Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

armo

AI Agent Attack Detection: The Complete Framework for Security Teams

May 15, 2026 By Shauli Rozen In ARMO
It usually starts the same way. The CISO comes back from a board meeting having signed off on agentic AI for production. The SOC lead is told, in roughly that many words, to build detection for the agents. And the security stack she has — CNAPP for posture, EDR on the nodes, container runtime sensors, a SIEM ingesting everything — was architected before AI agents existed as a workload class.
Read Post
mend

Inside the RubyGems Supply Chain Attack: How Mend Defender Caught a Coordinated Flood Before It Spread

May 14, 2026 By Maciej Mensfeld In Mend
On May 11, 2026, Mend Defender flagged more than 120 malicious packages newly published to RubyGems — the standard package manager for the Ruby ecosystem. Within 24 hours, that initial cluster expanded into something far larger: tens of thousands of packages pushed by thousands of attacker-controlled accounts, forcing RubyGems to suspend new account registration entirely while the cleanup got underway.
Read Post
gitprotect

DevOps Threats 2026: GitProtect Reveals AI and Compliance Danger Zones

May 13, 2026 By Łukasz Dydek In GitProtect
As DevOps environments become primary attack surfaces, protecting your intellectual property (IP) requires a data-driven understanding of the modern threat landscape. The 2026 “DevOps Threats Unwrapped Report” by GitProtect accelerates building your cyber awareness. It brings you the latest statistics, highlighting contemporary trends in DevSecOps. It also dives into dozens of real attacks and breaches affecting SaaS platforms in 2025 in 10 different areas.
Read Post
CloudCasa

Enabling Mirantis Self-Service Virtualization with CloudCasa

May 13, 2026 By CloudCasa In CloudCasa
As enterprises modernize infrastructure, the shift toward self-service virtualization on Kubernetes is accelerating. Platforms such as Mirantis k0rdent AI and k0rdent Enterprise feature KubeVirt-based virtualization, enabling organizations to deliver on-demand infrastructure while maintaining governance controls.
Read Post

The GitGuardian Secret Detection Engine Just Got 43X Faster Thanks To Rust

May 13, 2026 By GitGuardian In GitGuardian
While not a new feature, the GitGuardian team has been hard at work making updates to our TokenScanner, the underlying engine that powers GitGuardian's secret scanning ability. This is great news for folks dealing with very large repos and legacy platforms that thousands of developers have touched over the years. Scanning millions of files, attachments, commits, and anywhere else secrets might be hiding takes minutes. Historical scans across petabytes of information, which used to take days, now take less than an hour. What used to take hours takes a few short minutes.
View Video
mend

Mini Shai-Hulud Is Back: 172 npm and PyPI Packages Compromised in Latest Wave

May 12, 2026 By Tom Abai In Mend
The Mini Shai-Hulud supply chain campaign has resurfaced with its largest wave yet. Over a 48-hour window on May 11-12, 2026, attackers compromised 172 unique packages across 403 malicious versions on npm and PyPI, including high-profile scopes like @tanstack, @uipath, @mistralai, and @opensearch-project.
Read Post

The Teleport Agentic Identity Framework in 3 minutes

May 12, 2026 By Teleport In Teleport
AI agents are rapidly moving into production, but most organizations are still deploying them on top of legacy identity systems built around passwords, secrets, and fragmented access models. In this video, we introduce the Teleport Agentic Identity Framework, a standards-driven approach for deploying AI agents securely across infrastructure using cryptographic identity, governed access, and continuous visibility.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.