Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Tanium AI Enrichment and Analysis: Tanium Tech Talks #162

May 27, 2026 By Tanium In Tanium
Tired of decoding commands, searching unfamiliar processes, and guessing alert context? See how Tanium AI Enrichment& Analysis breaks down alert activity, explains risk, and guides response - without leaving your workflow. Join us as we explore how Tanium Threat Response uses AI to: Provide detailed context and security implications Decode complex or encoded command lines Summarize alerts with key findings and context Recommend next steps to accelerate investigation and response.
View Video
seemplicity

Exposure vs Vulnerability Management: Is There Actually a Difference?

May 27, 2026 By Megan Horner In Seemplicity
In this exclusive fireside chat, Seemplicity CPO Ravid Circus and SANS instructor Jonathan Risto break down this critical distinction and why mastering it is vital as AI rapidly reshapes the cybersecurity threat landscape. Here’s a summary of what they covered. If you’ve been in security for any length of time, you’ve probably wondered whether exposure management is just vulnerability management with a fresh coat of paint.
Read Post
nightfall

Why MCP Breaks the Financial Services Security Stack

May 27, 2026 By Chris Martinez In Nightfall
A relationship manager asks the firm's AI assistant to "summarize my top wealth clients by AUM and flag anyone with a pending transfer over $500K." The agent calls a CRM MCP server, then a core banking MCP server, then a market data MCP server, and returns a clean answer in twelve seconds. Names, balances, account numbers, pending wire details, all rendered in plain text inside the chat window. No file moved. No email left the network. No DLP channel triggered.
Read Post
bitsight

Is GRC Cool Again? How Mythos and Frontier AI Models Are Bringing a New Focus to Governance and Risk Management

May 27, 2026 By Vanessa Jankowski In BitSight
For the record, I always thought the GRC was cool. NIST Framework? Yes please. Vendor risk register? Tell me more! Not everyone shared my enthusiasm for effective and efficient cyber risk reduction. Until now. Suddenly, seemingly overnight, managing the digital supply chain became really, really important. AI governance (a phrase that didn’t even exist a year ago) is now the topic of boardroom discussions. Yes, it will look different and operate in a new way.
Read Post

Ep. 60 - The Puppet Masters: Mustang Panda's Long Con Against ASEAN Diplomats

May 27, 2026 By SafeBreach In SafeBreach
When a tired EU diplomat clicks "connect" on an airport Wi-Fi portal, his briefing—and his government's secrets—end up in Chengdu. Hosts Tova Dvorin and Adrian Culley unpack Mustang Panda (APT27 / Bronze President), the Chinese threat group running the long con against NGOs, ASEAN ministries, and Tibetan and Uyghur activists. Inside: captive-portal Wi-Fi Pineapples that bypass MFA, PlugX side-loading through legitimate apps, and the USB worm that jumps air-gapped military networks.
View Video
cato networks

Cato CTRL Threat Brief: AI, Zero-Days, and the US-China Cyber Arms Race

May 27, 2026 By Vitaly Simonovich In Cato Networks
Underlying the US–China AI race, there’s arguably a more sinister arms race—the race to identify zero-day threats. Frontier AI algorithms, such as Anthropic Mythos (here) and China’s Qihoo 360 (here), are compressing the zero-day discovery cycle. But how those discoveries are gathered and shared among cooperating entities is giving China significant defensive and offensive advantages.
Read Post
appsentinels

The Security Illusion: Why Your AI Security Tool Won't Save You (And Neither Will Your Traditional API Security)

May 27, 2026 By AppSentinels In AppSentinels
The enterprise security world is having two separate conversations that desperately need to collide. On one side, application security (AppSec) teams are scrambling to secure APIs – the connective tissue of every modern application. On the other, a new wave of “AI security” vendors promise to protect your LLMs from prompt injection, data leakage, and hallucinations. Both groups are solving real problems. Both are missing half the picture.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.