Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

In this episode of Security Matters, host David Puner welcomes back David Higgins, senior director in CyberArk’s Field Technology Office, for a timely conversation about the evolving cyber threat landscape. Higgins explains why today’s attackers aren’t breaking in—they’re logging in—using stolen credentials, AI-powered social engineering, and deepfakes to bypass traditional defenses and exploit trust.

Application Security, WAF, and OWASP form an interconnected defense strategy for web applications. OWASP (Open Web Application Security Project) provides the framework for identifying critical vulnerabilities through resources like the OWASP Top 10, while WAFs act as the protective layer that detects and blocks attacks targeting these vulnerabilities in real-time.

In times of geopolitical and economic instability, no organization would consider running without backups, additional support, clear end goals, and company-wide communication. Within business, the wisdom of strength in numbers and power in unity is widely understood. However, when it comes to its cybersecurity, a critical pillar that reputation, safety, and resilience rely upon, the opposite often happens.

Cilium network policies (CNPs) extend Kubernetes’ L3/L4 controls to the application layer (L7). CNPs provide teams with advanced networking capabilities, but they can also introduce new ways for connectivity to fail, especially in environments running thousands of workloads. Many of these issues stem from differences in how Kubernetes and Cilium interpret the same concepts, such as label scoping, IP-based rules, service identities, and how default-deny behavior is applied.

The Monthly Intelligence Insights report provides a summary of top threats curated, monitored, and analyzed by Securonix Threat Labs in November 2025. The report also includes a synopsis of the threats, indicators of compromise (IoCs), tactics, techniques, and procedures (TTPs), and related tags. Each threat has a comprehensive summary from Threat Labs and search queries from the Threat Research team.

As organizations accelerate the adoption of Artificial Intelligence, from deploying Large Language Models (LLMs) to integrating autonomous agents and Model Context Protocol (MCP) servers, risk management has transitioned from a theoretical exercise to a critical business imperative. The NIST AI Risk Management Framework (AI RMF 1.0) has emerged as the standard for managing these risks, offering a structured approach to designing, developing, and deploying trustworthy AI systems.

Shanya PaaS spreads among ransomware groups, GrayBravo expands its footprint, and Storm-0249 exploits EDR processes to hide malicious activity.

With the final CMMC program Rule now codified in 32 CFR Part 170, the DoD has activated its companion acquisition rule in 48 CFR, making DFARS 252.204-7021 enforceable as of November 10, 2025. This date marks the start of Phase 1 of the DoD’s rollout. From that point forward, contractors handling FCI or CUI must meet the CMMC level specified in their solicitation and maintain a current CMMC status filed in SPRS to remain eligible for contract award.

Implementing DevSecOps integrates security directly into your DevOps pipeline, allowing you to build secure applications without sacrificing speed. Many organizations treat security as an afterthought, which leads to increased risk, mounting security debt, and costly project delays. Data shows that half of organizations have critical security debt (high severity, high exploitability flaws) This article provides a clear, six-step framework for implementing DevSecOps.

How a simple “I found your photo” message can quietly take over your account.