Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

tanium

Types of AI agents: From simple reflex to autonomous systems

Apr 29, 2026 By Tanium In Tanium
AI agents fall into five foundational categories: simple reflex, model-based reflex, goal-based, utility-based, and learning agents. Each is defined by how much environmental awareness and decision-making complexity the system can handle, from fixed condition-action rules to feedback-driven self-improvement.
Read Post
nightfall

AI Agents are moving your sensitive data: Nightfall built a solution where DLP fails

Apr 29, 2026 By Chris Martinez In Nightfall
Somewhere in your environment right now, an AI agent is reading files, querying a database, and passing output through a channel your DLP has never seen. It's running under a legitimate user credential, inside a sanctioned tool, and it will not trigger a single alert. When it's done, there will be no record of what it accessed or where that data went. This is not an edge case. It is the default state of most enterprise environments in 2026.
Read Post

This Is How Red Teams Actually Use AI Security Data #aisecurity #redteam #threatintelligence

Apr 29, 2026 By Razorthorn Security In Razorthorn
The volume of AI security research is now too high for any human to track properly by hand. The practical answer is using AI to filter AI, reducing hundreds of articles and reports into a daily shortlist so analysts spend their time on signal instead of noise.
View Video
upguard

1 in 15 MCP Servers are Lookalikes: Is Your Org at Risk?

Apr 29, 2026 By Shane Moosa In UpGuard
Researchers recently analyzed 18,000 Claude Code configuration files pulled from public GitHub repositories. What they found was straightforward and alarming: developers are already installing mistyped, misconfigured, and near-identical MCP server names — often without realizing it. The human-error condition that makes typosquatting work was already present at scale before any attacker needed to exploit it.
Read Post
nightfall

You Can't Secure AI Agents You Haven't Found

Apr 29, 2026 By Chris Martinez In Nightfall
Most organizations have a reasonable handle on their sanctioned SaaS apps. Model Context Protocol - hit 10,000 public servers within a year of launch, with 97 million monthly SDK downloads. None of those numbers capture the servers your developers configured locally. Those don't appear in any registry. They were added at the IDE level, one developer at a time, with no approval step and nothing that touches a central system. That's the inventory problem. It comes before any question of enforcement.
Read Post
upguard

MCP: The AI Protocol Quietly Expanding Your Attack Surface

Apr 29, 2026 By Shane Moosa In UpGuard
In February 2026, researchers uncovered something that should give every security leader pause. A malware operation called SmartLoader, previously known for targeting consumers who downloaded pirated software, had completely pivoted its infrastructure. SmartLoaders new target was developers, and its new entry point was a protocol most security teams had never heard of. The payload delivered to victims: every saved browser password, every cloud session token, every SSH key on the machine.
Read Post
Torq

AI SOC Metrics That Actually Matter: How to Measure Whether AI Is Working in Your SOC

Apr 29, 2026 By Torq In Torq
Every security vendor shipping an AI product in 2026 makes the same promises. Faster triage. Shorter response times. Fewer false positives. Reclaimed analyst hours. But, six months after deployment, most security leaders still cannot answer a straightforward question from the board: Is this thing actually working?
Read Post
securonix

Mythos, Attackers, and The Part People Still Want To Skip

Apr 29, 2026 By Aaron Beardslee In Securonix
Anthropic built a powerful AI model and then kept it on a short leash. The important part is not that a model found bugs, which has been coming for a while. What’s worth acknowledging is that Anthropic looked at what Mythos could do and decided broad release was a bad idea. Attackers do not need a perfect autonomous system. They need leverage.
Read Post

What Real AI Security Incidents Reveal About Today's Risks

Apr 29, 2026 By Mend In Mend
Mend.io, formerly known as Whitesource, has over a decade of experience helping global organizations build world-class AppSec programs that reduce risk and accelerate development -– using tools built into the technologies that software and security teams already love. Our automated technology protects organizations from supply chain and malicious package attacks, vulnerabilities in open source and custom code, and open-source license risks.
View Video

SMB Risks, AI, and Regional Realities with Paul Harris - The 443 Podcast - Episode 368

Apr 28, 2026 By WatchGuard Technologies In WatchGuard
This week on the podcast, Marc and Corey sit down with Paul Harris, CEO of BGLA and Futurity Corp at WatchGuard's Impact Partner Conference in Tulum, to explore the evolving cybersecurity landscape across Latin America. Paul shares his journey from early days in cybersecurity to leading organizations in the region, while breaking down the biggest concerns facing LATAM SMBs today. The conversation also covers how AI is reshaping cybersecurity, the challenges of securing partners across diverse markets, and practical advice for business leaders looking to stay ahead of cyber risk in LATAM.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.