Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

bluevoyant

AI in the SOC

Jan 13, 2026 By Dan Petrillo In BlueVoyant
Gartner frames the AI SOC landscape as a dichotomy: providers pursuing full SOC replacement versus those building AI products to augment existing staff. Of these two approaches, only augmentation aligns with real-world security operations. It helps analysts triage alerts, investigate faster, enrich context, and summarize incidents with better consistency, all while keeping humans in the loop, even if their day-to-day efforts change.
Read Post
seal security

Announcing Our Partnership with Wiz: Seal Hardened Base Images Now Seamlessly Integrated in Wiz

Jan 13, 2026 By Itamar Sher In Seal Security
Security teams can now eliminate container vulnerabilities at the source without developer effort or version upgrades. At Seal Security, we believe vulnerability management should start with secure foundations.That’s why we’re excited to share that Seal’s pre-patched packages to harden base and secure images are now officially integrated in Wiz. This partnership brings together Wiz’s best-in-class cloud visibility with Seal’s remediation-first approach to container security.
Read Post

The CEO's Take: The Human Element of Security

Jan 13, 2026 By SecurityScorecard In SecurityScorecard
“Human error contributes to 95% of data breaches.” From unsecured collaboration channels to poor password hygiene, the attack surface of an organization extends across both its vendor ecosystem as well as all of the employees within it. Join Aleksandr Yampolskiy (CEO & Co-Founder, SecurityScorecard) and Marc van Zadelhoff (CEO, Mimecast) for this discussion on: SecurityScorecard monitors and scores over 12 million companies worldwide. Find your company's security score for free at SecurityScorecard.com.
View Video
exabeam

Decoding the 2025 MITRE ATT&CK Evals: A Call for Clarity and a Guide for Analysts

Jan 13, 2026 By Exabeam In Exabeam
The latest MITRE ATT&CK Enterprise Evaluations are out, featuring scenarios that emulate sophisticated actors like Scattered Spider and Mustang Panda. While every release of the findings is a significant event for the security community, this year’s evaluation highlights both new and recurring concerns for security professionals.
Read Post
levelblue

Secure What's Next: How a World-Class MSSP Builds Trust and Scale for 2026

Jan 13, 2026 By LevelBlue In LevelBlue
Jesse Emerson, Chief Product Officer at LevelBlue, the world’s largest pure-play Managed Security Service Provider (MSSP), recently sat down to answer a few questions about what makes an MSSP a valuable client resource and how he sees the MSSP’s role changing in the coming year.
Read Post
Feroot

HIPAA Compliance for Pharmaceutical Websites, Portals, and Mobile Apps

Jan 13, 2026 By Feroot In Feroot
If you operate pharmaceutical websites, portals, adherence tools, or patient support platforms, client-side execution is part of your compliance surface. Analytics, pixels, chat interfaces, and third-party libraries stop being neutral once they run alongside condition-specific content, authenticated access, or patient-initiated actions. At that point, they participate in disclosure. OCR’s clarification on tracking technologies did not create new obligations.
Read Post
Feroot

Why Content Security Policy Fails PCI 6.4.3 (And What QSAs Accept Instead)

Jan 13, 2026 By Feroot In Feroot
Content Security Policy looks like it was designed for PCI Requirement 6.4.3. You define which domains can load scripts on your payment page, the browser enforces it, and unauthorized code gets blocked. For teams drowning in third-party JavaScript, CSP feels like the obvious answer. Then you get to your audit, and the QSA starts asking questions CSP can’t answer.
Read Post
knowbe4

AI Deepfakes Are Impersonating Religious Figures to Solicit Donations

Jan 13, 2026 By KnowBe4 Team In KnowBe4
WIRED reports that deepfake attacks are impersonating pastors and other religious figures in order to scam congregations. Father Mike Schmitz, a priest who hosts a podcast with over a million followers, warned his listeners in November that AI-generated deepfakes were using his likeness to fraudulently solicit donations. WIRED found that several of these fake accounts are still active on TikTok, and they appear when a TikTok user searches for Father Schmitz.
Read Post
signmycode

Code Signing HSM Comparison for Secure Storage

Jan 13, 2026 By SignMyCode In SignMyCode
A Hardware Security Module (HSM) is a tamper-proof device that has been built to generate, hold, and securely use cryptographic keys. With regard to Code Signing, an HSM guarantees that your private key (s) will remain inside a secure environment, without the ability for anyone else to take or abuse them in any manner. By doing this, the likelihood of your key being stolen, duplicated, or otherwise compromised is significantly reduced.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.