Blog Articles - Blue Core Research

Enter a query to search using AI. You can explain what you’re looking for or copy paragraphs relevant to your search:

Latest posts:

Vendor Preference Poll: The Ideal Vendor

Goodbye, legacy giants? Why 85% of tech leaders now favor hyper-specialization in high-end security.

We recently polled a group of cybersecurity and IT leaders about their ideal type of vendor for high-end security solutions. The results were overwhelming: On paper, this makes perfect sense. Security leaders are smart and know that smaller, specialized vendors are agile, stay ahead of the technology curve, and offer deep, expert support. They also
Read more
A Database is Not a Network: The Fallacy of Packet Inspection

Databases are execution engines, not communication pipes. This article explores why network-centric protections fail against modern database threats and why security must live at the execution layer.

The security industry has a habit of trying to fit square pegs into round holes. One of the most persistent examples is the attempt to secure databases using network-centric technology. They are called “Database Firewalls” or “Database Activity Monitoring (DAM)” systems based on packet inspection, but these labels hide a fundamental misunderstanding: a database is
Read more
Why your Java Application Security is Failing

Despite being one of the most secure environments, data breaches in Java environments are a regular occurrence. This security failure isn’t a matter of “not enough” and doing more of the same. Learn more about these methodological gaps.

The Java ecosystem looks like a fortress, and security is one of its claims to fame. Between Java’s spec+ifications, robust frameworks like Spring, and an endless sea of third-party libraries, you are building on top a Mountain of Security. Yet, data breaches are not an anomaly but a regular occurrence. From small startups to global
Read more
Data Security in an AI World

In the age of AI, we interact with our data through natural language. We use AI to access information but enforcing security restrictions is a significant challenge.

Artificial Intelligence is fundamentally changing the way we interact with information. While the potential for productivity is massive, it introduces a critical security shift that many organizations are unprepared for. In this article, we’ll focus on the specific challenges created when companies deploy AI agents for internal business purposes and why our traditional security models
Read more
Why Is Your Application Security Failing?

Stop flying blind in application security: Exploring why SAST, DAST, and WAF are not enough, and why you need deep, context-aware auditing to detect breaches.

You are likely doing everything “right”, yet your security is failing. Your team follows rigorous development practices. You use Static Application Security Testing (SAST) to audit code, Dynamic Application Security Testing (DAST) to probe your runtime environments, Software Composition Analysis (SCA) to manage your libraries, and a Web Application Firewall (WAF) to guard the gate.
Read more
The False Economy: Paying a Premium for Poor Solutions

Sticking with an inefficient security solution isn’t a financial decision, it’s a cognitive bias. Learn to identify if you’re overpaying and how to find a better alternative.

In the world of IT, we like to believe hard data and bottom-line economics drive our procurement decisions. However, in reality, they are often driven by a Psychological Shield. A recent survey found that over 90% of IT leaders who are dissatisfied with their current database and application security solutions don’t switch because the alternatives
Read more
Dynamic Data Masking: In the Application vs. the Database vs. SQL Blocking

Learn all about Dynamic Data Masking (DDM). Find out what it is and how it differs from static data masking. Discover how to implement it in the database or the application, which is better, and when SQL blocking is more appropriate.

Let’s discuss a few variations of Dynamic Data Masking (DDM) and explain the differences from its static sibling. We’ll cover different implementation approaches, which apply in what situations, and the preferred alternatives. Static vs. Dynamic:“Permanent” vs. “On-the-Fly” Before diving into the technical implementation, we must distinguish between the two primary philosophies of masking: Static and
Read more
Best Database Activity Control Solutions

A comparative review of high-end DAM/DAC solutions for on-prem and IaaS environments, focusing on data quality, threat mitigation, and regulatory compliance.

Database Activity Monitoring (DAM) or its modern variation, Database Activity Control (DAC), aims to enhance database security and achieve regulatory compliance. Since most database users have access to sensitive information, controlling the activity from those accounts is a primary mechanism for mitigating external and internal threats. This review covers all the high-end solutions currently on
Read more
Static Data Masking: Build or Buy?

Data masking can feel like an afternoon project until you hit the performance challenge. Learn why building your own solution can be a costly trap, where the real risks are hidden, and when you should consider building one yourself.

A potential customer recently admitted to us that they were debating whether to buy our masking solution or build one themselves. Personally, I usually prefer to build things myself. However, as a development manager and software architect with 30 years of experience, for data masking, my suggestion is “buy”. Data masking can be tricky. It
Read more
The Complete Guide to DIY Static Data Masking

Mask your data manually in Oracle and SQL Server databases by downloading our free script.

Static Data Masking (SDM) is the process of replacing sensitive information with realistic but fictional data in non-production environments. The goal is simple: eliminate the security risk. Since databases are built to manipulate data at scale, you may choose to take advantage of those capabilities and opt for a “Do-It-Yourself” (DIY) approach. The idea is
Read more
Application or Database Activity Control: How do they compare?

Which is the best defense for your data? A detailed analysis of the differences, advantages, and visibility gaps between Database Activity Control and Application Activity Control in modern security environments.

All attacks have the same destination: the data in your database. However, 99% of database activity originates from a single application service account. So, how does database activity control compare to application activity control? Data-centric security controls the activity that touches the data. This defense is deployed from the inside out, like putting together a
Read more
Database Security Technology: Don’t Stay Behind the Curve

Learn about the different technology generations in database security to understand the protections you have and determine the ones you need. What are the limitations of each technology, from blind spots to performance problems?

We spend millions on firewalls and EDR protecting the perimeter and endpoints. But the actual prize, your data, often sits in a vault protected by a 25-year-old padlock. Our information is what attackers are after, yet it is what we protect the least. In a house made of doors, we obsess over the doors, neglecting
Read more
Locate Sensitive Data for Free Using AI

Discover how to pinpoint sensitive data in your databases for free. Learn how to map schemas and use AI to do the heavy lifting. Comply with regulations and close security gaps in under 5 minutes.

The Challenge: What Data Do I Have? Most organizations face a critical compliance and security roadblock: they don’t actually know where their sensitive data lives. However, with the advent of AI, you can now easily scan through an entire database schema in a few minutes or less. The security roadblock: Locating sensitive information is an
Read more
Poll: Do you Mask Your Data?

The Great Divide: 90% of Experts value Data Masking. However, half haven’t implemented it yet. Learn to understand the market trend and the perspective of your peers.

In a recent survey, we asked cybersecurity professionals if they mask their data. The results were unsurprising. 90% of respondents said data masking is important. 40% already mask their data, and nearly 50% need to mask it but haven’t yet. Only 10% don’t consider data masking important. For companies that need to mask their data,
Read more
Database Security Spending Guidelines

Are you investing the right amount in your security? Optimize your database protection budget and resources without overspending or leaving yourself dangerously exposed.

It’s not trivial to find the “correct” investment level for database security. Unlike antivirus, it’s not a simple comparison between multiple vendors. The pricing models don’t align, the features are very intricate, and comparison is impossible. To make things worse, we rarely know exactly what we need. This article aims to give you guidance, so
Read more
Database Activity Control: The State of the Market

Exclusive Survey: a poll of security professionals about Database Activity Control revealed surprising results. Everyone agrees it is vital, but few achieve control.

We recently conducted a poll to check the state of the database security market, focusing on activity control. The results offer a fascinating glimpse into the mindset of security professionals. Let’s start with the unequivocally good news: every single respondent believes it is vital to control database activity. Everyone agrees. In an industry often divided
Read more
Database Evaluation Checklist

Database security is the last line of defense standing between attackers and your critical data. Follow this strategically organized checklist to ensure everything is properly locked down.

Organizations depend on data, and databases are where that data lives. Databases are the heart that pumps this data throughout your organization and keeps it alive. But data volumes soar, regulations tighten, and treating database security as a collection of isolated technical tasks is a recipe for disaster. Yet, many companies still treat database security
Read more
Cybersecurity Budgets and What They Mean

Half of the companies increase their cybersecurity budgets, while the other half shrink. All along, the tsunami of data breaches is unwavering. What does this mean, and how can you achieve better protection in a tight economy?

A recent poll by Blue Core Research shows an interesting pattern in cybersecurity budgets. About half of the companies (47%) increased their cybersecurity budget, while the other half had a negative trend. Within the negative trend, about a quarter had no changes in their budget, half had some decrease, and the last quarter had a
Read more
Database Security: Whose job is it?

Database security is often seen as a mystery. This article reveals five viable paths—from specialized hiring to smart collaboration—to empower your security team to immediately and effectively protect your critical data assets.

Database security often feels like a shadowy corner of IT, requiring arcane knowledge that many security teams feel ill-equipped to handle. The question of “Whose job is it?” and “How do we even begin?” loom large, sometimes leading to a sense of paralysis. The analogy of the fox guarding the hens perfectly captures the understandable
Read more
Data Masking, Anonymization, Obfuscation, and Privacy – Methods and Examples

Learn how to mask different types of data, understand common terminology and concepts, and figure out what matters to you most.

In a world driven by data with threats lurking around every corner, keeping data safe is nearly impossible. However, we then make this challenge worse by copying the data for testing, development, training, and more. If protecting data in production is difficult, protecting these copies outside of the secured production environment is impossible. So, what
Read more