking the MSP Echo Chamber: The Power of Community</title>
		<link>https://heimdalsecurity.com/blog/msp-community-breaking-echo-chamber/</link>
		
		<dc:creator><![CDATA[Livia Gyongyoși]]></dc:creator>
		<pubDate>Wed, 24 Jun 2026 11:46:03 +0000</pubDate>
				<category><![CDATA[Industry trends]]></category>
		<category><![CDATA[Managed Service Providers]]></category>
		<category><![CDATA[MSP Security Playbook]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://heimdalsecurity.com/blog/?p=87772</guid>

					<description><![CDATA[<p>MSPs spend too much time talking to other MSPs and not enough time talking to the people they&#8217;re supposed to serve.  That’s Paul Croker’s view of some of the channel’s biggest growth problems.   While most industry events bring technology professionals together, they rarely put them in the same room as the business leaders making [&#8230;]</p>
<p>The post <a href="https://heimdalsecurity.com/blog/msp-community-breaking-echo-chamber/">Breaking the MSP Echo Chamber: The Power of Community</a> appeared first on <a href="https://heimdalsecurity.com/blog">Heimdal Security Blog</a>.</p>
]]></description>
		
		
		
		<image>https://heimdalsecurity.com/blog/msp-community-breaking-echo-chamber/new-blog-cover-7-3/</image><subtitle>An Interview with Paul Croker</subtitle>	</item>
		<item>
		<title>How attackers built a RAT on a Windows machine using its own .NET compiler</title>
		<link>https://heimdalsecurity.com/blog/how-attackers-built-rat-windows-machine-net-compiler/</link>
		
		<dc:creator><![CDATA[Danny Mitchell]]></dc:creator>
		<pubDate>Mon, 22 Jun 2026 14:37:39 +0000</pubDate>
				<category><![CDATA[Latest threats]]></category>
		<guid isPermaLink="false">https://heimdalsecurity.com/blog/?p=87765</guid>

					<description><![CDATA[<p>In May 2026 an attacker compromised a UK medical practice endpoint without delivering a single malicious file. They used PowerShell and the .NET compiler built into Windows to build a Remcos remote access trojan on the machine itself, so signature antivirus had no known sample to match. The thing that caught it was DNS filtering, [&#8230;]</p>
<p>The post <a href="https://heimdalsecurity.com/blog/how-attackers-built-rat-windows-machine-net-compiler/">How attackers built a RAT on a Windows machine using its own .NET compiler</a> appeared first on <a href="https://heimdalsecurity.com/blog">Heimdal Security Blog</a>.</p>
]]></description>
		
		
		
		<image>https://heimdalsecurity.com/blog/how-attackers-built-rat-windows-machine-net-compiler/heimdal-compiler-rat-featured-1/</image><subtitle></subtitle>	</item>
		<item>
		<title>Attacker enables RDP, creates admin, erases evidence in ten seconds</title>
		<link>https://heimdalsecurity.com/blog/attacker-enables-rdp-admin-erases-evidence-seconds/</link>
		
		<dc:creator><![CDATA[Danny Mitchell]]></dc:creator>
		<pubDate>Mon, 22 Jun 2026 08:28:46 +0000</pubDate>
				<category><![CDATA[Latest threats]]></category>
		<guid isPermaLink="false">https://heimdalsecurity.com/blog/?p=87754</guid>

					<description><![CDATA[<p>At 06:34am on 2 June 2026, an attacker logged on to a customer&#8217;s network. In a single automated burst, they switched on remote desktop and created a rogue administrator account. And deleted the evidence behind them.  The intrusion reached 34 endpoints and was over in under ten seconds.  Heimdal Extended Threat Protection (XTP) and Ransomware [&#8230;]</p>
<p>The post <a href="https://heimdalsecurity.com/blog/attacker-enables-rdp-admin-erases-evidence-seconds/">Attacker enables RDP, creates admin, erases evidence in ten seconds</a> appeared first on <a href="https://heimdalsecurity.com/blog">Heimdal Security Blog</a>.</p>
]]></description>
		
		
		
		<image>https://heimdalsecurity.com/blog/attacker-enables-rdp-admin-erases-evidence-seconds/10-second-to-full-persistance-featured-image-2/</image><subtitle></subtitle>	</item>
		<item>
		<title>The State of AI Risk Management in 2026</title>
		<link>https://heimdalsecurity.com/blog/state-ai-risk-management/</link>
		
		<dc:creator><![CDATA[Danny Mitchell]]></dc:creator>
		<pubDate>Tue, 16 Jun 2026 07:00:15 +0000</pubDate>
				<category><![CDATA[Industry trends]]></category>
		<category><![CDATA[AI]]></category>
		<guid isPermaLink="false">https://heimdalsecurity.com/blog/?p=87617</guid>

					<description><![CDATA[<p>Key findings US executives are more than four times as confident as their own practitioners that AI risk is under control, 29% to 7%. The UK gap runs the same direction, 18% to 11%. The board&#8217;s view and the team&#8217;s view aren&#8217;t the same view. ChatGPT sits in 7 in 10 IT estates and Microsoft [&#8230;]</p>
<p>The post <a href="https://heimdalsecurity.com/blog/state-ai-risk-management/">The State of AI Risk Management in 2026</a> appeared first on <a href="https://heimdalsecurity.com/blog">Heimdal Security Blog</a>.</p>
]]></description>
		
		
		
		<image>https://heimdalsecurity.com/blog/state-ai-risk-management/ai-risk-management-report/</image><subtitle>1,000 IT professionals say AI is outpacing the controls meant to manage it.</subtitle>	</item>
		<item>
		<title>Heimdal Survey: Executives Four Times More Confident About AI Risk Than the Teams Managing It</title>
		<link>https://heimdalsecurity.com/blog/heimdal-ai-risk-management-survey-executive-confidence-gap/</link>
		
		<dc:creator><![CDATA[Madalina Popovici]]></dc:creator>
		<pubDate>Mon, 15 Jun 2026 12:52:53 +0000</pubDate>
				<category><![CDATA[All things Heimdal]]></category>
		<category><![CDATA[News]]></category>
		<category><![CDATA[press release]]></category>
		<guid isPermaLink="false">https://heimdalsecurity.com/blog/?p=87745</guid>

					<description><![CDATA[<p>London, UK, 16 June 2026 &#8211; Heimdal today published The State of AI Risk Management in 2026, a survey of 1,000 IT professionals across the United Kingdom and the United States. The report&#8217;s headline finding is a divide inside the same organizations: the closer a person sits to the day-to-day running of AI, the less [&#8230;]</p>
<p>The post <a href="https://heimdalsecurity.com/blog/heimdal-ai-risk-management-survey-executive-confidence-gap/">Heimdal Survey: Executives Four Times More Confident About AI Risk Than the Teams Managing It</a> appeared first on <a href="https://heimdalsecurity.com/blog">Heimdal Security Blog</a>.</p>
]]></description>
		
		
		
		<image>https://heimdalsecurity.com/blog/heimdal-ai-risk-management-survey-executive-confidence-gap/the-state-of-ai-risk-management-press-release-visual/</image><subtitle>New Heimdal research shows AI adoption is moving faster than security controls, exposing a confidence gap between executives and IT teams.</subtitle>	</item>
		<item>
		<title>Your Next Insider Threat May Be an AI Coworker</title>
		<link>https://heimdalsecurity.com/blog/insider-threat-ai-coworker/</link>
		
		<dc:creator><![CDATA[Madalina Popovici]]></dc:creator>
		<pubDate>Fri, 12 Jun 2026 15:09:41 +0000</pubDate>
				<category><![CDATA[Cybersecurity interviews]]></category>
		<category><![CDATA[Cybersecurity News]]></category>
		<guid isPermaLink="false">https://heimdalsecurity.com/blog/?p=87723</guid>

					<description><![CDATA[<p>Heimdal sysadmin Alex Panait spent weeks testing Claude Cowork inside the company. His verdict was blunt. It felt like onboarding a junior employee with no manager, no scoped access, and no clear accountability when something goes wrong. Except this one can delete your SharePoint. That is the uncomfortable reality behind autonomous AI desktop assistants. They [&#8230;]</p>
<p>The post <a href="https://heimdalsecurity.com/blog/insider-threat-ai-coworker/">Your Next Insider Threat May Be an AI Coworker</a> appeared first on <a href="https://heimdalsecurity.com/blog">Heimdal Security Blog</a>.</p>
]]></description>
		
		
		
		<image>https://heimdalsecurity.com/blog/insider-threat-ai-coworker/your-next-insider-threat-may-be-an-ai-coworker-2/</image><subtitle></subtitle>	</item>
		<item>
		<title>The OSI Model and Its Two Missing Layers</title>
		<link>https://heimdalsecurity.com/blog/missing-layers-osi-model/</link>
		
		<dc:creator><![CDATA[Adam Pilton]]></dc:creator>
		<pubDate>Fri, 12 Jun 2026 12:29:52 +0000</pubDate>
				<category><![CDATA[Industry trends]]></category>
		<category><![CDATA[Managed Service Providers]]></category>
		<category><![CDATA[MSP Security Playbook]]></category>
		<guid isPermaLink="false">https://heimdalsecurity.com/blog/?p=87712</guid>

					<description><![CDATA[<p>Cybersecurity failures now happen beyond the OSI stack. Faulty governance, the human factor, and AI tools create new attack surfaces. After seven years working across cybersecurity, cloud infrastructure, and Zero Trust architecture, Jayal Yadav explains how we got here and what organizations still get wrong. “The original seven layers of the OSI model still matter. [&#8230;]</p>
<p>The post <a href="https://heimdalsecurity.com/blog/missing-layers-osi-model/">The OSI Model and Its Two Missing Layers</a> appeared first on <a href="https://heimdalsecurity.com/blog">Heimdal Security Blog</a>.</p>
]]></description>
		
		
		
		<image>https://heimdalsecurity.com/blog/missing-layers-osi-model/2-missing-layers-of-the-osi-model/</image><subtitle>Talking Governance, AI, and the Future of Cybersecurity with Jayal Yadav</subtitle>	</item>
		<item>
		<title>Heimdal® Marks Six Years of Consecutive ISAE 3000 SOC 2 Type II Certification</title>
		<link>https://heimdalsecurity.com/blog/heimdal-sixth-consecutive-isae-3000-soc-2-type-ii-certification/</link>
		
		<dc:creator><![CDATA[Madalina Popovici]]></dc:creator>
		<pubDate>Mon, 08 Jun 2026 11:29:36 +0000</pubDate>
				<category><![CDATA[All things Heimdal]]></category>
		<category><![CDATA[Cybersecurity News]]></category>
		<category><![CDATA[press release]]></category>
		<guid isPermaLink="false">https://heimdalsecurity.com/blog/?p=87681</guid>

					<description><![CDATA[<p>COPENHAGEN, Denmark, June 8, 2026 – Heimdal has achieved ISAE 3000 SOC 2 Type II certification for the sixth consecutive year, reflecting the company&#8217;s continued focus on operational security, accountability, and data protection. The 2026 audit covered the period from 1 April 2025 to 31 March 2026 and examined Heimdal&#8217;s controls across access management, data [&#8230;]</p>
<p>The post <a href="https://heimdalsecurity.com/blog/heimdal-sixth-consecutive-isae-3000-soc-2-type-ii-certification/">Heimdal® Marks Six Years of Consecutive ISAE 3000 SOC 2 Type II Certification</a> appeared first on <a href="https://heimdalsecurity.com/blog">Heimdal Security Blog</a>.</p>
]]></description>
		
		
		
		<image>https://heimdalsecurity.com/blog/heimdal-sixth-consecutive-isae-3000-soc-2-type-ii-certification/isae-3000-blog-cover/</image><subtitle></subtitle>	</item>
		<item>
		<title>AI Will Absorb 99.98% of SOC Triage Within a Year, as 79% of IT teams brace for AI-driven workload shift</title>
		<link>https://heimdalsecurity.com/blog/ai-to-absorb-99-percent-of-soc-triage-within-a-year/</link>
		
		<dc:creator><![CDATA[Madalina Popovici]]></dc:creator>
		<pubDate>Tue, 12 May 2026 09:41:23 +0000</pubDate>
				<category><![CDATA[All things Heimdal]]></category>
		<category><![CDATA[Industry trends]]></category>
		<category><![CDATA[News]]></category>
		<category><![CDATA[press release]]></category>
		<guid isPermaLink="false">https://heimdalsecurity.com/blog/?p=87594</guid>

					<description><![CDATA[<p>COPENHAGEN, DENMARK, 12 May 2026 — Heimdal&#8217;s managed SOC processes three million alerts a month. In the year ahead, fewer than 500 of those, less than 0.02%, are expected to need a human analyst. That&#8217;s the forecast from Heimdal founder Morten Kjaersgaard, based on the trajectory of AI Wingman SOC as it absorbs the bulk [&#8230;]</p>
<p>The post <a href="https://heimdalsecurity.com/blog/ai-to-absorb-99-percent-of-soc-triage-within-a-year/">AI Will Absorb 99.98% of SOC Triage Within a Year, as 79% of IT teams brace for AI-driven workload shift</a> appeared first on <a href="https://heimdalsecurity.com/blog">Heimdal Security Blog</a>.</p>
]]></description>
		
		
		
		<image>https://heimdalsecurity.com/blog/ai-to-absorb-99-percent-of-soc-triage-within-a-year/ai-will-absorb-99-percent-of-soc-triage-within-a-year/</image><subtitle>Morten Kjaersgaard expects fewer than 500 of three million monthly alerts to need a human analyst in the year ahead. The role is being rebuilt around cases that warrant judgement.</subtitle>	</item>
		<item>
		<title>Top 10 Cybersecurity Companies in Europe</title>
		<link>https://heimdalsecurity.com/blog/top-cybersecurity-companies-europe/</link>
		
		<dc:creator><![CDATA[Danny Mitchell]]></dc:creator>
		<pubDate>Tue, 05 May 2026 17:34:10 +0000</pubDate>
				<category><![CDATA[Comparisons]]></category>
		<guid isPermaLink="false">https://heimdalsecurity.com/blog/?p=83591</guid>

					<description><![CDATA[<p>Over the last 10-15 years, the cybersecurity scene has gotten increasingly complex, as organizations adopt new technology and hackers evolve more innovative ways to target them. At the same time, data protection and compliance have become much more stringent across the world. Nowhere is this more true than in Europe. Today’s organizations have an ever-increasing [&#8230;]</p>
<p>The post <a href="https://heimdalsecurity.com/blog/top-cybersecurity-companies-europe/">Top 10 Cybersecurity Companies in Europe</a> appeared first on <a href="https://heimdalsecurity.com/blog">Heimdal Security Blog</a>.</p>
]]></description>
		
		
		
		<image>https://heimdalsecurity.com/blog/admin-rights-in-admin-rights-privileged-accounts-how-hackers-target-privileged-accounts/quote-2-1024x640-1/</image><subtitle></subtitle>	</item>
		<item>
		<title>Heimdal Expands AI Strategy with AI Wingman and Third-Party AI Containment</title>
		<link>https://heimdalsecurity.com/blog/heimdal-expands-ai-strategy-with-ai-wingman-and-third-party-ai-containment/</link>
		
		<dc:creator><![CDATA[Madalina Popovici]]></dc:creator>
		<pubDate>Tue, 21 Apr 2026 09:57:02 +0000</pubDate>
				<category><![CDATA[All things Heimdal]]></category>
		<category><![CDATA[Cybersecurity News]]></category>
		<category><![CDATA[press release]]></category>
		<guid isPermaLink="false">https://heimdalsecurity.com/blog/?p=87562</guid>

					<description><![CDATA[<p>COPENHAGEN, Denmark, 21 April 2026 — Heimdal today unveiled the next phase of its AI strategy, expanding AI Wingman with three new layers &#8211; Assist, Triage and SOC &#8211; alongside the introduction of Third-Party AI Containment. Together, these capabilities build on Heimdal’s existing AI-powered protection and give organisations a clearer way to manage AI safely, speed [&#8230;]</p>
<p>The post <a href="https://heimdalsecurity.com/blog/heimdal-expands-ai-strategy-with-ai-wingman-and-third-party-ai-containment/">Heimdal Expands AI Strategy with AI Wingman and Third-Party AI Containment</a> appeared first on <a href="https://heimdalsecurity.com/blog">Heimdal Security Blog</a>.</p>
]]></description>
		
		
		
		<image>https://heimdalsecurity.com/blog/heimdal-expands-ai-strategy-with-ai-wingman-and-third-party-ai-containment/ai/</image><subtitle></subtitle>	</item>
		<item>
		<title>You Only Know What You’ve Got When Its Gone</title>
		<link>https://heimdalsecurity.com/blog/technology-failure-action-plan/</link>
		
		<dc:creator><![CDATA[Adam Pilton]]></dc:creator>
		<pubDate>Fri, 27 Mar 2026 10:52:43 +0000</pubDate>
				<category><![CDATA[Industry trends]]></category>
		<guid isPermaLink="false">https://heimdalsecurity.com/blog/?p=87536</guid>

					<description><![CDATA[<p>Although Cyber Security is often seen as technical and maybe even dull, it has many similarities to our day-to-day life. In this blog I call out one of the most important &#8211; You Only Know What You’ve Got When Its Gone. Let me start by putting this statement into context in the current chapter of [&#8230;]</p>
<p>The post <a href="https://heimdalsecurity.com/blog/technology-failure-action-plan/">You Only Know What You’ve Got When Its Gone</a> appeared first on <a href="https://heimdalsecurity.com/blog">Heimdal Security Blog</a>.</p>
]]></description>
		
		
		
		<image>https://heimdalsecurity.com/blog/technology-failure-action-plan/action-plan-in-case-of-technology-failure/</image><subtitle>Prepare an Action Plan in Case of Technology Failure</subtitle>	</item>
		<item>
		<title>Nordic MSPs Can Now Access Heimdal&#8217;s Unified Security and Compliance Platform Through Elovade</title>
		<link>https://heimdalsecurity.com/blog/heimdal-elovade-nordic-msps-security-compliance-platform/</link>
		
		<dc:creator><![CDATA[Madalina Popovici]]></dc:creator>
		<pubDate>Wed, 18 Mar 2026 05:27:37 +0000</pubDate>
				<category><![CDATA[All things Heimdal]]></category>
		<category><![CDATA[Cybersecurity News]]></category>
		<category><![CDATA[press release]]></category>
		<guid isPermaLink="false">https://heimdalsecurity.com/blog/?p=87517</guid>

					<description><![CDATA[<p>Copenhagen, Denmark – 18 March 2026 – Heimdal has appointed Elovade as its official distributor in the Nordic region. The move gives MSPs and resellers across Sweden, Norway, Denmark, Iceland, and Finland direct access to Heimdal&#8217;s consolidated cybersecurity platform through a local value-added distributor. Most Nordic MSPs are running disconnected security tools: separate vendors for [&#8230;]</p>
<p>The post <a href="https://heimdalsecurity.com/blog/heimdal-elovade-nordic-msps-security-compliance-platform/">Nordic MSPs Can Now Access Heimdal&#8217;s Unified Security and Compliance Platform Through Elovade</a> appeared first on <a href="https://heimdalsecurity.com/blog">Heimdal Security Blog</a>.</p>
]]></description>
		
		
		
		<image>https://heimdalsecurity.com/blog/heimdal-elovade-nordic-msps-security-compliance-platform/blog-cover-nordic-msps-can-now-access-heimdals-unified-security-and-compliance-platform-through-elovade/</image><subtitle></subtitle>	</item>
	</channel>
</rss>
