Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Best Practices for Enterprise macOS Security: Tools, Techniques, and Detection Strategies

Best Practices for Enterprise macOS Security: Tools, Techniques, and Detection Strategies

Dec 23, 2025 By SecuritySenses In SecuritySenses
macOS data is increasingly targeted by hackers due to the sensitive information that Macs hold. Users require strong Mac cybersecurity measures to protect themselves from attacks. Combining Mac's built-in security features with third-party solutions provides hardened protection and continuous detection. Endpoint security for Mac best practices improve your enterprise macOS security. Implement secure configurations, effective device management, and real-time detection for advanced protection. Using a multi-protection strategy increases recovery speed and reduces the attack surface.
Read Post
Corelight

Inside the mind of a cybersecurity threat hunter part 3: hunting for adversaries moving inside your network

Dec 22, 2025 By Allen Marin In Corelight
Welcome back to our threat hunting series with Corelight and CrowdStrike. In our previous posts, we armed you with techniques to spot adversaries during Initial Access and how they establish Persistence to maintain their foothold. Now, we're diving into the shadowy dance of Defense Evasion and Lateral Movement.
Read Post
Corelight

Detecting CVE-2025-20393 exploitation: catching UAT-9686 on Cisco appliances

Dec 19, 2025 By David Burkett In Corelight
CVE-2025-20393 is a CVSS 10.0 Remote Code Execution (RCE) flaw in Cisco Secure Email Gateways currently being actively exploited by China-nexus groups. A recent advisory from Cisco Talos details how an actor dubbed “UAT-9686” is leveraging this vulnerability to target Cisco Secure Email Gateways (ESA) and Secure Email and Web Managers (SMA). The attack allows threat actors to execute arbitrary commands with root privileges and deploy persistence mechanisms.
Read Post
cato networks

The Partner Advantage: Turn Customer M&A Chaos Into Opportunity

Dec 18, 2025 By Jessica (Hatz) Blodgett In Cato Networks
Every merger or acquisition follows a familiar script: two companies, two networks, two security stacks, one clock. Partners who deliver Day-1 access quickly, then guide a clean path to standardization and modernization, help customers realize deal value sooner. Do that repeatedly and you become the trusted M&A partner across the portfolio.
Read Post
mend

Why AppSec and Network Risk Management Must Be Unified in the Modern Enterprise

Dec 18, 2025 By Tiffany Jennings In Mend
How Mend.io’s ServiceNow integration helps organizations manage application, network, and operational risks together—at scale. Managing AppSec and network risk as separate programs is no longer realistic for enterprise security teams. Today’s digital environments are interconnected, distributed, and constantly changing. A single misconfiguration, unpatched server, or vulnerable open-source component can become a point of exploitation when combined with weaknesses elsewhere in the stack.
Read Post
algosec

2025 in review: What innovations and milestones defined AlgoSec's transformative year in 2025?

Dec 18, 2025 By Adel Osta Dadan In AlgoSec
As we close out 2025, I find myself reflecting on what has been an extraordinary journey for AlgoSec. This year was marked by breakthrough innovations, significant industry recognition, and an unwavering commitment to our vision of secure application connectivity. From launching game-changing solutions to earning accolades on the global stage, 2025 challenged us to push boundaries – and we rose to the occasion with confidence and purpose.
Read Post

Episode 4 - Staying Curious: Lessons from 25 Years in Cybersecurity

Dec 18, 2025 By Corelight In Corelight
In Episode 4 of Corelight Defenders, I sit down with Angela Loomis, Corelight's Director of Technical Account Management, to explore her remarkable 25-year journey in cybersecurity. Angela shares her unconventional entry into the field, starting from a background in television production to becoming a leader in security strategy. We delve into the importance of curiosity in cybersecurity, discussing how diverse experiences enrich the profession, and whether formal education might dampen that curiosity.
View Video
cato networks

AIOps in the Cato SASE Platform: Using Predictive AI Networking to Shift from Reactive to Proactive IT

Dec 17, 2025 By Dr. Guy Waizel In Cato Networks
It was a quiet Monday morning until John, head of IT, opened his laptop and saw 424 new support tickets. Users across the office were reporting issues like “apps won’t load” and “internet not working.” After hours of investigation that stretched into the next day, the team traced the problem to a branch router overwhelmed by malformed DNS queries from a misbehaving IoT device.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.