A CISO's Guide to API Security

Oct 9, 2025 By Wallarm In Wallarm
APIs are powering digital transformation but also exposing organizations to new risks. Securing them requires collaboration between CISOs, CIOs, and the board. This webinar will demystify the evolving API threat landscape, outline governance strategies, and provide leaders with the tools to communicate API risk in business terms. Key Learnings: Why You Should Attend.
View Video
bitsight

CVE-2024-36401 - GeoServer - tailoring a public PoC to enable at-scale high-confidence detection

Oct 9, 2025 By Fábio Freitas In BitSight
At Bitsight, one of the responsibilities of the Vulnerability Research team is to develop fingerprinting methods to not only identify exposed services, but also vulnerabilities in those services. When it comes to detecting vulnerabilities, there are increased challenges depending on the complexity of both the vulnerability and the vulnerable service.
Read Post
bitsight

GeoServer CVE-2024-36401: Tailoring a Public PoC to Enable High-Confidence Detection

Oct 9, 2025 By Fábio Freitas In BitSight
At Bitsight, one of the responsibilities of the Vulnerability Research team is to develop fingerprinting methods to not only identify exposed services, but also vulnerabilities in those services. When it comes to detecting vulnerabilities, there are increased challenges depending on the complexity of both the vulnerability and the vulnerable service.
Read Post

We need to redefine "critical infrastructure" #cybersecurity #ransomware #criticalinfrastructure

Oct 9, 2025 By LimaCharlie In LimaCharlie
When a city gets hit with ransomware, residents can't pay utility bills, access emergency services, or even get married. When the water treatment plant goes down, the hospital can't operate, no matter how well you've secured it. We've been asking the wrong question. Instead of "does this technically qualify as critical infrastructure?" we should be asking "who needs help?" Small organizations like schools, nonprofits, water systems, and local governments face the same cybersecurity challenges but lack the resources to defend themselves.
View Video
cyberark

EP 17 - Privilege creep and the machine identity surge: Securing the modern enterprise

Oct 9, 2025 By CyberArk In CyberArk
In this episode of Security Matters, Chris Schueler, CEO of Cyderes, joins host David Puner for a dive into the evolving challenges of enterprise security. The conversation explores the dangers of privilege creep, the explosion of machine identities, and why accountability at every point of interaction is essential for building resilient teams and systems.
Read Post
cloudflare

Introducing REACT: Why We Built an Elite Incident Response Team

Oct 9, 2025 By Chris O'Rourke In Cloudflare
Cloudforce One’s mission is to help defend the Internet. In Q2’25 alone, Cloudflare stopped an average of 190 billion cyber threats every single day. But real-world customer experiences showed us that stopping attacks at the edge isn’t always enough. We saw ransomware disrupt financial operations, data breaches cripple real estate firms, and misconfigurations cause major data losses. In each case, the real damage occurred inside networks.
Read Post

Identity automation in the age of agentic AI with Matthew Chiodi

Oct 9, 2025 By LimaCharlie In LimaCharlie
Defender Fridays - Identity Automation in the Age of Agentic AI with Matthew Chiodi Join us for this session of Defender Fridays as we explore identity automation in the age of agentic AI with Matthew Chiodi, Chief Strategy Officer at Cerby. At Defender Fridays, we delve into the dynamic world of information security, exploring its defensive side with seasoned professionals from across the industry. Our aim is simple yet ambitious: to foster a collaborative space where ideas flow freely, experiences are shared, and knowledge expands.
View Video
protecto

Regulatory Frameworks Affecting AI and Data Privacy Explained

Oct 9, 2025 By Protecto In Protecto
AI is now embedded in everyday operations across support, finance, healthcare, and the public sector. As models touch more sensitive data, the legal landscape is moving just as quickly. The center of gravity has shifted from annual checklists to continuous compliance in production. This guide explains the regulatory frameworks affecting AI and data privacy in 2025, how they fit together, and how to turn their requirements into practical, repeatable controls your teams can run every day.
Read Post
Forward Networks

How a Global Bank Nearly Eliminated Audit Response Time

Oct 9, 2025 By Forward Networks In Forward Networks
Across the financial sector, compliance teams face rising expectations from regulators and customers alike. Agencies such as the SEC, OCC, FDIC, CFPB, and the European Banking Authority now demand proof of continuous compliance—not point-in-time reports. Yet most financial institutions still depend on spreadsheets, manual command-line checks, and tribal knowledge to validate security controls.
Read Post
Subscribe to Security

Copyright © 2026 OpsMatters™. All rights reserved.