Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

CloudCasa

OpenShift Virtualization Backup: How to Protect VMs After Migrating from vSphere

May 7, 2026 By CloudCasa In CloudCasa
Most OpenShift Virtualization projects start with a simple goal: move virtual machines off a traditional hypervisor and onto a Kubernetes-based platform without forcing every workload to be rewritten. That is a practical goal. Many organizations have VM estates that will not become containers any time soon, and OpenShift Virtualization gives infrastructure teams a way to run those VMs next to containerized applications on the same operational platform.
Read Post
armo

Privacy and Data Residency for AI Agents: What GDPR Requires That Static Controls Can't Show

May 7, 2026 By Yossi Ben Naim In ARMO
The residency evidence GDPR and the EU AI Act now expect lives in the runtime trajectory of every AI agent execution, not in the deployment configuration. Your residency compliance dashboard — every workload in eu-west-3, sovereign cloud configured, SCCs signed — cannot produce it. Your AI agent’s last thousand inferences crossed an external border, on average, eight times each. The translation API routed through us-east-1 when the EU endpoint hit capacity.
Read Post
armo

Why Editing IAM Policies Won't Fix Your AI Agent Identity Problem

May 7, 2026 By Ben Hirschberg In ARMO
Editing IAM policies cannot fix the most common architectural mistake in shipping AI agents on Kubernetes. It happens in thirty seconds: a platform engineer reuses an existing ServiceAccount with an IRSA annotation for Bedrock access because creating a new one takes thirty minutes plus a Terraform pull request. The new agent ships under the existing identity.
Read Post
armo

AI Agents in the Cloud: A Risk Management Framework for Security Leaders

May 7, 2026 By Shauli Rozen In ARMO
Your risk committee meets Thursday. The agenda has a new item: AI agent risk posture. You open the register. The fraud detection agent shipped in March is on it. So is the customer service agent. Neither row is useful — “likelihood: medium, impact: high, control: service account scoped via IAM.” Three months ago that was approximately right. Last week the platform team added two MCP connections, the model was upgraded, and the agent now touches data classes the entry never anticipated.
Read Post
jumpsec

What's happening to DevOps Security?

May 7, 2026 By Sean Moran In JUMPSEC
As 2026 rolls on, our capacity to prompt ourselves silly appears to be limitless. We’ve already seen the financial, legal, and reputational damage to Deloitte as they partly refunded the Australian government for a 237-page audit report containing LLM-generated hallucinations like fabricated academic references, fake footnotes, and a false quote attributed to a judge.
Read Post
teleport

How to Secure Third-Party Remote Access to Data Centers (Without SSH Keys)

May 7, 2026 By Mayur Pipaliya In Teleport
Whether it’s vendors diagnosing GPU driver failures or network technicians troubleshooting switch configurations, organizations are often ready to do whatever it takes to get their infrastructure back to normal. For some, that may mean defaulting to the fastest access path available for third-party access, such as shared SSH keys, VPN credentials, or screen-sharing sessions.
Read Post
CalCom

How to Talk to Your Board About System Hardening

May 7, 2026 By Joan Levin In CalCom
You know your servers need hardening. Getting leadership to prioritise, fund, and support the effort is the harder challenge. Here’s our experts’ best advice for how to talk to the C-suite and board about the need for automated server hardening. You already know the servers are drifting. Configurations change. Exceptions pile up. Standards slip over time. The hard part is not identifying the problem.
Read Post

How Attackers Use Developer Machines to Breach the Software Supply Chain - May 07, 2026

May 7, 2026 By GitGuardian In GitGuardian
In April, three major supply chain campaigns hit npm, PyPI, and Docker Hub in just 48 hours, and while the ecosystems were different, the objective was the same: steal credentials from developer environments and CI/CD pipelines. The malware targeted API keys, cloud credentials, SSH keys, GitHub tokens, npm tokens, environment variables, and more, turning developer machines and build systems into high-value credential vaults for attackers.
View Video

Meet GitGuardian's AI Assistant: Natural Language Queries Across All Your Incidents

May 7, 2026 By GitGuardian In GitGuardian
See how the GitGuardian Assistant helps teams investigate, understand, and remediate secret incidents directly from the GitGuardian workspace. In this preview, Mathieu and Dwayne walk through how the assistant uses incident context, workspace details, and GitGuardian documentation to answer questions, suggest next steps, and help manage incidents through natural language. It can explain threat patterns, assess scope and impact, recommend remediation steps, assign incidents, update tags, and propose changes to incidents.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.