Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Featured Post
The Global Regulatory Convergence: A Catalyst for Smarter Compliance

The Global Regulatory Convergence: A Catalyst for Smarter Compliance

Aug 27, 2025 By Sean Tilley, Senior Director Sales of EMEA In 11:11 Systems
As digital technologies and threats transcend borders, the global convergence of regulatory frameworks is no coincidence. Governments and regulators are recognising the need for consistency as cyberattacks, data breaches, algorithmic bias, and systemic failures in digital infrastructure are no longer local concerns but are global risks that require harmonised solutions.
Read Post

EP 14 - Beyond secrets: Securing the future of machine identity

Aug 27, 2025 By CyberArk In CyberArk
In this episode of Security Matters, host David Puner sits down with Matt Barker, CyberArk’s VP and Global Head of Workload Identity Architecture, for a deep dive into the exploding world of machine identities and the urgent need to rethink how to secure them. From his journey co-founding Jetstack and creating Cert Manager to leading CyberArk’s efforts in workload identity, Matt shares insights on why secrets-based security is no longer sustainable—and how open standards like SPIFFE are reshaping the future of cloud-native and AI-driven environments.
View Video

Controlling non-human identities in your enterprise with One Identity

Aug 27, 2025 By One Identity by Quest In One Identity
With every organization vying to automate away their cybersecurity problems, it’s easy to allow the machine identities taking on formerly manual tasks to become entryways for threat actors. Learn the must-haves for securing the non-human identities streamlining your organization with One Identity sales engineer Rob Kraczek.
View Video
wallarm

The API Security Reality Check: Key Takeaways from Q2 2025 API ThreatStats Report

Aug 27, 2025 By Wallarm In Wallarm
API security has never been more crucial. Vulnerabilities are growing in volume and severity. AI integrations are a burgeoning attack vector. Increasing GraphQL adoption presents hidden dangers. To protect your organization, you must secure your APIs. Keep reading for our key takeaways from the Wallarm Q2 2025 API ThreatStats report – and find out what you need to do to protect yourself.
Read Post

Why Smart Companies Are Moving to Context-Based AI Security

Aug 27, 2025 By Protecto In Protecto
AI consumes massive volumes of unstructured data — emails, documents, reports, and prompts. Hidden within them are sensitive details: customer PII, salary data, intellectual property, and confidential financial information. Without the right safeguards, one innocent prompt can lead to costly data leaks, compliance violations, and privacy risks. Traditional security tools like RBAC, DLPs, and prompt filters weren’t designed for AI. They fail because AI doesn’t see folders — it consumes raw context. That’s where Protecto’s Context-Based Access Control (CBAC) comes in.
View Video
ionix

CVE-2025-7775: Memory Overflow Vulnerability in Citrix NetScaler ADC and Gateway

Aug 27, 2025 By Tal Zamir In IONIX
On August 26th, 2025, Citrix patched CVE‑2025‑7775, a memory overflow vulnerability in NetScaler ADC and Gateway appliances that allows unauthenticated remote code execution (RCE) and/or denial-of-service. This threat is confirmed to be actively exploited in the wild. Citrix strongly emphasized that no mitigations exist aside from applying the patch immediately.
Read Post
Snyk

Weaponizing AI Coding Agents for Malware in the Nx Malicious Package Security Incident

Aug 27, 2025 By Liran Tal In Snyk
On August 26–27, 2025 (UTC), eight malicious Nx and Nx Powerpack releases were pushed to npm across two version lines and were live for ~5 hours 20 minutes before removal. The attack also impacts the Nx Console VS Code extension.
Read Post
teleport

5 Ways to Keep AWS Fast with Just-in-Time Access

Aug 27, 2025 By Jack Pitts In Teleport
Modern AWS environments move fast. Engineers spin up EKS clusters for testing, automation pipelines deploy to production, and AI agents trigger infrastructure workflows via Amazon Bedrock. AWS provides ways to manage access primitives such as roles and privileges to keep up with this velocity, such as STS AssumeRole, OIDC federation, IAM Authenticator, and Identity Center. But the challenge isn’t in these primitives themselves. It's the human factor behind the primitives.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.