acronis

Why EDR and XDR are becoming essential for MSP security

Mar 24, 2026 By Lee Pender In Acronis
Antivirus just isn’t enough anymore — not even close. Ransomware attacks constantly grow more sophisticated, zero-day vulnerabilities appear frequently and attackers increasingly rely on legitimate tools already inside a network rather than just on traditional malware. Antivirus alone just can’t protect organizations from all of those threats.
Read Post
knowbe4

I Didn't Revoke my API Keys Because Claude Called Me An Idiot

Mar 24, 2026 By Javvad Malik In KnowBe4
I need to confess something. A few days ago whilst vibe coding at 2am (which can end up burning through tokens like they are going out of fashion) I accidentally pasted my API key directly into a Claude chat instead of the terminal window I had open. Claude told me off. It felt like a full, proper, disappointed parent tone; the AI equivalent of 'I'm not angry, just disappointed', except it absolutely was angry. There may have been paragraphs.
Read Post
gitguardian

Trivy's March Supply Chain Attack Shows Where Secret Exposure Hurts Most

Mar 24, 2026 By Guillaume Valadon In GitGuardian
The Trivy story is moving quickly, and the latest reporting makes one thing clear: this is no longer just a GitHub Actions tag hijack. What started as a compromise of trivy-action, setup-trivy, and the v0.69.4 release has expanded into malicious Docker Hub images.
Read Post
persona

Nonprofit KYB: How to verify 501(c)(3) status and stay compliant

Mar 24, 2026 By Rachell Lee In Persona
If you operate a fundraising platform, process donations, or work with nonprofit organizations, you’re expected to verify that those organizations are legitimate before doing business with them. This process is known as nonprofit Know Your Business (KYB) or non-profit verification, which requires confirming 501(c)(3) status and ensuring the nonprofit is in good standing. But the verification process for nonprofit KYB isn’t as straightforward as it sounds.
Read Post
knowbe4

Best Practices for Implementing AI Agents

Mar 24, 2026 By Martin Kraemer In KnowBe4
On March 9th, Codewall.ai disclosed how it had hacked McKinsey & Company’s AI platform called Lilli, a purpose-built system for 43,000+ employees to analyze documents, chat, and access decades of proprietary research. The researchers unleashed an AI agent which quickly scanned 200 endpoints, identified 22 that did not require authentication, and one that wrote user search queries into a database including non-parameterized JSON keys which were concatenated directly into SQL.
Read Post
sedara

Sedara Named Hot Company in Attack Surface Management in 2026 Global InfoSec Awards

Mar 24, 2026 By Liz Sujka In Sedara
BUFFALO, N.Y., March 24, 2026 — Sedara, a cybersecurity solutions provider specializing in Managed Detection and Response (MDR) and Attack Surface Management (ASM), today announced it has been named a Hot Company in Attack Surface Management in the 14th Annual Global InfoSec Awards, presented by Cyber Defense Magazine during RSAC 2026 Conference in San Francisco. The Global InfoSec Awards recognize cybersecurity innovators worldwide.
Read Post
inetco

Why fraud prevention must evolve in milliseconds, not hours or days

Mar 24, 2026 By Bijan Sanii In INETCO
When it comes to fraud prevention, most of us know that small steps can make a big difference: use strong passwords and a password manager, turn on multifactor authentication, and so on. But for banks, fintechs and payment processors, those small steps are just the beginning.
Read Post
Arctic Wolf

The Future of Superintelligent Security Operations Starts with Data Built for AI

Mar 24, 2026 By Jeff Green In Arctic Wolf
Every major shift in security operations starts with a shift in the underlying platform. The AI era is no different. As artificial intelligence moves from novelty to necessity, the real dividing line in cybersecurity will not be which vendor can add AI features the fastest. It will be which platforms are built on the right foundation to make AI useful in real operations and trustworthy when the stakes are high. That foundation is data, but not in the simplistic sense the market often uses the term.
Read Post
kovrr

The Next Step in Cyber Risk Management: Decision Simulation

Mar 24, 2026 By Kovrr In Kovrr
‍At its root, cyber risk management is essentially a forward-looking discipline. The goal has never been solely to understand current exposure, but to determine which actions will reduce it most effectively, given the organization's priorities and constraints. Organizations today can assess control maturity and quantify financial exposure with increasing precision, giving security and GRC leaders a more comprehensive picture of their risk landscape than ever before.
Read Post

Ep 35: RSAC FOMO? Dojo AI Demo

Mar 24, 2026 By Sumo Logic, Inc. In Sumo Logic
As we gear up for RSA Conference, we give viewers a sneak peek at Sumo Logic's SOC analyst agent, which turns a 45-minute analyst investigation into a five-minute AI-powered sprint. We walk through live demos showing how the agent automatically generates queries, maps threats to MITRE ATT&CK, and hands you recommended remediation actions all without making you switch tabs or tools. We also show off MCP integration that lets teams collaborate on active investigations right from Slack, because no one should be chained to their war room when there's dinner to be had.
View Video
Subscribe to Security

Copyright © 2026 OpsMatters™. All rights reserved.