Auditor drop-in

May 13, 2026 By Vanta In Vanta
Who invited Brandon?! No one needs an unannounced drop-in right before audit day. But don't worry…if your auditors do pop by, Vanta has you covered. Removing manual work. Continuously monitoring your controls. Ensuring you're always audit-ready. According to IDC, companies using Vanta spend 82% less staff time per framework and attestation-related audit, so those pre-audit scaries? Totally optional.
View Video
Corelight

Data quality defines a ceiling for SOC performance

May 13, 2026 By Gregory Bell In Corelight
Defenders have long known that richer evidence improves security outcomes by enabling faster triage, deeper analysis, and more complete investigation. Although Corelight was founded on this premise, it’s been hard for us to quantify the impact of better network data - until now. Recently, we built an agentic test harness to measure the success of frontier LLMs in responding to real-world attack scenarios, using a range of source data.
Read Post
tanium

10 steps to trusted, validated autonomous IT

May 13, 2026 By Tanium In Tanium
Because IT security no longer moves at human speed, endpoint management can no longer be seen as a background IT function. It’s now the front line and critical as ever. Attackers move fast, and AI makes them faster. Organizations can’t keep validating exposure and fixing issues the old way. Endpoint management has to run at machine speed because every manual handoff and every delayed exception adds more risk.
Read Post
opti9

How to Build a Disaster Recovery Architecture on AWS with Veeam

May 13, 2026 By Mark Mazza In Opti9
Most organisations know they need disaster recovery. Far fewer know what a well-designed DR architecture actually looks like. The gap between “we have backups” and “we can recover our business in under an hour” is architectural. It’s the difference between storing copies of your data somewhere offsite and building a recovery environment that’s been pre-configured, tested, and ready to take over when your production systems fail.
Read Post

Your Browser Is Leaking More of Your Company's Data Than You Think

May 13, 2026 By Cyberhaven In Cyberhaven
In this video, you will learn why agentic browsers like ChatGPT Atlas, Perplexity Comet, and Arc have turned the browser into a double agent inside your enterprise, how shadow adoption is bypassing MDM and endpoint controls in days, and why indirect prompt injection creates an attack surface your file-based DLP cannot see. You will also learn how data lineage replaces noisy content inspection with origin-and-destination tracking, so you can stop the leak without blocking the tools your business depends on.
View Video
CrowdStrike

Falcon AIDR Detects Threats at the Prompt Layer in Kubernetes AI Applications

May 13, 2026 By Karishma Asthana In CrowdStrike
AI is introducing a new class of threats that don’t look like traditional attacks and can’t be detected with conventional tools. The AI applications that organizations deploy in the cloud interact with large language models (LLMs) through prompts and responses. This prompt layer has emerged as a new attack surface, where risks like prompt injection and sensitive data leakage can go unnoticed.
Read Post
upguard

Six MCP Security Incidents Every Security Leader Should Know

May 13, 2026 By Shane Moosa In UpGuard
In July 2025, an AI agent reviewed a support ticket, queried a production database, and leaked integration tokens directly to the attacker watching the thread. Months earlier, another AI followed "hidden instructions" in a public repository, exfiltrating private code into a visible pull request. In both cases, the AI wasn't broken; it simply obeyed the attacker instead of the developer.
Read Post

Workshop: Analyzing Real Malware with Claude Code and LimaCharlie

May 13, 2026 By LimaCharlie In LimaCharlie
In this hands-on workshop we will analyze an unknown binary, quickly extract indicators, and determine the binary’s core functionality. We'll give Claude the LCRE (LimaCharlie Reverse Engineering) tool to accelerate analysis and interpretation by identifying configuration details, key behaviors, and any additional indicators useful for rule building. We'll use this information to craft detection rules for this sample.
View Video
miniorange

Atlassian Team '26: The Conversations That Told Us Where Enterprise Identity Is Headed

May 13, 2026 By Pallavi Narang In miniOrange
We just got back from Atlassian Team '26 in Anaheim. Three days, thousands of attendees, and Atlassian's biggest push yet toward human-AI collaboration. The Founder Keynote set the tone, Rovo agents got smarter, and the Teamwork Collection took center stage. It was a packed, high-energy week. But the most interesting part of our three days wasn't on stage. It was at Booth.
Read Post
idstrong

What You Need to Know about the BWH Hotels Data Breach

May 13, 2026 By IDStrong In IDStrong
BWH Hotel Group is one of the world's largest hotel networks, operating more than 4,000 hotels in over 100 countries. The company evolved from Best Western and today manages a multi-brand portfolio spanning budget to luxury hospitality. BWH Hotels' portfolio includes prominent brands such as Best Western Hotels & Resorts, WorldHotels, and Sure Hotels, serving millions of guests annually across approximately 4,300 hotels that generate more than $8.5 billion in annual revenue.
Read Post
Subscribe to Security

Copyright © 2026 OpsMatters™. All rights reserved.