Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

mend

Best SAST Tools: Top 10 Solutions Compared

Jun 5, 2025 By Mend.io Communications In Mend
SAST tools automatically scan the source code of an application. The goal is to identify vulnerabilities before deployment. SAST tools perform white-box testing, which involves analyzing the code based on inside knowledge of the application. SAST offers granularity in detecting vulnerabilities, providing an assessment down to the line of code.
Read Post
teleport

Your Infrastructure Has a Non-Human Trust Problem

Jun 4, 2025 By Jack Pitts In Teleport
Modern infrastructure is increasingly run by automated systems, not people. Bots push code. Runners deploy to prod. Agents orchestrate cloud resources. And increasingly, AI models trigger actions directly through prompt-driven automation. Welcome to the era of non-human identities (NHIs): the invisible workforce operating behind modern digital systems.
Read Post

Pen Testing: The "Aha" Moment That Changed Everything! #cybersecurity

Jun 4, 2025 By Mend In Mend
Mend.io, formerly known as Whitesource, has over a decade of experience helping global organizations build world-class AppSec programs that reduce risk and accelerate development -– using tools built into the technologies that software and security teams already love. Our automated technology protects organizations from supply chain and malicious package attacks, vulnerabilities in open source and custom code, and open-source license risks.
View Video
teleport

Security Benchmarking Authorization Policy Engines: Rego, Cedar, OpenFGA & Teleport ACD

Jun 4, 2025 By Mohamed Ouad, Doyensec In Teleport
Back in 2024, Amazon Web Services (AWS) engaged Trail of Bits (ToB) to perform a comparative assessment between several authorization and access management policy languages. If you're unfamiliar with the concept of a policy engine, it's essentially a fully-featured engine that offloads authorization decisions in an application.
Read Post

How to Backup Kubernetes Clusters with Terraform and CloudCasa | Step-by-Step Demo

Jun 3, 2025 By CloudCasa In CloudCasa
In this demo, Martin Phan, Field CTO at CloudCasa, shows you how to automate the deployment of CloudCasa resources using our official Terraform provider. Learn how to register Kubernetes clusters, set up backup jobs and policies, and define object storage destinations — all through infrastructure as code. What you'll learn.
View Video

How to Easily Backup and Restore SUSE Virtualization VMs (Updated Tutorial)

Jun 3, 2025 By CloudCasa In CloudCasa
In this updated tutorial, Martin Phan, Field CTO at CloudCasa, walks you through how to easily back up and restore virtual machines in SUSE Virtualization (formerly Harvester). You'll see how to register your SUSE cluster with CloudCasa, protect containerized VMs, and perform a full VM restore — including the ability to restore to a different namespace with options to power off the VM and apply additional restore transformations.
View Video
CloudCasa

How to Set Up the CloudCasa Agent Spectro Cloud Pack for Kubernetes Backup

Jun 3, 2025 By Da Li In CloudCasa
Spectro Cloud Palette is an enterprise-grade Kubernetes management platform that simplifies the deployment and lifecycle management of clusters across data center, cloud, and edge environments. Designed around a declarative model, Spectro Cloud Palette enables users to define full-stack cluster profiles—including the operating system, Kubernetes version, and curated integrations—all governed by policy.
Read Post
tripwire

Is Continuous Deployment Too Risky? Security Concerns and Mitigations

Jun 2, 2025 By Gilad David Maayan In Tripwire
Adopting Continuous Deployment, an extreme form of software delivery automation, can drastically speed up software delivery, but it also introduces critical security challenges. Some of the most severe, global-scale security breaches of recent years (Solarwinds and Kaseya are just two examples) were related to breaches in software delivery infrastructure. Continuous deployment has the potential to make things worse.
Read Post

Pen Testers Save the Day: Exposing Critical Vulnerabilities! #cybersecurity

Jun 2, 2025 By Mend In Mend
Mend.io, formerly known as Whitesource, has over a decade of experience helping global organizations build world-class AppSec programs that reduce risk and accelerate development -– using tools built into the technologies that software and security teams already love. Our automated technology protects organizations from supply chain and malicious package attacks, vulnerabilities in open source and custom code, and open-source license risks.
View Video

Can Google Jules Build a SECURE Note Taking App?

Jun 2, 2025 By Snyk In Snyk
In this video, I test out Google Jules, Google’s brand new AI developer assistant, to see if it can build a secure note-taking app from scratch. With a focus on privacy, authentication, and data protection, I challenge Jules to create something functional and secure. This is part of an ongoing series where I test different AI models and tools to see how well they handle real-world development tasks. Check out our playlist where we're putting these various models to the test!
View Video

Copyright © 2026 OpsMatters™. All rights reserved.