safebreach

EventLog-in: Propagating With Weak Credentials Using the Eventlog Service in Microsoft Windows (CVE-2025-29969)

Feb 19, 2026 By SafeBreach In SafeBreach
While attackers often find low-privileged credentials after creating a process dump of LSASS or harvesting hashes with a tool like Responder, they are rarely able to do anything with those credentials (RDP aside). We set out to discover how malicious actors might exploit Microsoft Windows remote procedure call (RPC) protocols to gather data remotely as a low-privileged user using RPC as an attack surface.
Read Post
WatchGuard

1,500% Surge in New Malware: Why MSPs Must Act Now

Feb 19, 2026 By The Editor In WatchGuard
The latest findings from WatchGuard Technologies reveal a stark reality for managed service providers: cyber threats are not only increasing—they’re evolving faster than traditional defenses can keep up. In its newest Internet Security Report, WatchGuard identified a 1,548% spike in new, unique malware from Q3 to Q4 2025. Nearly one in four threats bypassed signature-based detection, highlighting a critical gap in reactive security models still used across many customer environments.
Read Post
fidelis security

A Deep Dive into Fidelis Network Deception Features and What They Mean for Security Teams

Feb 19, 2026 By Fidelis Security In Fidelis Security
Security teams today are not failing because they lack tools. Most organizations already have firewalls, EDR, SIEM, cloud monitoring, and multiple detection layers. Yet attackers still manage to enter networks, stay hidden, and move laterally before detection. That gap between entry and detection is the real challenge. This creates pressure for CISOs and SOC leaders. Analysts deal with alert fatigue, unclear signals, and limited time. When alerts are uncertain, response slows.
Read Post

The New CISO Podcast Ep. 141 - Dean Sapp | Six Steps for Better Communication as a CISO

Feb 19, 2026 By Exabeam In Exabeam
In this episode of The New CISO, host Steve Moore speaks with Dean Sapp, CISO and Data Protection Officer at Filevine, about one of security's most critical yet overlooked skills—written communication. Drawing from a brutal college English class that failed students for a single typo and over 20 years building security programs in the legal tech industry, Dean reveals why the ability to articulate security findings clearly separates average professionals from exceptional leaders who drive real business impact.
View Video

Hackers Weaponize AI Tools: Watch CrowdStrike Stop the Attack

Feb 19, 2026 By CrowdStrike In CrowdStrike
Your AI tools just became the perfect hiding spot for hackers. Cybercriminals have found a new attack vector: weaponizing the AI assistants your team uses every day. In this live demonstration, we show how adversaries can turn tools like Claude into persistent backdoors and how CrowdStrike Falcon stops them cold. TIMESTAMPS: WHAT YOU'LL LEARN:– How hackers exploit AI automation features to create backdoors– Why password resets and patches won't stop this attack– How behavioral detection catches threats hiding in legitimate tools– Real-time threat prevention in action.
View Video
safebreach

SafeBreach's Evolution into an AI-First Development Team: Part I

Feb 19, 2026 By Yossi Attas In SafeBreach
In this first installment of a series on the transformation of SafeBreach’s development organization, VP of Development Yossi Attas outlines how his team is managing the strategic shift toward an AI-First development methodology. This includes moving beyond simple tool adoption to a fundamental redefinition of the software engineer’s role. Read on as we explore.
Read Post
cycognito

Permission to Ignore: Leveraging the CTEM Framework to Focus on Real Risk

Feb 19, 2026 By Amit Sheps In CyCognito
Security frameworks have always had a gap. They tell you to find vulnerabilities and fix them, but they’ve rarely provided a system to determine which ones actually matter before you tap into your most expensive resource: engineering time. CTEM changes the game by treating security as a continuous lifecycle rather than a series of silos.
Read Post

How AI is Reshaping Cyber Threats

Feb 19, 2026 By Indusface In Indusface
In Episode of Guardians of the Enterprise, Ashish Tandon, Founder & CEO, Indusface, spoke with Madhur Joshi, CISO at HDB Financial Services (part of the HDFC Group), about how AI is reshaping the cyber threat landscape. They discussed how attackers are now leveraging AI to launch more sophisticated phishing campaigns, automate malware, and scale attacks faster than ever before. As AI lowers the barrier to entry, the speed and complexity of attacks continue to increase, making it harder for organizations to keep up.
View Video

Log Collector Deployment via the Falcon Sensor in Falcon Next-Gen SIEM

Feb 19, 2026 By CrowdStrike In CrowdStrike
See how CrowdStrike Falcon Next-Gen SIEM enables security teams to deploy log collectors instantly via the Falcon Sensor—without relying on traditional software distribution processes. In this demo, you’ll learn how to create a Log Collector Policy, automatically install collectors across host groups, validate installation through Falcon telemetry, and centrally manage third-party data ingestion from Fleet Management.
View Video
Subscribe to Security

Copyright © 2026 OpsMatters™. All rights reserved.