Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Agentic AI and Identity Sprawl: The Convergence Redefining Cyber Risk

Nov 18, 2025 By Rubrik In Rubrik
Welcome to Data Security Decoded. In this episode, Caleb Tolin welcomes back Joe Hladik, Head of Rubrik Zero Labs, for a focused look at how identity-driven threats are redefining modern security. Drawing insights from Rubrik Zero Labs’ latest report, Identity Crisis: Understanding and Building Resilience Against Identity-Driven Threats, Joe explains why identity has become the new perimeter in an era where hybrid and multi-cloud environments dominate.
View Video

The Shadow AI Disconnect CISOs Need to Know

Nov 18, 2025 By UpGuard In UpGuard
Our new State of Shadow AI Report has just uncovered a critical disconnect that all security leaders need to be aware of. We all know shadow AI is exploding, and that blocking is the most logical response. How else are you going to regain control? But our data shows this is backfiring: This is where blocking can get dangerous. It doesn't stop AI; it just limits your visibility. Download the full (ungated) shadow AI report to see all the data.
View Video
salt security

From Cloud to Code: Salt Cloud Connect Now Scans GitHub

Nov 18, 2025 By Eric Schwake In Salt Security
One of our most-loved features is Salt Cloud Connect. In a world of complex deployments, it’s a breath of fresh air: an agentless discovery model that delivers under 10-minute deployment and rapidly gathering API-specific info in cloud platforms. Customers plug it in, and in minutes, not weeks, they get a “traffic-free”, complete inventory of their APIs across AWS, Azure, GCP, Kong, and Mulesoft. This “ease of use” provides a “wow” moment of immediate visibility.
Read Post
obrela

Obrela joins the discussion on the future of NATO's cloud security

Nov 18, 2025 By Sebastian Bocquier In Obrela
Drawing on Obrela’s experience managing complex cyber incidents and supporting national-level assurance programmes, Sebastian Bocquier, Head of DFIR, will present a practical, mission-ready framework that shifts accreditation from a static, one-time checkpoint to a continuous assurance capability embedded throughout NATO’s cloud ecosystem.
Read Post
protecto

Comparing NER Models for PII Identification

Nov 18, 2025 By Anwita In Protecto
Identifying and redacting personally identifiable information (PII) is a critical need for enterprises handling sensitive data. Over 1000 NLP models and tools claim to solve this problem, but an infinite number of options opens a paradox of choice. We compiled this comprehensive comparison that examines ten notable PII detection solutions – their features, use cases, pros/cons, and reported success rates.
Read Post

Admin MCP

Nov 18, 2025 By Apono In Apono
Apono announces the launch of our Admin MCP (Model Context Protocol), a new tool that simplifies organizational access management through natural language queries. The product works with MCP-supported clients like Claude and Cursor, allowing administrators to quickly answer access questions without manually navigating through dashboards and permissions. This demo shows how users can instantly check if someone can access database resources or get comprehensive audit reports for AWS production accounts.
View Video
egnyte

Egnyte Collaborates With Microsoft to Power Enterprise AI With Microsoft Agent 365

Nov 18, 2025 By Niamh Conlon In Egnyte
Egnyte is excited to announce a new collaboration with Microsoft, integrating Egnyte’s data governance and secure collaboration expertise with Microsoft Agent 365 for AI agents. This collaboration is designed to transform how organizations empower their employees, enhancing productivity and decision-making through secure, governed AI. The enterprise landscape is rapidly evolving.
Read Post
cyberark

Racing and Fuzzing HTTP/3: Open-sourcing QuicDraw(H3)

Nov 18, 2025 By Maor Abutbul In CyberArk
This blog post provides a dive into HTTP/3’s evolution for security engineers, an overview of our research journey, and what led us to develop the open-source tool QuicDraw, which can be used for fuzzing and racing HTTP/3 applications. QuicDraw implements “Quic-Fin-Sync” our implementation of the last-byte-sync with the single packet attack on HTTP/3. We conclude by evaluating QuicDraw’s performance against a real-world target and comparing its results to other tools.
Read Post
vanta

Trust at enterprise scale: Introducing Vanta's Agentic Trust Platform

Nov 18, 2025 By Vanta In Vanta
Building trust is critical for today’s most ambitious businesses. Why? Because companies viewed as trustworthy grow up to four times faster. Yet earning and proving trust remains harder than ever. ‍ As organizations scale, their attack surfaces grow—and so do their tech stacks. Every new tool meant to increase security often fragments it, leaving teams buried in overhead and blind spots.
Read Post

Attackers are integrating LLMs directly into malware #cybersecurity #ai #malware #infosec #podcast

Nov 18, 2025 By LimaCharlie In LimaCharlie
Threat actors have moved beyond using AI to speed up operations. They're now embedding large language models directly into malware. In this Intel Chat, Matt Bromiley and Chris Luft discuss Google's Threat Intelligence Group findings on malware families like PromptFlux and PromptSteal. These threats query LLMs mid-execution to dynamically alter behavior, obfuscate code, and generate system commands on demand.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.