Insights

PE firms are rolling up physician practices at record pace. Most have no idea what PHI is hiding in those legacy systems. Here is what to look for—and where.

I asked a CISO last week if they knew what data was in their LLM training pipeline. Silence. That silence is where the next wave of breaches will come from.

I watched a deal fall apart last year over $2M in remediation costs for data nobody knew existed. The target company thought they were clean. They weren't.

I spent three months evaluating DSPM platforms last year. Then I watched a team answer the same question in two days with a Docker container. Something's broken here.

A friend at a regional health system called me after their breach. The ransomware hit a file server nobody remembered existed. That server had 12 years of patient records.

Traditional DSPM costs scale faster than risk reduction. What begins as a reasonable line item becomes a variable expense that increases every time the business grows.