Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Analyze SMS phishing with an AI agent in Tines

May 22, 2026 By Tines In Tines
Automate SMS phishing triage with AI — employees upload a screenshot, and Tines handles the rest in under 5 minutes. When employees forward suspicious texts, security teams still have to manually review screenshots, extract indicators, and route cases. This Five Minute Flow shows how to automate the entire process using the Tines AI action with Claude Sonnet — from employee submission to SOC case creation, IOC enrichment, and escalation when multiple employees report the same threat.
View Video
datadog

Securing AI agents: Why guardrail placement is a key design decision

May 22, 2026 By Yuki Matsuzaki In Datadog
When teams start building AI agents, especially with managed systems like Amazon Bedrock, they often wonder whether simply enabling guardrails is enough to secure their agents. A framework like Amazon Bedrock Guardrails provides a solid foundation for content filtering and policy enforcement, but having guardrails in place is only part of the equation.
Read Post
datadog

Improve API authentication detection with Datadog

May 22, 2026 By Matthieu Roux In Datadog
Many organizations have hundreds or thousands of API endpoints across their services, each of which handles authentication differently. For example, one service might rely on standard headers like Authorization: Bearer, while another uses an API key, and a third uses a custom JSON Web Token header with mechanisms or naming conventions specific to the team that built it.
Read Post
armo

Runtime Observability for AI Agents: What to Instrument and Why

May 22, 2026 By Ben Hirschberg In ARMO
Every guide to AI agent observability tells you what to capture — prompts, tool calls, token usage, traces, syscalls. Almost none address which of those signal sources you can still trust when the agent itself is part of the threat model. That distinction is the entire difference between observability that helps your SRE team debug a slow reasoning chain and observability that helps your security team investigate a breach.
Read Post
persona

Tranche 2 Australia: Who's affected and how to comply

May 22, 2026 By Shana Vu In Persona
On 1 July 2026, Australia's Tranche 2 reforms take effect. If you're a lawyer, accountant, real estate agent, conveyancer, precious metals dealer, or trust and company service provider, this deadline likely applies to you. Tranche 2 extends Australia's AML/CTF obligations to approximately 100,000 businesses that were previously unregulated.
Read Post

SecurityScorecard Weekly Brief: The Driftnet Edition on Critical Infrastructure - Gilad F. Maizles

May 22, 2026 By SecurityScorecard In SecurityScorecard
In this week’s Weekly Brief: The Driftnet Edition, Cyber Researcher Gilad F. Maizles breaks down new SecurityScorecard research powered by the company’s acquisition of Driftnet, exposing widespread internet-facing risk inside a U.S. municipal utility provider that also operated as the town’s ISP. “Threat actors will always target the lowest hanging fruit.” Using the Driftnet engine, SecurityScorecard identified significantly more internet-facing services and attack paths than traditional methodologies.
View Video
tanium

Understanding continuous threat exposure management (CTEM)

May 22, 2026 By Tanium In Tanium
Continuous threat exposure management, or CTEM, is a five-stage program framework for continuously reducing real-world security exposure. It builds on vulnerability scanning by adding risk-informed prioritization, validation of exposure conditions and control effectiveness, and cross-team mobilization to drive remediation.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.