aikido

Bug bounty isn't dead, but the old model is breaking

Apr 13, 2026 By Mackenzie Jackson In Aikido
Bug bounty has been a very hot topic lately. We’re seeing high-profile programs go offline or fundamentally change: the IBB (one of the most important programs for open-source programs) is pausing submissions, curl is removing payouts and Node.js is removing its bounty entirely. That’s not noise, that's signal.
Read Post

CISOs - Transforming third-party risk assessments

Apr 13, 2026 By TrustCloud In TrustCloud
CISOs struggle with third-party risk assessments. Automate third-party assessments and eliminate mundane tasks. Use AI and API driven automation to accelerate and simplify first-party, third-party, and nth-party risk assessments. Automate document analysis and receive contextual, reliable information. Run frequent, programmatic risk assessments on all your internal and third-party applications to eradicate the risk of one-time or point-in-time evaluations.
View Video

Add alert evidence from Armis to Drata controls

Apr 13, 2026 By Tines In Tines
Automate compliance evidence collection from Armis to Drata in under 5 minutes. Manually gathering and uploading alert evidence for compliance audits is time-consuming and error-prone. In this video, we walk through a Tines story that automatically pulls unhandled alerts from Armis and uploads them as external evidence to the matching alert controls in Drata, complete with pagination handling so no data gets missed. The result is a fully automated compliance evidence pipeline that saves your team hours of repetitive work.
View Video
11:11 systems

Accelerate AI and Large Language Models with VCF 9.0 and 9.1

Apr 13, 2026 By Justin Giardina In 11:11 Systems
Artificial intelligence (AI) is changing the IT landscape in radical, unprecedented ways. Organizations are rewriting the rules of code generation, automating complex customer service interactions, and extracting deep data insights that were impossible to uncover just a few years ago. However, for technology specialists and IT leaders responsible for keeping the lights on, artificial intelligence represents a massive shift in infrastructure requirements.
Read Post

CISOs - Transforming risk assessments | TrustCloud

Apr 13, 2026 By TrustCloud In TrustCloud
CISOs struggle with risk assessment. Reduce risk and financial liability with TrustCloud. Take your risk register from manual spreadsheets to programmatic, predictive risk assessments. Monitor and forecast your risks in real time, enable IT risk quantification to prove financial impact to the board, and prevent risk instead of managing it.
View Video
seal security

How We're Securing Our Own Supply Chain

Apr 13, 2026 By Lev Pachmanov In Seal Security
Building a supply chain security company comes with an uncomfortable truth: our remediated packages run inside our customers' production environments. A compromise on our end is a compromise on theirs. We take that responsibility seriously. I want to pull back the curtain on how we actually secure our own supply chain - from the code we write, to the artifacts we deliver, to the infrastructure that holds it all together. ‍
Read Post
persona

How fintechs can improve fraud detection with link analysis during KYC

Apr 13, 2026 By Charlie Sellers In Persona
KYC checks are a regulatory requirement, and they can help prevent fraudsters and other bad actors from accessing your platform. But they're not designed to catch every type of fraud. That’s why many fintechs add additional identity verification and fraud checks. However, some overlook link analysis, which is an increasingly important layer for detecting fraud rings and AI-driven attacks.
Read Post
teramind

What is Generative AI Security? Types, Risks & Best Practices

Apr 13, 2026 By Teramind In Teramind
Generative AI security is the practice of protecting generative artificial intelligence models, applications, and their underlying training data from cyber attacks, data leakage, and unauthorized access. It focuses on securing both sides of the system—i.e., the AI itself (models, pipelines, APIs) and the sensitive data flowing into and out of it during real-world use.
Read Post
miniorange

How to Detect and Prevent Lateral Movement Attacks

Apr 13, 2026 By Pradeep Kumar In miniOrange
A few years ago, during a routine investigation after a phishing incident, the security team believed the damage was contained. During the attack, one employee’s laptop was compromised. The security team removed the malware and the password was reset. But the next morning, when analysts started reviewing authentication logs, something odd appeared. The same compromised account had logged into three internal servers overnight. Then a database server. Then a backup controller.
Read Post

CISOs - Eradicating Security questionnaires | TrustCloud

Apr 13, 2026 By TrustCloud In TrustCloud
CISOs struggle with security questionnaires. Make security reviews the quickest part of closing a deal with TrustCloud. TrustCloud offers a Trust portal and AI to complete security questionnaires, rolled into one. Don’t let security reviews slow down sales (or take over your life). TrustShare’s secure, public-facing portal invites prospects to view compliance reports and complete security reviews on their own. If there’s a questionnaire, TrustShare pre-fills up to 85%, using information from prior questionnaires and artifacts in your security program.
View Video
Subscribe to Security

Copyright © 2026 OpsMatters™. All rights reserved.