armo

io_uring Is Back, This Time as a Rootkit

Apr 24, 2025 By Amit Schendel In ARMO
ARMO researchers reveal a major blind spot in Linux runtime security tools caused by the io_uring interface—an asynchronous I/O mechanism that bypasses traditional system calls. Most tools, including Falco, Tetragon, and Microsoft Defender fail to detect rootkits using io_uring because they rely on syscall monitoring. ARMO’s proof-of-concept rootkit, Curing, operates fully via io_uring to demonstrate the threat.
Read Post

DevSec Next AI: AI-First Coding Workshop: Transforming Development Workflows

Apr 24, 2025 By Jit In Jit
This workshop introduces experienced engineers to AI-first coding - a paradigm where AI tools generate most of the code while developers focus on direction and refinement. ​We'll explore how large language models work underneath the hood, revealing practical techniques to maximize their effectiveness in development workflows. ​Participants will learn the powerful "Plan-then-Act" methodology, discover how to leverage context windows effectively, and implement structured memory bank approaches to maintain project continuity.
View Video
gitguardian

GitGuardian Joins Health-ISAC: Strengthening Cybersecurity in Healthcare Through Secrets Detection

Apr 24, 2025 By Carole Winqwist In GitGuardian
As cyber threats in healthcare continue to evolve, GitGuardian strengthens its commitment to the sector by joining Health-ISAC and offering members enhanced secrets detection capabilities to protect sensitive data.
Read Post
elastic

Elastic Security Labs provides an under-the-hood look at its detection engineering processes

Apr 24, 2025 By Isai Anthony, In Elastic
The 2025 State of Detection Engineering at Elastic explores how we create, maintain, and assess our SIEM and EDR rulesets. Today, Elastic Security Labs is releasing the 2025 State of Detection Engineering at Elastic! This brand new report is the first of its kind — we’re pulling back the curtain on our Detection Engineering practices, going beyond the traditional survey-style State of Detection Engineering report.
Read Post
appsentinels

Operationally Effortless Enterprise-Grade

Apr 24, 2025 By AppSentinels In AppSentinels
In the race to scale digital platforms, security should never slow you down. Yet, many security solutions are often rigid, complex, and operationally intrusive. That’s why we built AppSentinels to deliver robust API protection without disrupting performance, processes, or peace of mind. From day one, AppSentinels was engineered with operational ease at its core—so security and DevOps teams can sleep easy, knowing their APIs are secured by design. Here’s how we do it.
Read Post
vanta

Vanta earns ISO 42001 certification to demonstrate trustworthy AI practices

Apr 24, 2025 By Vanta In Vanta
At Vanta, our mission is to secure the internet and protect consumer data. The proliferation of AI has made this both more challenging—and more important—than ever before. In our ongoing mission to ensure we safely use AI and demonstrate trustworthy AI practices, we’re excited to announce that Vanta is the first trust management platform to achieve ISO 42001 certification from an ANAB-accredited 42001 assessor. ‍
Read Post
Subscribe to Security

Copyright © 2026 OpsMatters™. All rights reserved.