bitsight

From Risk to Resilience: A New Standard for Security Posture Management

Mar 19, 2026 By Miguel Reis In BitSight
For years, security leaders were asked a simple question: are we secure? Today, that question is harder to answer. Boards, regulators, insurers, and customers want proof of resilience: assurance that organizations understand their exposure, are prioritizing the right work, and are reducing risk over time.
Read Post
Snyk

AI Is Building Your Attack Surface. Are You Testing It?

Mar 19, 2026 By Manoj Nair In Snyk
The market is flooded with claims. One vendor tops a leaderboard. Another raises nine figures on a pitch deck. Meanwhile, your developers shipped three AI-generated services before lunch. Here's the conversation the industry isn't having, and the one we've been building toward for years. There's a version of this conversation happening inside every Security team right now. Someone demos an AI coding assistant. The speed is undeniable and the team is in awe. Still cautious, sometimes skeptical.
Read Post
gitprotect

Backup Window Management Best Practices

Mar 19, 2026 By Miłosz Jesis In GitProtect
As DevOps environments generate continuous data changes and traditional backup windows assume quiet nighttime periods, proper backup scheduling can become difficult. Modern SaaS platforms often run 24/7 pipelines and commits. Without designated space for backups, and proper management, poorly scheduled backups may cause: In this article we’ll go into what the backup windows are and how to manage them.
Read Post
sentrium

Telnetd Unauthenticated Remote Code Execution (CVE-2026-32746)

Mar 19, 2026 By Tim Reed In Sentrium
In March 2026, a critical severity vulnerability was disclosed in the GNU InetUtils telnetd service. The flaw, tracked as CVE-2026-32746, impacts all versions up to and including InetUtils 2.7. Telnetd is a legacy remote access service that establishes interactive shell sessions over the Telnet protocol. The vulnerability enables remote unauthenticated attackers to achieve arbitrary code execution with root privileges.
Read Post
veracode

Secure Your Future with a Compliance-First AppSec Posture

Mar 19, 2026 By Donna Namorato In Veracode
If you treat compliance as a final hurdle before deployment, you are already behind. For years, organizations have viewed regulatory compliance as a box to check—a necessary evil that slows down development and frustrates engineering teams. The standard approach involves scrambling before an audit, manually aggregating data from spreadsheets, and patching vulnerabilities at the last possible minute.
Read Post

Camille Stewart Gloster on how AI systems can help you wade through log data and get more done

Mar 19, 2026 By Rubrik In Rubrik
AI and machine learning are already being used in cybersecurity to help reduce the "noise of all the indicators" that security teams receive. These systems can serve as a "first line of defense" by setting up potential response actions. However, organizations need to ensure they keep human analysts in the loop because contextual knowledge and human judgment remain critical. Data Security Decoded is available on our YouTube channel!
View Video

Why the US Military Has a Zombie Apocalypse Plan

Mar 19, 2026 By Razorthorn Security In Razorthorn
Military war games use zombie apocalypse scenarios not for fantasy, but to push teams beyond routine thinking and train fast decisions under absurd pressure. The aim is to build habits for complex crises, so when a real incident arrives, people respond with practised judgement instead of paralysis and argument. ⸻ For more information about us or if you have any questions you would like us to discuss email podcast@razorthorn.com. We give our clients a personalised, integrated approach to information security, driven by our belief in quality and discretion..
View Video
vanta

Goodbye audit chaos, hello Calm-pliance

Mar 19, 2026 By Vanta In Vanta
Accelerating security solutions for small businesses‍ Tagore offers strategic services to small businesses. A partnership that can scale‍ Tagore prioritized finding a managed compliance partner with an established product, dedicated support team, and rapid release rate. Standing out from competitors‍ Tagore's partnership with Vanta enhances its strategic focus and deepens client value, creating differentiation in a competitive market. Map controls. Remediate gaps.
Read Post
idstrong

What You Need to Know about the Healthcare Interactive Data Breach

Mar 19, 2026 By IDStrong In IDStrong
Healthcare Interactive, Inc., also known as HCIactive, is an Ellicott City, Maryland-based provider of AI-powered software solutions for insurance enrollment and benefits administration. Founded in 2006, the privately held company has fewer than 100 employees but serves healthcare organizations and insurers nationwide. As a HIPAA business associate, HCIactive processes and stores protected health information for multiple covered entities, giving it access to large volumes of sensitive patient data.
Read Post

Thinking long-term growth in an AI-dominated industry with Stel Valavanis of onShore Networks [302]

Mar 19, 2026 By LimaCharlie In LimaCharlie
Today we're speaking with Stel Valavanis, Founder and Chairman at onShore Networks and Co-Founder at The Gallery Building, about sustaining a security company over three decades of industry changes. We also dive into investing in start ups and how founders can think long term about governance and growth.
View Video
Subscribe to Security

Copyright © 2026 OpsMatters™. All rights reserved.