EP 7- Resilience in Identity Management: Avoiding Single Points of Failure

In this episode of Security Matters, host David Puner sits down with Eric Olden, co-founder and CEO of Strata Identity, and a pioneer in modern identity management. Eric shares his career journey, from founding Simplified to leading Oracle's global identity division, and discusses the critical importance of resilience in identity systems.

How to Manage DDoS Contacts in the LevelBlue Portal | Add, Edit & Notify Admins

Learn how to add and manage contacts in the LevelBlue DDoS Defense Portal, including how to ensure the right users receive DDoS mitigation alerts and notifications. This step-by-step guide walks company administrators through: Accessing the DDoS Defense Portal Adding contacts with Business Direct IDs Enabling email alerts for DDoS mitigation events Managing contact updates to keep your incident response team informed.

Strengthening Cloud Security: API Posture Governance, Threat Detection, and Attack Chain Visibility with Salt Security and Wiz

In the current cloud-centric environment, strong API security is essential. Google's acquisition of Wiz underscores the urgent necessity for all-encompassing cloud security solutions. Organizations should focus on both governing API posture — ensuring secure configuration and deployment to reduce vulnerabilities and assure compliance — and on effective threat detection and response.

Beyond Attachments: How Email Becomes Your Biggest Data Exfiltration Vector

Your Microsoft 365 and Google Workspace security dashboards show green across all metrics. You've implemented data loss prevention policies, enabled advanced threat protection, and your team regularly audits security logs. Yet sensitive data continues to leave your organization through email channels. Why? Because attackers and even non-malicious insiders aren't using the obvious exfiltration techniques your tools were built to detect.

Fresh From The Docks: Uncovering 100,000 Valid Secrets in DockerHub

This post details the methodology used to scan 15 million Docker images, uncovering a staggering 100,000 valid secrets, including AWS, GCP, and GitHub tokens belonging to Fortune 500 companies. This emphasizes the critical need for improved security practices in containerized environments.

The Value of Threat Intelligence in Ensuring DORA Compliance

“Expect the unexpected” is a saying that holds particular weight in cybersecurity. In 2025, with continuing technological advancement, the divide between game-changing business opportunities and serious cyber threats has never been starker. With innovation and disruption unlikely to slow the pace any time soon, all sectors must build their operational resiliency to stay ahead and ensure stability.

How a Network Digital Twin (NDT) Powers Scalable Network Automation

In the race to modernize IT operations, automation is no longer optional—it’s essential. For network teams tasked with managing complex, hybrid environments, a Network Digital Twin (NDT) provides the trusted foundation required to automate intelligently and confidently. By offering an always-accurate, mathematically-precise virtual copy of your network, an NDT accelerates automation across key operational domains—enabling safer changes, faster audits, and more resilient infrastructure.

Better Together: Introducing Apono's Advanced PagerDuty Integration

At Apono, integrations are about creating seamless workflows, enhancing security, and providing exceptional experiences for engineering teams. We’re excited to announce our enhanced integration with PagerDuty because incident management and access control are truly better together.