Request a Demo
iconBy Business Value
iconBy Security value
iconBy Use Case
iconBy Threat
iconBy Defense
iconResources
iconFun & Games

The Reclaim Blog

Misconfiguration Spotlight: Untrusted Font Blocking Is Off by Default — and Attackers Know It

Misconfiguration Spotlight

Or Naim April 9, 2026

A typeface is not decoration. It's executable code. That's the dangerous misconception at the heart...
 
 
 
 

Exposure Management, Information security, Preemptive Security

Mastering Cyber Risk Assessment and Remediation

Barak Klinghofer February 28, 2026

What Is a Cyber Risk Assessment? A cyber risk assessment is supposed to be your...
 
 

Exposure Management, Information security

A CISO’s Guide to Network Security Auditing That Actually Works...

Amit Ashbel February 23, 2026

A network security audit is a deep, systematic look at your security posture. Its job...
 
 

Exposure Management, Information security

Mastering Identity Governance and Administration Best Practices w...

Barak Klinghofer February 22, 2026

Identity Governance and Administration Feels Simple — Until It Isn’t. Imagine every new employee, partner...
 
 

Misconfiguration Spotlight

Misconfiguration Spotlight: The Myth of the “Secret” ...

Or Naim February 4, 2026

Introducing the "Misconfiguration Spotlight" In cybersecurity, we often obsess over the exotic zero-day while the...
 
 

Exposure Management, Information security, Preemptive Security

The Confidence Gap: Why Your Security Dashboard is Lying to You...

Amit Ashbel February 4, 2026

In the high-stakes world of cybersecurity, we have been conditioned to trust the "green light."...
 
 

Information security, Preemptive Security

Shift Left Security Your Guide to Building Resilient Defenses...

Amit Ashbel February 1, 2026

Shift left security is a simple, powerful idea: integrate security practices into the earliest stages...
 
 

Exposure Management, Information security

Incident Response Services: A Practical Guide to Prep, Response, ...

Roy Peretz January 25, 2026

Think of incident response services as the digital equivalent of an elite fire department for...
 
 

Information security

Threat Detection Response: Master the Framework That Fixes What O...

Barak Klinghofer January 25, 2026

Threat detection and response is the end-to-end process of identifying, investigating, containing, and remediating cyber...
 
 

Information security

A Practical Guide to Managed SIEM Services

Barak Klinghofer January 21, 2026

Think of managed SIEM services as your organization's outsourced, 24/7 security watchtower. Instead of just...
 
 

Exposure Remediation

Agentic Remediation: The Missing Link in CTEM Mobilization

Amit Ashbel January 12, 2026

Security teams don’t suffer from a lack of data. They suffer from a lack of...
 
 

Exposure Remediation

Security & Automation: Fix What Other Tools Only Flag

January 11, 2026

Security and automation are no longer just buzzwords; they represent a fundamental shift in how...
 
 

Exposure Remediation, Information security, Posture Management

A Modern Guide to Vulnerability and Threat Management

Barak Klinghofer January 8, 2026

Let's be honest: for most security teams, traditional vulnerability and threat management is a losing...
 
 

Exposure Remediation, Posture Management

A Modern Guide to the Remediation of Vulnerabilities

Roy Peretz January 7, 2026

Let's be honest: for most security leaders, the remediation of vulnerabilities feels like a losing...
 
 

Information security

A Practical Guide to Identity and Governance Administration (IGA)...

Amit Ashbel January 6, 2026

Identity and Governance Administration (IGA) is the framework that businesses use to make sure the...
 
 

Information security

Stop Managing Security. Start Eliminating Threats: A Practical Gu...

Barak Klinghofer January 6, 2026

True management of exposure isn't about generating longer lists of potential problems. It’s about proactively...
 
 

Exposure Management, Information security, Posture Management, Preemptive Security

Create a Cloud Computing Security Policy That Works

Roy Peretz December 28, 2025

A good cloud computing security policy is more than just a document; it's an operational...
 
 

Exposure Management

A Modern Vulnerability Management Procedure

Barak Klinghofer December 22, 2025

A solid vulnerability management procedure is a living cycle of finding, prioritizing, and fixing security...
 
 

Exposure Remediation, Information security

From Lists to Fixes: Threat and Vulnerability Management Done Rig...

Amit Ashbel December 21, 2025

Threat and vulnerability management isn't just about finding problems. It's the ongoing work of identifying,...
 
 

Information security

Cyber Risk Management Framework: How to Turn Strategy Into Securi...

Barak Klinghofer December 21, 2025

A cyber risk management framework is a structured set of guidelines your organization uses to...
 
 

Exposure Management, Information security

Top CTEM Vendors for 2025: From Discovery to Remediation

Amit Ashbel December 17, 2025

Building a Continuous Threat Exposure Management (CTEM) program is now a primary objective for security...
 
 

Information security

How to Turn Your Network Security Policy Into a Resilient, Self-H...

Barak Klinghofer December 14, 2025

This guide walks through how to design a business-aware network security policy and actually enforce...
 
 

Information security

Incident Response Playbook Template: Your Free Guide

Barak Klinghofer December 11, 2025

Let's be honest. That incident response plan your team wrote to satisfy a compliance audit?...
 
 

Exposure Management, Information security

Your Third Party Risk Management Framework Guide

Amit Ashbel December 8, 2025

A third-party risk management (TPRM) framework isn't just a compliance document; it's the strategic plan...
 
 

Information security

Your Guide to an Information Security Policy That Works

Amit Ashbel December 7, 2025

An information security policy is the rulebook for your company's cyber defense. It lays out...
 
 

Research

Hidden Gems in Entra ID: The Cost and Complexity of Cleaning Stal...

Nitzan Pomerantz December 7, 2025

I spend a considerable amount of time deep-diving into documentation. It’s part of the job...
 
 

Information security

Modern Incident Management Procedures Guide

Barak Klinghofer December 7, 2025

Incident management procedures are the specific, documented steps your team takes to handle a security...
 
 

Information security, Preemptive Security

Security Configuration Management: From Lists and Alerts to Real ...

Amit Ashbel November 30, 2025

Let's move past the dry, textbook definitions. Think of security configuration management (SCM) as the...
 
 

Exposure Management, Exposure Remediation, Information security, Preemptive Security

A Practical Guide to Attack Surface Management

Amit Ashbel November 24, 2025

Think of your company’s technology stack like a physical building. Every server, cloud account, SaaS...
 
 

Information security

Vulnerability Assessment and Penetration Testing: A Practical Gui...

Barak Klinghofer November 23, 2025

Think of a vulnerability assessment as an inspector walking the perimeter of your building, systematically...
 
 

Information security

A Practical Guide to Cloud Security Posture Management

Amit Ashbel November 20, 2025

Cloud Security Posture Management (CSPM) is essentially a continuous health check for your entire cloud...
 
 

Exposure Remediation, Information security, Preemptive Security

How to Improve Security Posture: A Practical Framework for Real F...

Amit Ashbel November 19, 2025

To improve security posture, you have to stop just identifying vulnerabilities and start actively fixing...
 
 

Information security

A Guide to Identity Security Posture Management

Roy Peretz November 18, 2025

Let's be honest, the old ways of managing digital identities don't cut it anymore. We...
 
 

Exposure Management, Exposure Remediation, Information security

From Assessment to Action: A Guide to Your Cybersecurity Posture...

Barak Klinghofer November 17, 2025

A cybersecurity posture assessment is more than just a scan or an audit; it's a...
 
 

Exposure Management

Executive Briefing: The Preemptive Pivot – Securing the Glo...

Amit Ashbel November 16, 2025

Why this matters now? Attackers are using AI to speed up recon, payload engineering, and...
 
 

Exposure Management, Information security, Preemptive Security

The Exposure Management Reckoning: Why 2026 Demands a New Cyberse...

Barak Klinghofer November 9, 2025

By Barak Klinghofer, CEO and Co-Founder, Reclaim Security Executive Summary Detection and response kept many...
 
 

Exposure Management, Exposure Remediation, Information security

AI-Powered Attack Surface Explosion: Weaponizing CTEM for Microso...

Amit Ashbel October 27, 2025

Attackers are now using AI to move faster, blend in better, and exploit simple gaps...
 
 

Information security

AI-Powered Threat Actors: Why Exposure Remediation Must Evolve Be...

Amit Ashbel October 15, 2025

The New Generation of AI Threat Actors AI has become the ultimate force multiplier for...
 
 

Exposure Remediation, Information security

Why Cyber Hygiene Failures Keep Fueling Breaches (and How to Fix ...

Amit Ashbel September 29, 2025

Cybersecurity headlines are filled with million-dollar breaches, but when you peel back the layers, most...
 
 

Exposure Remediation, Information security, Research

Agentic AI in Cybersecurity: Why Teams Still Fear Taking Action, ...

Amit Ashbel September 22, 2025

Introduction: What Is Agentic AI, and How It’s Already All Around Us Agentic AI refers...
 
 

Information security

AI & Multi Cloud Adoption Is Outpacing Security: Five Steps t...

Amit Ashbel September 15, 2025

Close the Identity Misconfiguration Gap Before It’s Too Late TL;DR – What Security Leaders Need...
 
 

Exposure Management, Information security

Don’t Be a Tool: Why AI Attackers Are Laughing at Your Manual Fix...

Amit Ashbel September 8, 2025

Let’s be honest: most security professionals didn’t sign up to become glorified button-pushers. Yet here...
 
 

Information security, Preemptive Security

Preemptive Security at the Front Line: Making Your Stack Work Har...

Barak Klinghofer September 1, 2025

Series Recap Welcome to the third and final post in our “Preemptive Security at the...
 
 

Exposure Management, Research

QMR Is a Lifesaver—But It’s Not Enabled by Default

Ben Hunter August 25, 2025

Here’s How to Turn On Windows’ New Self-Healing Recovery Feature Before You Need It When...
 
 

Research

Change This OneDrive Setting Before It Leaks Your Corporate Data...

Ben Hunter August 13, 2025

A Quiet Microsoft Update Just Opened a Dangerous Door. Here’s How to Shut It Permanently....
 
 

Information security, Preemptive Security

Security Tool Optimization: How to Maximize Efficiency, ROI, and ...

Roy Peretz August 13, 2025

Learn how to optimize your security stack, reduce tool sprawl, and increase ROI with measurable...
 
 

Information security

Mastering Patch Tuesday in 2025: A Practitioner’s Guide to Stayin...

Roi Teveth August 12, 2025

Patch Tuesday: From Monthly Nuisance to Strategic Advantage Back in 2003, Microsoft introduced Patch Tuesday...
 
 

Information security

SOAR Security Tools Compared: Why Reclaim Is the Evolution Beyond...

Barak Klinghofer August 3, 2025

The SOAR Security Landscape in 2025 Security Orchestration, Automation, and Response (SOAR) platforms promised to...
 
 

Information security, Preemptive Security

Preemptive Security at the Front Line: Disarm Ransomware, Phishin...

Barak Klinghofer July 29, 2025

🔁 Continuing the Series In Part 1, we focused on hardening the front line of...
 
 

Exposure Remediation

How to Automate Vulnerability Remediation at Scale

Barak Klinghofer July 22, 2025

In today’s security landscape, the volume and velocity of threats are matched only by the...
 
 

Exposure Management

Why Continuous Threat Exposure Management Is the Future of Securi...

Barak Klinghofer July 21, 2025

In an era where cyber threats evolve faster than teams can respond, security leaders are...
 
 

Information security, Preemptive Security

Preemptive Security at the Front Line: Strengthening Endpoint, Em...

Barak Klinghofer July 11, 2025

Series Introduction A Three-Part Series on Making Gartner’s Vision Actionable Security leaders are waking up...
 
 

Preemptive Security

Preemptive Security: Stop Chasing Findings, Start Eliminating Thr...

Barak Klinghofer July 7, 2025

For years, cybersecurity was a game of whack-a-mole: detect a breach; respond fast. But in...
 
 

Information security, Preemptive Security

My Take: Gartner’s “Emerging Tech – The Future of Exposure Manage...

Amit Ashbel June 26, 2025

June 2025, Gartner just published a research note that could very well define the next...
 
 

Exposure Remediation, Preemptive Security

Compensating Security Controls: Strengthening Cyber Defense

Roy Peretz June 23, 2025

Having spent years observing and advising organizations across diverse sectors, one constant challenge emerges: the...
 
 

Exposure Remediation

The End of Security Debt: Why Autonomous Security Controls Are a ...

Barak Klinghofer June 19, 2025

Every CISO knows the pain of security debt: unresolved findings that pile up faster than...
 
 

Information security

The Untold Story of Attack Surface Management: Securing the Futur...

Barak Klinghofer June 15, 2025

Imagine a fortress under siege, its walls constantly shifting as new towers are built and...
 
 

Exposure Remediation, Information security

Using AI to Maximize Your Security Posture and Minimize Threat Ex...

Roy Peretz June 12, 2025

If you work in enterprise security, you’ve felt it: the growing pressure to deliver airtight...
 
 

Exposure Remediation, Preemptive Security

Automated Security Remediation Guide: From Reactive to Proactive ...

Barak Klinghofer June 11, 2025

Introduction: A New Era of Cybersecurity The cybersecurity industry stands at a critical inflection point....
 
 

Information security

AI-Driven Cyber Threats in 2025: Why Zero Trust and Phishing‑Resi...

Barak Klinghofer June 10, 2025

Introduction The global cost of cybercrime is on a trajectory to exceed US$10.5 trillion by the...
 
 

Exposure Management

Exposure Management Business Case: Calculate ROI & Build Bud...

Barak Klinghofer June 8, 2025

When CISOs struggle to secure funding, it’s rarely due to lack of awareness. Boards understand...
 
 

Preemptive Security

The Foundation of Preemptive Cybersecurity: Why Automated Exposur...

Barak Klinghofer June 4, 2025

For decades, organizations have operated under the assumption that sophisticated detection systems and rapid response...
 
 

Exposure Remediation

CVE-2025-21298: Why This “Quiet” Misconfiguration Bug Shouldn’t B...

Roy Peretz June 3, 2025

This blog is part of our ongoing Threat Exposure Remediation series. Want to see how...
 
 

Exposure Remediation

Beyond Prioritization: Why Automated Security Remediation is the ...

Barak Klinghofer May 27, 2025

The cybersecurity industry has reached a breaking point. Despite investing billions in sophisticated vulnerability scanning...
 
 

Exposure Remediation, Preemptive Security

The Automated Moving Target Defense (ATMD) Paradox: Why Moving Ta...

Barak Klinghofer May 27, 2025

Imagine this: you’ve deployed advanced Automated Moving Target Defense (AMTD). Your network shifts, IPs rotate,...
 
 

Information security

Security Automation: From Alert Handling to Safe, Business-Aware ...

Amit Ashbel May 21, 2025

Transform your cybersecurity from reactive firefighting to safe, fix-focused, business-aware automation. Security automation is the...
 
 

Exposure Remediation

The Rise of AI-Driven Threat Actors and the Urgent Need for Expos...

Barak Klinghofer May 18, 2025

The Rise of AI-Driven Threat Actors and the Urgent Need for Exposure Remediation In recent...
 
 

Exposure Remediation, Preemptive Security

Automated Security Remediation: How PIPE™ Technology Eliminates t...

Barak Klinghofer May 14, 2025

Table of contentsWhy Traditional Automation Fails at ScaleThe Productivity Paradox: When Security Wins but Business...
 
 

Information security

The Security Defocus Problem: When Too Many Tools Increase Risk...

Barak Klinghofer May 12, 2025

Security tool sprawl is becoming one of the biggest hidden risks in enterprise cybersecurity. Teams...
 
 

Exposure Management, Information security

Threat Exposure Management: Why Prioritization Alone Can’t ...

Barak Klinghofer May 7, 2025

Threat exposure management used to be about visibility. Prioritize your findings, patch what you can,...
 
 

Exposure Remediation

Threat Exposure Remediation: What It Is and Why It’s the Future o...

Barak Klinghofer May 5, 2025

Threat exposure remediation is quickly becoming one of the most urgent, yet underinvested areas in...
 
 

Information security

Why Continuous Configuration Management Is Crucial for Enterprise...

Barak Klinghofer April 28, 2025

The Invisible Risk: Security Tools Can Quietly Fail Even the best security stacks can falter...
 
 

Information security

Reclaiming Focus in the Age of Security Chaos

Barak Klinghofer April 27, 2025

Introduction: The New Reality of Security Operations Once upon a time, security was simple. It...
 
 

Information security

The Elusive “Single Pane of Glass”

Barak Klinghofer April 18, 2025

Why Security Unification Keeps Failing (and What to Do Instead) By Barak Klinghofer, CEO and...
 
 

Information security

The Path to Autonomous AI Agents in Cybersecurity: A Realistic 20...

Barak Klinghofer April 18, 2025

Thanks for joining me to explore a topic I’m deeply passionate about: the evolving role...
 
 

Information security

How Secure Are We? Why the Cybersecurity Metrics We Use May Be Mi...

Barak Klinghofer April 10, 2025

By Barak Klinghofer, CEO & Co-Founder, Reclaim Security Growing up with MacGyver and The A-Team,...
 
 

Information security

From Prevention to Assume Breach to Shift Left — Why Cybersecurit...

Barak Klinghofer April 8, 2025

The Pendulum Is Broken Introduction: The Evolution of Cybersecurity Strategy Cybersecurity strategies haven’t evolved—they’ve oscillated....