Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

obrela

Obrela joins the discussion on the future of NATO's cloud security

Nov 18, 2025 By Sebastian Bocquier In Obrela
Drawing on Obrela’s experience managing complex cyber incidents and supporting national-level assurance programmes, Sebastian Bocquier, Head of DFIR, will present a practical, mission-ready framework that shifts accreditation from a static, one-time checkpoint to a continuous assurance capability embedded throughout NATO’s cloud ecosystem.
Read Post

The Shadow AI Disconnect CISOs Need to Know

Nov 18, 2025 By UpGuard In UpGuard
Our new State of Shadow AI Report has just uncovered a critical disconnect that all security leaders need to be aware of. We all know shadow AI is exploding, and that blocking is the most logical response. How else are you going to regain control? But our data shows this is backfiring: This is where blocking can get dangerous. It doesn't stop AI; it just limits your visibility. Download the full (ungated) shadow AI report to see all the data.
View Video
bitsight

CVSS Is a Little Bit of Risk: Rethinking CVSS in Vulnerability Prioritization

Nov 18, 2025 By Ben Edwards In BitSight
The best part about my job is that I sometimes get to make some controversial statements. Well, as controversial as things can be in a niche area of cybersecurity like “what is a reasonable measure of vulnerability risk?” Along with my colleague Sander Vinberg we got to explore this question earlier this year at the second Annual VulnCon conference in Raleigh. Even though it’s only been held twice, it is quickly becoming one of my favorite conferences.
Read Post
5G, GPS, and Cyber Risks: The Hidden Security Challenges of Connected Bikes

5G, GPS, and Cyber Risks: The Hidden Security Challenges of Connected Bikes

Nov 18, 2025 By SecuritySenses In SecuritySenses
Technology has transformed the waywe travel. Electric bikes are smarter, faster, and easier to use than ever. From GPS-powered routing to 5G-fueled communicationsystems, these technologies have made traveling more efficient and pleasurable. Still, as I investigated the worldof the electric dirt bike, I found that all this connectivity not only brings convenience but also new security risks that many riders just aren't considering.
Read Post
How Private Investigators Partner With Ethical Hackers to Uncover Cybercrime

How Private Investigators Partner With Ethical Hackers to Uncover Cybercrime

Nov 18, 2025 By SecuritySenses In SecuritySenses
Internet anarchy is quick and at times it seems that the web has a few too many dark corners. Cybercriminals are aware of how to conceal themselves under unrealistic profiles, concealed IP addresses and vanishing messages. Expert strategy is introduced by the private investigators, yet digital trails may become complicated. This is where the ethical hackers come in and with added technical expertise, they manage to figure out the missing traces, lost data and the actual identities. The pair of them form a good team to reveal the truth, record evidence, and safeguard victims.
Read Post
The Business Case for DSPM: Reducing Risk Through Continuous Visibility

The Business Case for DSPM: Reducing Risk Through Continuous Visibility

Nov 18, 2025 By SecuritySenses In SecuritySenses
Similar to many other industries today, modern IT is so complex. In the contemporary world, companies are dealing with data within cloud, on-premise, and hybrid environments. This complexity brings about serious security challenges that cannot be solved by conventional security tools. The solution is DSPM (data security posture management); it offers full-time visibility to your data. This will enable you to identify weak spots before an attack. It also assists you in staying secure and compliant and safeguarding your data.
Read Post
kovrr

Building the Right Foundation With Kovrr's AI Risk Governance Suite

Nov 17, 2025 By Kovrr In Kovrr
‍AI systems are being woven into the fabric of business operations at a pace that outstrips the structures needed to safely scale them. McKinsey’s latest State of AI report shows that nearly two-thirds of organizations are still stuck in experimentation or pilot mode, unable to systematically expand AI usage across the business. Although leaders cite early benefits in efficiency, revenue gains, and innovation, only 39% report enterprise-level impact.
Read Post
bitsight

Security Alert: CVE-2025-64446 Fortinet FortiWeb Actively Exploited

Nov 14, 2025 By Emma Stevens In BitSight
A critical zero-day, CVE-2025-64446, path-traversal vulnerability in Fortinet FortiWeb, the company’s Web Application Firewall (WAF), is being actively exploited in the wild to create unauthorized administrator accounts on exposed systems. This flaw allows unauthenticated attackers to gain complete administrator access to affected devices.
Read Post
Featured Post
Cyber Resilience and AI Risk: Safeguarding the UK's Critical Infrastructure in a New Threat Landscape

Cyber Resilience and AI Risk: Safeguarding the UK's Critical Infrastructure in a New Threat Landscape

Nov 13, 2025 By David Morimanno, Field CTO NA In Xalient
In October, the UK put a spotlight on cyber resilience with the release of the NCSC's 2025 Annual Review. CEO Richard Horne warned that failing to prepare for cyberattacks risks a company's future. The urgency behind this statement is backed by data: the NCSC handled 204 major cyber incidents between September 2024 and 2025, and 43% of UK businesses reported a breach in the past year.
Read Post
bitsight

Why IoT in Your Supply Chain Still Poses a Serious Cyber Risk

Nov 13, 2025 By Emma Stevens In BitSight
In today’s digital economy, every organization—whether a law firm, retailer, or financial services provider—is now part of someone’s critical infrastructure. A dangerous misconception persists: that Internet of Things (IoT) devices and Industrial Control Systems (ICS) are only concerns for industrial or manufacturing sectors. In reality, these technologies are quietly embedded in everyday operations across nearly every industry.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.