Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

The latest News and Information on Application Security including monitoring, testing, and open source.

Enrich, Parse, and Control Logs with Observability Pipelines for Datadog Cloud SIEM

Sep 23, 2025 By Datadog In Datadog
See how Datadog Observability Pipelines helps security and operations teams take control of their log data. In this demo, we’ll walk through: With Datadog, you can normalize, enrich, and prepare high-quality log data for Cloud SIEM, supporting faster investigations, more accurate detections, and reduced operational overhead—all without third-party software.
View Video

Securing Your Software Supply Chain with Veracode: Protect Against Attacks Proactively

Sep 19, 2025 By VERACODE In Veracode
In today's escalating landscape of software supply chain attacks, enterprises are facing infiltration from malicious open-source libraries and compromised components. Join us in this solution brief video as we dive into Veracode's comprehensive Application Risk Management Platform, designed to detect, prevent, and inform on vulnerabilities at their source.
View Video

Real-Time & Historical Threat Detection with Datadog Cloud SIEM

Sep 17, 2025 By Datadog In Datadog
See how Datadog’s Cloud SIEM empowers security teams with powerful, real-time and retrospective detection capabilities. In this demo, we walk through: Datadog Cloud SIEM gives your SOC high-context, actionable security signals—out of the box and fully customizable—helping you detect, investigate, and respond to threats faster.
View Video
aikido

Complying with the Cyber Resilience Act (CRA) using Aikido Security

Sep 15, 2025 By Sooraj Shah In Aikido
TLDR: Aikido Security helps you to comply with the Cyber Resilience Act. We also help you to automate security policies and compliance checks for SOC2, ISO27001, CIS & NIS2. Here, we explain its importance of the Cyber Resilience Act and how Aikido helps you to comply with it.
Read Post
aikido

We Got Lucky: The Supply Chain Disaster That Almost Happened

Sep 12, 2025 By Charlie Eriksen In Aikido
Dear reader, This week has been a strange one. Over the past few months, we’ve seen a string of significant supply chain attacks. The community has been sounding the alarm for a while, and the truth is we’ve been skating on thin ice. It feels inevitable that something bigger, something worse, is coming. In this post, I want to share some of the key takeaways from this week.
Read Post
veracode

Navigating the ASPM Landscape: Why Veracode was Named a Leader in the IDC MarketScape

Sep 10, 2025 By Joe Ariganello In Veracode
The application security landscape is undergoing a profound transformation. Modern development practices, characterized by cloud-native architecture, microservices, and AI-assisted coding, have exponentially expanded the attack surface. In response, organizations are grappling with an overwhelming volume of vulnerabilities from a disconnected array of security tools. This alert fatigue makes it nearly impossible to distinguish real threats from noise.
Read Post
aikido

duckdb npm packages compromised

Sep 9, 2025 By Charlie Eriksen In Aikido
Over night, starting at 01:16 UTC on September 9th, we were alerted to more packages being compromised, these included: These packages all had a new version 1.3.3 released (In the case of the wasm version, it was version 1.29.2), which contained the same malicious code as we saw in the compromise of packages with 2 billion+ downloads.
Read Post
aikido

AutoTriage Integration in IDE

Sep 8, 2025 By Berg Severens In Aikido
Saying that you’ll “shift left” is easy; it makes sense. After all, it’s obvious that preventing issues from happening should shift as far left as the IDE. Resolving issues at that stage gives you the best chance of being more secure. But before resolving an issue, you need to find it. Aikido has an IDE integration for reporting SAST findings immediately.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.