Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

How Cloudflare Got 2x Faster Servers With Less Cache

Apr 30, 2026 By Cloudflare In Cloudflare
In this episode of This Week in NET, JQ Lau and Victor Hwang from our Network & Infrastructure Strategy team walk us through Cloudflare's 13th generation of servers — the machines that power a significant part of the internet across 330+ cities worldwide. The Gen 13 program doubled compute density by jumping from 96 to 192 cores, but that came with an 83% drop in L3 cache. The team explains how a bold hardware bet, combined with Cloudflare's FL2 Rust-based software rewrite, turned that trade-off into a win across throughput, latency, and power efficiency.
View Video

Turning Attackers into Signals: How Deception is Redefining Threat Detection | Fidelis Security

Apr 30, 2026 By Fidelis Security In Fidelis Security
Traditional detection methods are struggling to keep up with modern threats. What if you could turn attackers into your strongest signal? In this session, our Sales Engineer Jim breaks down how deception technology is transforming cybersecurity by: Delivering high-fidelity alerts with minimal noise Adapting dynamically to attacker behavior Extending protection to IoT and non-standard devices Scaling seamlessly across enterprise environments.
View Video
sumologic

How to secure cloud workloads without building a full-scale SOC

Apr 30, 2026 By Adam White In Sumo Logic
You don’t need a 20-person SOC to protect your cloud-native environment. What you need is the right strategy: map your risk, embed security early, automate detection, and let smart tooling do the heavy lifting. Here’s how security and DevOps leaders with limited resources can achieve enterprise-level protection without enterprise-level headcount.
Read Post
Arctic Wolf

CVE-2026-41940: Critical Exploited Authentication Bypass Vulnerability in cPanel & WHM

Apr 30, 2026 By Andres Ramos In Arctic Wolf
On April 28, 2026, cPanel patched a critical authentication bypass vulnerability affecting cPanel and WebHost Manager (WHM), tracked as CVE-2026-41940. The issue stems from a flaw in the login and session handling process that allows Carriage Return Line Feed (CRLF) injection, enabling remote threat actors to bypass authentication and gain unauthorized access to the control panel.
Read Post
armo

AI Agent Sandboxing for Healthcare: Why Standard Kubernetes Primitives Can't Express HIPAA Boundaries

Apr 30, 2026 By Yossi Ben Naim In ARMO
Observe-to-enforce builds behavioral baselines from observed agent traffic — what tools the agent calls, which networks it reaches, which syscalls it executes — and converts them into per-agent enforcement policies. Baselines persist at the Deployment level because pods churn and the envelope has to outlive any single restart. The methodology runs as a four-stage progression: discovery, observation, selective enforcement, continuous least privilege.
Read Post
bitsight

Critical Vulnerability Alert: CVE-2026-41940 in cPanel, WHM, and WP Squared

Apr 30, 2026 By Emma Stevens In BitSight
A critical vulnerability CVE-2026-41940 has been identified in cPanel, WHM, and WP Squared, affecting cPanel & WHM versions after 11.40, as well as WP Squared. These web hosting control panels are commonly used to manage websites, email, databases, and server configurations, making unauthorized access a serious security concern.
Read Post
Snyk

lightning PyPI Compromise: A Bun-Based Credential Stealer in Python

Apr 30, 2026 By Stephen Thoemmes In Snyk
On April 30, 2026, two malicious releases of the popular lightning PyPI package were published, affecting the deep learning framework formerly distributed as pytorch-lightning. Versions 2.6.2 and 2.6.3 ship a hidden _runtime directory that downloads the Bun JavaScript runtime from GitHub at import time and uses it to execute an ~11 MB obfuscated credential stealer. The last clean release is 2.6.1, published January 30, 2026.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.