Feroot

Proving CCPA Compliance: Logs, Reports, and Runtime Evidence

Mar 10, 2026 By Feroot In Feroot
CCPA used to audit your policies and paperwork. Then came the Sephora settlement, and things moved to logs, runtime, and network reports. The company’s privacy policy said it didn’t sell consumer data. California’s AG ran the site, watched the cookies and pixels fire, and found that in reality, they did. Healthline followed in 2025. Then Disney in 2026. Different companies, common findings. Data gets collected and shared with third parties via tags. GPC gets ignored.
Read Post
cyberark

Identity governance gaps: How AI profiles move security beyond the label

Mar 10, 2026 By Brian Smits In CyberArk
If your identity governance program feels like a relic from a simpler time, you’re not alone. Traditional identity governance and automation (IGA) was built for a world where job titles told the whole story. A software engineer was a software engineer; a sales rep was a sales rep. Assigning access was intended to be as simple as slotting people into predefined roles.
Read Post
Torq

SOAR vs. AI SOC: The Category That Left SOAR Behind

Mar 10, 2026 By Bob Boyle In Torq
If you’ve been in security operations for more than a few years, you’ve lived through the automation hype cycle at least twice. First, it was SIEM that was going to solve everything. Then SOAR was supposed to fix what SIEM couldn’t. Now, AI SOC platforms are delivering what SOAR always promised but never actually could.
Read Post
teramind

14 Best Practices for Data Breach Prevention

Mar 10, 2026 By Taran Soodan In Teramind
For many organizations, a single security lapse isn’t just a technical glitch — it’s a catastrophic blow to their brand reputation and bottom line. With the global average cost of a leak reaching record highs ($4.44 million according to 2025 estimates), learning how to prevent data theft has shifted from a best practice to a business necessity. But how do you stay ahead of the latest cyber threats?
Read Post
cyberark

Measure and Manage Cloud Identity Risk with CyberArk Cloud Discovery Service

Mar 10, 2026 By Brooke Markham In CyberArk
Most security teams cannot confidently answer a simple question: who has access to which cloud resources right now? Human identities and accounts now span across thousands of services, subscriptions, and SaaS platforms. The result is a vast, decentralized environment riddled with “unknown unknowns” that security teams cannot fully map, and that traditional security controls weren’t designed to address. Attackers count on these identity blind spots.
Read Post
LimaCharlie

What Frontier Models Can Actually Do in a SOC: Open-source Benchmark for Agentic SecOps Capabilities

Mar 10, 2026 By LimaCharlie In LimaCharlie
Maxime Lamothe-Brassard, founder and CEO of LimaCharlie, sought answers on AI’s current capabilities in the SecOps space. Plenty of benchmarks exist to test AI's knowledge of cybersecurity, but none test whether a model actually does the work. There's a significant difference between an AI that can answer trivia questions about CVEs and one that can pick up an alert, investigate it, and produce an incident report.That gap matters more now than ever.
Read Post
acronis

The hidden cost of downtime and how to avoid it with backup and DR

Mar 10, 2026 By Acronis In Acronis
Beyond hardware failures and cyberattacks, global events and regional instability can halt critical operations without warning. Modern businesses are exposed to forces outside their control, and a single disruption can ripple across systems, teams and customers. You can't predict downtime or what damage it will cause.
Read Post

The £2 Million Reason Your CISO Needs Power

Mar 10, 2026 By Razorthorn Security In Razorthorn
Major incidents demand rapid hiring, outside support and big spends within hours, not after weeks of approvals and budget meetings. Strong incident response gives security leaders pre agreed authority to sign contracts and access funds, so they bring in hundreds of specialists at speed instead of watching the breach spread. ⸻ For more information about us or if you have any questions you would like us to discuss email podcast@razorthorn.com. We give our clients a personalised, integrated approach to information security, driven by our belief in quality and discretion..
View Video
Internxt

How to Send a Large Amount of Photos: 6 Methods Compared

Mar 10, 2026 By Internxt In Internxt
You have six ways to send a large amount of photos:cloud storage links, dedicated file transfer tools, email with a workaround, messaging apps, device-to-device transfer, and physical drives. Which one works best depends on how many photos you're sending, whether quality matters, and how private you need it to be. The default options most people try first all have real limits. Email cuts off around 25MB, which is about 5 to 10 full-quality photos.
Read Post
armo

Signature Verification Bypass in Authlib (CVE-2026-28802): What Cloud Security Teams Need to Know

Mar 10, 2026 By Ben Hirschberg In ARMO
OAuth and OpenID Connect are the backbone of modern cloud-native identity and access management. From SaaS platforms and internal APIs to Kubernetes microservices, these protocols are responsible for verifying who is allowed to access what. When a vulnerability appears in a widely used authentication library, the impact can cascade across entire application ecosystems.
Read Post
Subscribe to Security

Copyright © 2026 OpsMatters™. All rights reserved.