The Blog and News

Your LLM is only as clean as your training data. Once PII gets baked into model weights, there is no delete button. Here is how to catch it before that happens.

PE firms are rolling up physician practices at record pace. Most have no idea what PHI is hiding in those legacy systems. Here is what to look for—and where.

I asked a CISO last week if they knew what data was in their LLM training pipeline. Silence. That silence is where the next wave of breaches will come from.

I watched a deal fall apart last year over $2M in remediation costs for data nobody knew existed. The target company thought they were clean. They weren't.

I spent three months evaluating DSPM platforms last year. Then I watched a team answer the same question in two days with a Docker container. Something's broken here.

A friend at a regional health system called me after their breach. The ransomware hit a file server nobody remembered existed. That server had 12 years of patient records.