Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Multimodal Attacks and Model Drift: The Future of AI Exploitation

Nov 20, 2025 By A10 Networks In A10 Networks
Multimodal Attacks and Model Drift: The Future of AI Exploitation A10 security experts Jamison Utter, Diptanshu Purwar, and Madhav Aggarwal discuss the critical vulnerabilities emerging from multimodal AI agents (systems that perceive, decide, and act) and the absolute need for security mechanisms external to the Large Language Model (LLM) itself. The experts dive into why traditional security is failing and what the next evolution of defense must look like.
View Video
sentrium

How penetration testing supports ISO 27001 certification

Nov 20, 2025 By Adoniel Martinez In Sentrium
ISO 27001 provides a comprehensive framework to ensure organisations understand and manage their information security risks, and validates that appropriate controls are in place to mitigate those risks. Penetration testing plays a critical role in this process by validating security measures and exposing vulnerabilities before they become incidents.
Read Post
reach security

Proactively Identify and Eliminate Defensive Weaknesses with Cybersecurity Domain-Specific AI

Nov 20, 2025 By John Dominguez In Reach Security
AI is everywhere. I live in San Francisco, and a day doesn’t go by that I don’t see a billboard, an advertisement on the side of a bus, or a tech bro’s hoodie with two big letters on it: AI. It’s no different in cybersecurity marketing – AI terminology is everywhere. But too often, it’s tacked on as a buzzword – a thin layer washed on top of existing security tools, with little real impact. This makes it tricky to decipher what’s real and what’s hype.
Read Post
1Password

Now available via Renaissance: 1Password Enterprise Password Manager - MSP Edition

Nov 20, 2025 By Elgin McLaren and Olivia Donnell In 1Password
We’re excited to announce that today, 1Password Enterprise Password Manager – MSP Edition is now available through Renaissance, a leading IT distributor serving MSPs across the Island of Ireland. This partnership enables even more MSPs to access 1Password through local channels, streamlining their procurement and billing processes while expanding access to enterprise-grade credential security.
Read Post
certkit

Searching Certificate Transparency Logs (Part 2)

Nov 20, 2025 By Eric Brandes In CertKit
In the last post we discussed why we’re building our own Certificate Transparency (CT) search tool. There’s good background on the CT ecosystem in that post, so check it out if you haven’t. This post assumes a certain understanding of terminology covered previously. Now that we know where the CT logs live, and the different kinds of logs, we need to start reading them.
Read Post

Introducing The GitGuardian IDE Extension for VS Code, Cursor, Antigravity, And Windsurf

Nov 20, 2025 By GitGuardian In GitGuardian
Ship fewer secrets with your code. In this video we walk you through installing and using the GitGuardian IDE extension in Visual Studio Code, Cursor, Antigravity, Windsurf, and any VS Code compatible editor. You will see how the extension uses ggshield, the GitGuardian command line tool, to scan for 500+ types of secrets and catch plaintext credentials as soon as you save a file, long before they can be committed.
View Video
obrela

Sovereignty in the Age of Digital Interdependence: Rethinking Security for the Modern State

Nov 20, 2025 By Nik Levantis In Obrela
In a world defined by digitization and interconnectivity, the question of sovereignty extends far beyond physical borders. Nations today find themselves grappling with a new reality: how to assert control and protect critical assets when the backbone of their digital existence—cloud infrastructures, distributed systems, and global platforms—operates across jurisdictions, providers, and geopolitical lines.
Read Post

Prompted to Fail: The Security Risks Lurking in DeepSeek-Generated Code

Nov 20, 2025 By CrowdStrike In CrowdStrike
CrowdStrike research into AI coding assistants reveals a new, subtle vulnerability surface: When DeepSeek-R1 receives prompts the Chinese Communist Party (CCP) likely considers politically sensitive, the likelihood of it producing code with severe security flaws increases by up to 50%. Stefan Stein, manager of the CrowdStrike Counter Adversary Operations Data Science team, joined Adam and Cristian for a live recording at Fal.Con 2025 to discuss how this project got started, the methodology behind the team’s research, and the significance of their findings.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.