Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

aikido

The 'no nonsense' list of security acronyms

Jun 26, 2025 By Joel Hans In Aikido
You're probably here because you’re inundated (and fed-up!) with the number of acronyms around security tools, platforms, and processes. Every software provider wants to differentiate themselves in a crowded space with new capabilities, leaving developers and security pros exhausted.‍ So here’s our no nonsense list of security acronyms to help you figure out what’s what.
Read Post

EP 10 - A new identity crisis: governance in the AI age

Jun 26, 2025 By CyberArk In CyberArk
In this episode of Security Matters, host David Puner sits down with Deepak Taneja, co-founder of Zilla Security and General Manager of Identity Governance at CyberArk, to explore why 2025 marks a pivotal moment for identity security. From the explosion of machine identities—now outnumbering human identities 80 to 1—to the convergence of IGA, PAM, and AI-driven automation, Deepak shares insights from his decades-long career at the forefront of identity innovation.
View Video

API Security Is a Business Problem-Not Just an IT One

Jun 26, 2025 By Wallarm In Wallarm
APIs are more than technical components—they're business-critical assets. In this powerful moment, Jeremy Dodson lays out why frameworks aren't enough and why companies must treat API security as a core business priority. Security leaders: it’s time to shift your mindset and protect real data flows, not just check boxes.
View Video
device authority

How to Reduce IoT Risk with Policy-Based Identity Automation

Jun 26, 2025 By Louise José In Device Authority
Policy-based identity management transforms security administration from individual device and user management to comprehensive policy frameworks that automatically govern identity lifecycle, access controls, and security enforcement across entire IoT ecosystems. The key elements of policy-based identity management include defining user roles, managing user access, implementing identity governance, and leveraging role based access control to ensure appropriate access and compliance.
Read Post

The MemcycoFM Show: Episode 5 - DNS Cache Poisoning Prevention: How to Protect Accounts in Real-Time

Jun 26, 2025 By Memcyco In Memcyco
For security teams, it’s no great revelation to say that DNS cache poisoning prevention is essential for guarding against attacks using that vector. But it’s easier said than done. While traditional network-layer defenses like DNSSEC reduce poisoning risk, they can’t fully prevent it. Downstream – after redirection – bad actors await, ready to harvest credentials, bypass MFA, and take over accounts.
View Video
indusface

Secrets Scanning: A Critical Practice for Protecting Sensitive Data in Code

Jun 26, 2025 By Aayush Vishnoi In Indusface
With the rise of CI/CD pipelines, cloud-native development, and globally distributed teams, sensitive credentials like API keys, tokens, and database passwords often slip into source code. Sometimes accidentally, sometimes under pressure to deploy fast. This is not a rare mishap. A recent study found that 34% of API security incidents involve sensitive data exposure. And according to Cyble, over 1.5 million.env files containing secrets have been discovered in publicly accessible environments.
Read Post
fidelis security

How Fidelis Deception Strengthens Network Detection and Response

Jun 26, 2025 By Fidelis Security In Fidelis Security
Network Detection and Response systems excel at monitoring network traffic and identifying patterns, but they face inherent challenges with sophisticated threats that mimic legitimate behavior. Fidelis Deception addresses these NDR limitations by creating definitive detection points that eliminate ambiguity in threat identification.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.