Andras Cser
VP, Principal Analyst

Author Insights
Blog
Google To Acquire CNAPP Specialist Unicorn Wiz For $32 Billion
Learn what the largest-ever acquisition in cybersecurity means both for Google and the CNAPP space.
Blog
Another Cautionary Tale Of The Perils Of Using Password Managers
Last week, password wallet vendor LastPass experienced an outage. All LastPass systems and services have since been restored and are up and running. It is worth noting that this is not the first incident involving password wallet products. Past incidents include: LastPass had an outage in 2024. PasswordState had a malicious DLL cause a breach […]
Blog
Quantum Security Isn’t Hype — Every Security Leader Needs It
The commercial availability of quantum computers that can compromise traditional asymmetric cryptography is still five to 10 years away. But security and risk (S&R) professionals must assess and prepare for the impact of quantum security now.
Blog
Deepfakes Are Here: Here’s What To Do
In the last two years, growing concerns around the proliferation of and advances in deepfakes has raised concerns around their potential to impede adoption of facial and voice biometrics.
Blog
Highlights And Implications Of Biden’s Executive Order On Strengthening And Promoting Innovation In The Nation’s Cybersecurity
Forrester's security and risk research team breaks down the key highlights and implications of former US President Joe Biden’s 2025 Executive Order (EO) 14144 on strengthening security, improving accountability for software and cloud service providers, and promoting innovation, including use of emerging technologies.
Blog
CrowdStrike Acquires SaaS Security Specialist Adaptive Shield
Cybersecurity platform provider CrowdStrike announced plans to acquire Adaptive Shield, a SaaS security posture management (SSPM) vendor. Some sources reported the purchase price to be around $300 million. If that purchase price is accurate, based on Forrester’s estimates of Adaptive Shield’s current revenue, that price represents an approximately 12–15x revenue multiplier and 6 times more […]
Blog
IATA’s Distributed Digital Identity Framework Serves A Compelling Business Need
The International Air Transport Association (IATA) — the trade association for world airlines, representing over 330 airlines and over 80% of global air traffic — announced a new framework and plans for using decentralized digital identity (DDID) to provide end-to-end travel experiences for domestic and international passengers.
Blog
Decentralized Digital Identity: The Global Acceptance Network Gains Momentum
Bhutan became the first country to join the Global Acceptance Network (GAN), a foundation that aims to operate a nonprofit decentralized digital identity (DDID) network. Learn more about the use cases for GAN and how it can become successful in this post.
Blog
Visa Risk And Identity Solutions Acquires Fraud Management Vendor Featurespace
Last week, Visa announced the acquisition of Featurespace, a UK-based enterprise fraud management and anti-money-laundering (AML) vendor.
Blog
The Benefits Generative AI Brings To Fraud Management
Looking for ways to improve your fraud management capabilities? Learn six key ways generative AI can help in this preview of a session at our upcoming Security & Risk Summit in Baltimore December 9-11.
Blog
The CrowdStrike Moment Calls For A Redefinition Of Business Resilience
Crises such as the one triggered by CrowdStrike's global outage shine a bright light on many aspects of business and technology. Our new report provides a thorough overview of recommended actions for tech leaders as they face the unfolding long-term repercussions.
Blog
CrowdStrike Global Outage: Critical Next Steps For Tech And Security Leaders
Technology leaders woke up this morning to find that a software update by cybersecurity vendor CrowdStrike had gone badly wrong. Get updates on the steps that your organization should take now and in the long term as a result of the CrowdStrike outage.
Blog
Fortinet Acquires Lacework
After a previous sale fell through, Fortinet has announced the acquisition of Lacework for an undisclosed amount, catching some customers by surprise. Get a detailed analysis of the deal including side-by-side product comparisons in this post.
Blog
Adoption Of Cisco’s Hypershield Will Depend On AI And Security Tooling Coexistence
Cisco recently announced a new network and cloud security platform, called Hypershield. Find out what benefits it provides and why organizations should pay close attention to its development going forward.
Blog
Cloud Detection And Response Tools Do Not Exist
Cloud detection and response is not a market category — it is a feature of existing cloud tools. Get a formal definition and more in this post previewing a new report.
Blog
Cloud Security Provider Wiz Raises $1B In VC Funding, Passes On Lacework Acquisition
Wiz (founded in 2020) announced a new VC funding round of $1 billion at a post-money valuation of $12 billion. Wiz has cumulatively raised $1.8 billion in venture capital, is generating over $350 million in annual recurring revenue, and is on an upward trajectory toward a likely IPO in 2025. This signals high investor confidence […]
Blog
Forrester’s RSAC 2024 Themes, Takeaways, And Observations
More than 41,000 attendees, 600 exhibitors, and 425 sessions. Get some of the key themes and takeaways from the Forrester security & risk analysts who attended RSA Conference (RSAC) 2024.
Blog
Wiz Acquires Cloud Detection And Response Specialist Gem Security To Round Out Cloud Security Portfolio
Recently, Wiz announced the acquisition of cloud detection and response vendor Gem Security. Learn how this move aligns with Wiz’s plan to build a comprehensive cloud security portfolio and accelerate product innovation.
Blog
It Ain’t Just AI: What We Saw At Google Cloud Next
Google recently held its Google Cloud Next conference four months early to unveil new AI offerings and upstage its rivals. Get a detailed review of all of the announcements at the event in this post.
Blog
Travel And Mobile Are Driving Decentralized Digital Identity (DDID) Growth
Recently, SITA, the multinational IT company supporting the air travel industry, announced that it would be the lead investor in the Series A funding for Indicio, a decentralized digital identity (DDID) solution provider. Find out what this means for the evolution of DDID.
More posts