mend

Frontier Model Is the Wrong Meter for Continuous Security

Jun 18, 2026 By Asaf Saar In Mend
The economics of continuous security at frontier-model prices, and why the math points back to independence. The frontier models are astonishing at finding vulnerabilities. That is not in dispute, and it is not what this piece is about. The question is not whether a frontier model can find a flaw in your code. It is whether you can afford to run one as your scanner, continuously, across your entire estate, the way real security actually works.
Read Post
nucleus

Understanding and Navigating the Requirements of CISA BOD 26-04

Jun 18, 2026 By Tally Netzer In Nucleus
CISA Binding Operational Directive 26-04: Prioritizing Security Updates Based on Risk requires Federal Civilian Executive Branch (FCEB) agencies to prioritize security updates based on operational risk, not just severity. It builds on earlier Cybersecurity and Infrastructure Security Agency (CISA) directives by combining exposure, exploitation, impact, and prioritization logic into a more actionable remediation model.
Read Post
Zenity

The Enterprise Just Got Its First Population of Autonomous Actors

Jun 18, 2026 By Cinthia Portugal In Zenity
For the past two decades, enterprise security has evolved around a relatively stable assumption: software executes instructions, people take actions, and security teams are responsible for understanding and governing the interaction between the two. The technologies have changed. Infrastructure moved to the cloud. Applications became distributed. Identities expanded beyond employees to include partners, contractors, and machines. Yet the underlying model remained remarkably consistent.
Read Post
WatchGuard

The Breaches You Don't See: Why Monitoring External Exposure Prevents Breaches

Jun 18, 2026 By Bill Munroe In WatchGuard
Most cybersecurity conversations focus on stopping attackers from breaking in. New malware variants, ransomware campaigns, AI-powered attacks, and zero-day vulnerabilities dominate the headlines. Yet many breaches occur for a much simpler reason: organizations unintentionally expose systems, applications, or data to the internet.
Read Post
graylog

What Singapore's CCoP 2.0 Requires of Critical Infrastructure Owners

Jun 18, 2026 By Jeff Darrington In Graylog
Picture Singapore’s largest telecommunications network. It carries the financial transactions, emergency communications, and government data of a city-state of nearly six million people. Now picture that infrastructure silently infiltrated for months by a state-linked espionage group, undetected until the telcos’ own security teams found it.
Read Post
bitsight

Major Security Event: Fortinet VPN Credentials and Configuration Data Exposed for 73,000 Devices

Jun 18, 2026 By Ebin Sandler In BitSight
A large-scale credential compromise campaign known as FortiBleed has exposed verified administrator credentials for more than 73,000 internet-facing Fortinet FortiGate firewalls. As of mid-June 2026, the dataset is reportedly circulating within criminal underground communities. Researchers estimate that approximately 50% of all internet-reachable FortiGate devices may be affected across 194 countries, making this one of the most significant Fortinet security incidents to date.
Read Post

How the Fireblocks Security Center gives security teams full visibility

Jun 18, 2026 By Fireblocks In Fireblocks
Security teams need to see the platform they're securing. The new Fireblocks Security Center brings every security-relevant signal in your workspace into one purpose-built dashboard inside the Fireblocks Console. In this walkthrough, we show how the Security Center consolidates platform usage data into a single view built for analysis by your internal security people. What the Security Center covers.
View Video
securonix

Data on The Frontline: How Geopolitical Tensions Change Cybersecurity

Jun 18, 2026 By Securonix In Securonix
Chris Jacob, Field CISO, Securonix There is a particular kind of unease that comes with geopolitical tension. It rarely arrives for security teams as one clean, obvious event. More often, it shows up as a change in tempo across the environment. Scanning increases and phishing attempts feel sharper. Then you start having leadership asking harder questions about exposure, suppliers, regions, and sensitive data.
Read Post
persona

Persona supports France and Germany EUDI Wallets for secure, private identity verification

Jun 18, 2026 By Alex Mentzelopoulos In Persona
Across Europe, two major regulatory deadlines are arriving that will reshape the mechanics of identity verification for EU-regulated businesses. By the end of 2026, eIDAS 2.0 will require organizations to accept EUDI Wallets for online services where electronic identification or authentication is necessary. That obligation covers state, regional, and local authorities; bodies governed by public law; and certain private entities that are required to provide public services.
Read Post

Put agentic AI to work: Real-world defense against threats

Jun 18, 2026 By Elastic In Elastic
Attackers are using AI to compress timelines from hours to minutes. Most SOCs, and most security platforms, weren’t built for that speed. Join Elastic Security product and research experts for a look at how modern security teams can detect, investigate, and respond faster using agentic AI. You’ll learn how to: You’ll leave better equipped to reduce investigation time, keep analysts focused on decision-making, and modernize security operations for machine-speed threats without removing humans from the loop.
View Video
Subscribe to Security

Copyright © 2026 OpsMatters™. All rights reserved.