Securing your Docker containers just got a lot easier. On December 17, Docker announced that their catalog of over 1,000 Docker Hardened Images (DHI)—previously a premium-only feature—is now free and open source. This big change means every developer can now start their Dockerfile with a minimalist, near-zero CVE, SLSA Level 3 compliant foundation.

For engineering managers, the pressure to deliver software faster has never been higher. You are constantly balancing the need for velocity with the imperative of stability and quality. While DevOps revolutionized the software development life cycle (SDLC) by breaking down silos between development and operations, it left a critical gap: security. In a landscape where cyberattacks are growing in sophistication and frequency, treating security as an afterthought is no longer a viable strategy.

If you’re building with LangChain, you’re moving fast. That’s the point. Agents are pulling from tools, chaining prompts, summarizing documents, and responding to users in real time. But there’s a quiet truth many teams discover a little too late: Your agent is probably handling personal data—even if you didn’t design it to. Emails show up in prompts. Names appear in support tickets. Internal notes include phone numbers, IDs, or customer context.

As IT environments grow more complex and adversaries move faster, security and IT teams need a reliable way to enforce configurations, maintain application health, and resolve issues at scale without writing or maintaining custom scripts. CrowdStrike Falcon for IT already gives operators powerful tools to query endpoints, run remediation, and enforce baseline configurations.

For many organizations, data loss prevention (DLP) has historically been viewed through the narrow lens of compliance. Regulations like PCI DSS, HIPAA, and GDPR forced companies to prove they had controls in place to protect sensitive information. DLP was the obvious answer—a way to prevent credit card numbers, Social Security information, or personal health data from leaving the organization in unauthorized ways. In that framing, DLP was deployed to satisfy audits, not reduce risk.

At One Identity, we’re all about our customers, and we thrive on customer opinions. We’d love for you to share your One Identity Active Roles story by sharing a review on PeerSpot and be seen as a thought leader. It’s as quick as a 10-15-minute online survey or a phone call.

Zestix is identified as a criminal threat actor primarily motivated by personal gain. The actor first emerged in September 2025 and operates at an intermediate resource level, functioning as an individual. Zestix has been involved in significant data breaches, notably targeting organizations in the transportation and government sectors.

A critical vulnerability identified as CVE-2025-14847 (dubbed “MongoBleed“) affects MongoDB Server instances, exposing systems to unauthenticated information disclosure. This vulnerability allows a remote attacker to read sensitive data from the server’s memory without requiring authentication.

CopilotLeaks is a criminal threat actor group known for its data breaches and leaks targeting various sectors in Bolivia and Paraguay. The group operates under multiple aliases, including Megumi, vulnerandolo, and Johan_Liebheart. Their primary motivation is personal gain, and they are characterized as having an intermediate level of sophistication.