Digital Safety Modelling is a structured process for identifying, understanding, and prioritising potential harms to humans arising from their interaction with or dependence upon technological systems. Where threat modelling asks “what could go wrong with this system?”, Digital Safety Modelling asks “how could this system’s behaviour—intended or otherwise—harm the human?” Read More
AI Governance and Digital Safety Alignment
AI adoption is inevitable but requires robust governance for success. Author Bhojraj Parmar argues that poor governance erodes trust; governance should instead foster safety, trust, and prosperity. Rushing AI adoption risks “Shadow AI,” data leaks, and insider threats. The blog advocates moving beyond narrow cybersecurity to Digital Safety, prioritizing the safety of humans, institutions, and communities. The core message is that AI governance must align with digital safety modeling to account for all types of harm when defining OKRs/KPIs. This is fundamentally a business problem, not just a cybersecurity one, and strong governance is essential for maintaining customer trust, adoption, and revenue. Read More
Meaningful Security Conversations with Your Vendors: The 2026 Q1 Guide to Digital Safety & Resilience
Executive Summary: The Imperative for a New Dialogue In the contemporary operational environment, defined by industrialized cyber warfare and systemic supply chain compromises—exemplified by the Salt Typhoon and Volt Typhoon campaigns—the evaluation of network vendors has shifted from a procurement checklist to a strategic imperative. Organizations can no longer rely solely on perimeter defenses; they Read More
AI Governance and Digital Safety Alignment
Bhojraj Parmar Erosion of Trust The CEO has just returned from Silicon Valley. He/She is excited and declares that we are going to implement an AI first strategy across the business. She/He exclaims “these are special times, we have an opportunity to be leaders and do right for our customers and stakeholders”. Everyone claps and Read More
What is Protective DNS and Why Is It Critical to Your Cybersecurity Defensive Architecture?
The Domain Name System (DNS) is the foundational address book of the internet, a ubiquitous and trusted protocol that underpins virtually all online activity, from browsing websites to sending emails. This inherent trust and ubiquity, however, make it a primary target for cyberattacks, with global cybercrime damages projected to reach $6 trillion annually. Because it Read More
Ransomware Threat Actors Targeting Healthcare and the Indo-Pacific Region
2025 Comprehensive Threat Intelligence Assessment Document Version: 6.0 | Last Updated: 2026-01-14 | Classification: TLP:CLEAR 1. Executive Summary Qilin and Rhysida pose the greatest dual threat to healthcare systems in the Indo-Pacific region, combining aggressive healthcare targeting with extensive regional operations. The ransomware landscape underwent significant restructuring in 2024-2025 following law enforcement actions against LockBit Read More
Threat Modelling vs Digital-Safety Modelling
Andy Prow & Bhojraj Parmar Digital Safety Modelling Qubit Cyber is on a mission to shift focus from simply protecting data and systems (Cybersecurity) to protecting humans in the digital era (Digital Safety). Digital Safety Modelling is a structured process for identifying, understanding, and prioritising potential harms to humans arising from their interaction with or Read More
Payroll Diversion Fraud Investigation Report: Operational Modalities, Threat Actor Investigation, and Defensive Architectures
1. Executive Summary The global financial cybercrime landscape has undergone a paradigmatic shift, evolving from indiscriminate, high-volume phishing campaigns to highly targeted, psychologically manipulative operations that exploit the structural seams of corporate finance. Among these threats, Payroll Diversion Fraud—the unauthorized redirection of employee salary disbursements to fraudulent accounts—has metastasized into a premier vector for both Read More