Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Corelight

Are you blind to the next big firewall exploit? Warning signs and lessons learned from the recent Cisco exploit

Oct 20, 2025 By David Burkett In Corelight
It feels like the security world is caught in a recurring cycle. We see a spike in strange scanning activity, file it away as internet background noise, and then weeks later, a major zero-day exploit drops, targeting the very technology that was being scanned. The recent Cisco ASA vulnerabilities were a textbook example of this pattern. A September 4, 2025, report from GreyNoise highlighted a massive surge in scanning, with over 25,000 unique IPs probing Cisco ASA devices.
Read Post
Corelight

Exposing Salt Typhoon on the network using the PEAK Threat Hunting Framework

Oct 20, 2025 By David Burkett In Corelight
How do you find an adversary who lives where you can't easily look? A recent CISA advisory on the state-sponsored actor "Salt Typhoon" highlights this exact challenge. These actors aren't just breaking in; they're moving in. They persist on network edge devices like routers and firewalls—critical infrastructure that often sits outside the view of traditional endpoint security. From this vantage point, they capture traffic, steal credentials, and plan their next move.
Read Post

When Convergence Gets Real: Winning on Time, Trust, and Talent in the Cyber Arms Race

Oct 17, 2025 By Forescout Technologies In Forescout
Forescout CEO Barry Mainz is joined by Lt. General Robert J. Skinner, USAF, retired. Together, they will explore how convergence across people, technologies, and missions is reshaping cybersecurity in both the public and private sectors. From the pressure to deliver AI-driven cost savings, to navigating the emerging threat posed by quantum, to the cultural shift required for true operational convergence, Barry and Bob unpack what it really takes to lead in today’s threat landscape. At the center of it all: how time, not money, is becoming the most scarce and strategic resource in cyber defense.
View Video
cato networks

Stop the Silent Spread with Unified ZTNA

Oct 16, 2025 By Jessica (Hatz) Blodgett In Cato Networks
Attackers exploit fragmented access controls and security blind spots to silently escalate their presence and prepare for data theft. The initial breach is usually only the start – what comes next will have a greater impact. Once an attacker compromises a single endpoint, the focus quickly shifts to expanding reach, moving laterally, elevating privileges, and staging data theft. If access controls are inconsistent or overly permissive, this becomes easy.
Read Post
Hybrid Detection Architecture: Rules, ML, and LLMs in Concert

Hybrid Detection Architecture: Rules, ML, and LLMs in Concert

Oct 16, 2025 By SecuritySenses In SecuritySenses
Security teams are drowning in complexity. Modern networks generate millions of events daily, attackers constantly shift tactics, and the tools meant to protect us often work in isolation, blind to what their neighbors are seeing. That mythical single solution that would catch everything? It's sitting in the graveyard next to perpetual motion machines and honest vendor pricing.
Read Post
Corelight

Corelight Named a Leader in NAV Solutions by Forrester

Oct 15, 2025 By Ashish Malpani In Corelight
We are proud to announce that Corelight has been recognized as a Leader in The Forrester Wave: Network Analysis And Visibility (NAV) Solutions, Q4 2025. We believe this recognition reflects our focused innovation and the expanding capabilities of our Open NDR platform.
Read Post
Corelight

Corelight reconnects visibility across the entire AWS cloud environment

Oct 14, 2025 By Muzzafer Pasha In Corelight
Today, we are pleased to announce the launch of Corelight’s new AWS Flow Monitoring Sensor, a new addition to Corelight’s flow monitoring capabilities. This new sensor was purpose-built to address the longstanding visibility challenges that have frustrated security teams running their most critical workloads in AWS. AWS provides one of the world’s most popular cloud platforms, hosting applications and sensitive data for some of the largest organizations.
Read Post
Forward Networks

CISA Emergency Directive 2503: What It Means for Cisco ASA and Firepower Devices

Oct 14, 2025 By Forward Networks In Forward Networks
CISA Emergency Directive 25‑03 mandates that federal civilian executive branch (FCEB) agencies immediately identify and mitigate vulnerabilities in Cisco ASA and Firepower devices. The vulnerabilities, which affect SSL VPN components, can be exploited by attackers to gain unauthorized access and pivot across networks. CISA’s actions are based on observed exploit activity in the wild and the critical role these devices play in public sector infrastructure.
Read Post

Fidelis Security's Collaboration with Palo Alto | Unparalleled Protection, Visibility & Control

Oct 13, 2025 By Fidelis Security In Fidelis Security
Discover how Fidelis Security and Palo Alto Networks are joining forces to deliver a powerful, integrated cybersecurity solution that redefines network visibility and protection. In this collaboration, Fidelis Network enhances Palo Alto’s Prisma Access with advanced Network Detection and Response (NDR) capabilities—empowering security teams with deep network insights, automated threat detection, and unmatched visibility across hybrid environments.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.