Product Spotlight: Building an AI-driven SOC at scale, with Reddit

Dec 3, 2025 By Tines In Tines
Your security team is one-of-a-kind. Your AI SOC should be too. Join Thomas Kinsella, Co-founder and Chief Customer Officer at Tines, and Nick Fohs, Senior Manager, Enterprise Systems & Security, at Reddit, for a conversation around building and scaling an AI SOC - one that’s adaptable to your evolving needs. They’ll share how you can maximize your investments and the efficiency of your SOC by combining predictable, rule-based workflows with fully autonomous agents.
View Video
cato networks

The Shadow AI reality: Inside Cato's survey results

Dec 3, 2025 By Angie Oaks In Cato Networks
AI tools have proved their worth in the workplace. They help us write, research, code, plan, and automate. They’re making employees faster and more productive, and helping businesses move and innovate at a pace that wasn’t possible before. But AI’s rise wasn’t orchestrated by IT. It didn’t always arrive through formal adoption plans or procurement cycles. It turned up in shared links to popular GenAI and other tools, self-sanctioned and adopted by users in minutes.
Read Post
cloudflare

Cloudflare WAF proactively protects against React vulnerability

Dec 3, 2025 By Daniele Molteni In Cloudflare
Cloudflare has deployed a new protection to address a vulnerability in React Server Components (RSC). All Cloudflare customers are automatically protected, including those on free and paid plans, as long as their React application traffic is proxied through the Cloudflare Web Application Firewall (WAF). Cloudflare Workers are inherently immune to this exploit. React-based applications and frameworks deployed on Workers are not affected by this vulnerability.
Read Post
vanta

From manual to intelligent: How the Vanta AI Agent transforms compliance work

Dec 3, 2025 By Vanta In Vanta
Since the launch of the Vanta AI Agent, teams using the Vanta AI Agent are saving an average of four hours a week—time they can reinvest in building, shipping, and scaling securely. ‍ According to a recent Vanta customer survey, 91% of Vanta AI Agent users say it’s improved their audit readiness, and 86% report faster audit preparation overall. Teams had less manual work, fewer last-minute scrambles, and more time to focus on meaningful security improvements. ‍ ‍ ‍
Read Post
levelblue

SpiderLabs Ransomware Tracker Update November 2025: Qlin, Cl0p, and Akira Vie for Top Attacker

Dec 3, 2025 By LevelBlue In LevelBlue
LevelBlue SpiderLabs ransomware tracker noted a slight dip in the overall number of attacks that took place in November 2025, but the research team saw the threat group Cl0p surge, conducting 98 attacks during the month, up from just 13 in October. LevelBlue SpiderLabs derived the information from its ransomware-tracking tool, which gathers data from a variety of open intelligence sources and our own proprietary research.
Read Post

Is AI taking entry-level jobs a good thing? #cybersecurity #ai #podcast

Dec 3, 2025 By LimaCharlie In LimaCharlie
There's growing concern that AI automation is removing the hands-on experience junior analysts need to develop into senior defenders. In this Intel Chat, Matt Bromiley and Chris Luft challenge that assumption. Matt breaks down why the traditional entry-level path of endless log review and alert triage was never the best training ground to begin with. Log detection, alert triage, and drift detection are often cited as how defenders learn the trade. But most analysts never had time to get to drift detection because they were buried in repetitive work.
View Video
securonix

Built for AWS. Built for How Security Teams Really Work.

Dec 3, 2025 By Jeff Fink, Director, Cloud Alliances In Securonix
Every security team I meet is dealing with the same pressure: more cloud, more AI, more data, more noise, and less time. The cloud promised speed and flexibility, and it delivered. However, customers are asking for an easier path to understanding what’s actually happening across that environment. That gap, between what teams can see and what they need to see, is where threats hide.
Read Post
cloudflare

Cloudflare's 2025 Q3 DDoS threat report -- including Aisuru, the apex of botnets

Dec 3, 2025 By Omer Yoachimik In Cloudflare
Welcome to the 23rd edition of Cloudflare’s Quarterly DDoS Threat Report. This report offers a comprehensive analysis of the evolving threat landscape of Distributed Denial of Service (DDoS) attacks based on data from the Cloudflare network. In this edition, we focus on the third quarter of 2025.
Read Post
Snyk

Security Advisory: Critical RCE Vulnerabilities in React Server Components & Next.js (CVE-2025-55182 / CVE-2025-66478)

Dec 3, 2025 By Stephen Thoemmes In Snyk
On December 3, 2025, coordinated disclosures revealed that multiple releases of React 19 and Next.js contain a critical flaw in the React Server Components (RSC) “Flight” protocol, allowing unauthenticated remote code execution (RCE). The vulnerability originates from unsafe deserialization of attacker-controlled data in server-side RSC payload handling.
Read Post
Subscribe to Security

Copyright © 2026 OpsMatters™. All rights reserved.