Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

idstrong

What You Need to Know about the Illinois and Texas Healthcare Data Breaches

May 6, 2026 By IDStrong In IDStrong
Three prominent healthcare organizations in the United States have officially disclosed major data breaches that have compromised the personal and medical information of about 600,000 people. The affected organizations were Southern Illinois Dermatology and Saint Anthony Hospital in Illinois and the North Texas Behavioral Health Authority (NTBHA) in Texas.
Read Post
idstrong

What You Need to Know about the Amtrak Data Breach

May 6, 2026 By IDStrong In IDStrong
Amtrak was created by Congress in 1970 as the National Railroad Passenger Corporation. It operates a nationwide rail network with over 300 trains serving more than 500 destinations in 46 states, three Canadian provinces, and the District of Columbia on more than 21,400 miles of route. Booking tickets online when taking a trip with Amtrak comes with so much convenience, ranging from saved passenger details to easy payment processing and quick reservations.
Read Post
cloudflare

When DNSSEC goes wrong: how we responded to the .de TLD outage

May 6, 2026 By Sebastiaan Neuteboom In Cloudflare
On May 5, 2026, at roughly 19:30 UTC, DENIC, the registry operator for the.de country-code top-level domain (TLD), started publishing incorrect DNSSEC signatures for the.de zone. Any validating DNS resolver receiving these signatures was required by the DNSSEC specification to reject them and return SERVFAIL to clients, including 1.1.1.1, the public DNS resolver operated by Cloudflare. The country-code top-level domain for Germany, .de, is one of the largest on the Internet.
Read Post
LimaCharlie

AI in security feels harder than it is

May 6, 2026 By Daniel Ballmer In LimaCharlie
Anyone who's stood up a SIEM from scratch knows the feeling: weeks of infrastructure work, integration headaches, and a services team alongside for the whole process. That experience shaped how people think about adopting anything new in security ops. The instinct is to treat AI the same way: budget for it, plan for it, bring in specialists. This instinct is costing teams real time. Traditional infrastructure takes great effort to stand up. Infrastructure-as-code happens in seconds.
Read Post
knowbe4

Attackers Continue to Pose as Help Desks in Social Engineering Attacks

May 6, 2026 By KnowBe4 Team In KnowBe4
Researchers at Google’s Threat Intelligence Group (GTIG) are tracking a new threat actor that’s impersonating help desks to trick users into installing malware. The threat actor, which GTIG tracks as “UNC6692,” begins by sending a large volume of spam emails to the victim, then initiates contact via Microsoft Teams to ostensibly help the user block the spam.
Read Post

What Your Data Loss Prevention Tool Misses Every Single Day

May 6, 2026 By Cyberhaven In Cyberhaven
In this video, you will learn why legacy DLP tools go blind when sensitive data is copy-pasted into generative AI tools, how Data Lineage fingerprints information at its origin to track it across transformation within an environment, and how operating system-level monitoring eliminates the encryption blindness that limits browsers and firewalls. You will also see how to build context-aware paste policies that allow productive AI use while blocking high-risk data flows from sources like source code repositories, Salesforce, and internal wikis.
View Video
miniorange

Claude Mythos Is Not the Problem. Your Security Basics Are

May 6, 2026 By miniOrange In miniOrange
There is a lot of panic around Claude Mythos. Some people are saying it will hack every system, that the sky is falling, and that there is no stopping it. That fear is dangerous because it makes teams freeze. Claude Mythos is genuinely powerful. AI systems like this can find security issues in minutes that even experienced penetration testers might take weeks to identify and exploit. That part is real. But here is the important point: AI is still exploiting what is already there.
Read Post
WatchGuard

Why WatchGuard Acquired Perimeters.io: Making Cloud Security Work for MSPs

May 6, 2026 By Mick McCarter In WatchGuard
If you ask any MSP what they use to protect their clients’ cloud environments, you will get one of two answers. Either they’ll point to the native security tools built into platforms like Microsoft 365 or Google Workspace. Or they’ll describe a patchwork of different products stitched together to cover identity, configuration, and SaaS visibility. Neither approach is ideal. But both reflect the reality MSPs are working with today.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.