Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

netskope

New DOGE Big Balls Ransomware Tools in the Wild

May 7, 2025 By Leandro Fróes In Netskope
During the Netskope Threat Labs hunting activities, we came across a payload that led us to a multi-stage chain involving several custom PowerShell scripts, open source tools (such as Mimikatz and Rubeus), vulnerable drivers being exploited, and red team framework payloads (such as Havoc). After further investigation, we discovered these files were part of the arsenal of what seems to be an operator of a ransomware named “DOGE Big Balls,” a variant of the Fog ransomware.
Read Post
teleport

Exploring DORA Compliance in Practice: Key Takeaways from Our Recent Webinar

May 7, 2025 By Teleport In Teleport
When I speak to customers across EMEA, one thing is clear: regulations like the EU's Digital Operational Resilience Act (DORA) are becoming very real, very fast. Financial institutions and their service providers are being asked to do more than ever before to demonstrate secure operations, especially when it comes to managing access to infrastructure. That's exactly why we hosted a recent webinar in partnership with Falx. The goal?
Read Post
netwrix

What Is SPN and What is It's Role in Active Directory and Security

May 7, 2025 By Joe Dibley In Netwrix
What is an SPN? Even a Windows Admin with some experience with Active Directory may be unaware of the role that Service Principal Names have in domain environments. A security principal name (SPN) is a unique identifier that links a specific service instance to the account running it, enabling clients to authenticate and connect to the right service within Active Directory (AD).
Read Post
Zenity

Shadow AI: A Wake-Up Call for AI Security and Governance

May 7, 2025 By Andrew Silberman In Zenity
In the ever-evolving landscape of technology, the allure of AI tools and agents is undeniable. They promise enhanced productivity, innovative solutions, and a competitive edge. With more tools and platforms available that democratize the usage and creation of AI systems, there is a surge in AI tools that are being built, customized, and deployed for business operations. However, the gold rush for AI comes with significant risks that cannot be ignored.
Read Post
mend

Top Ten Tips to Choose a Great SAST Tool

May 7, 2025 By Adam Murray In Mend
Static application security testing (SAST) has matured from a gate-at-the-end to a developer-first discipline. Forrester’s Static Application Security Testing (SAST) 2025 landscape report highlights why: attack volume is rising, code is released at least monthly in one in four teams, and AI generated code is flooding pipelines with even more code to secure. The tools that succeed are those that shorten mean time to remediate (MTTR) while fitting the way modern teams build.
Read Post
Key Security Considerations When Scaling In House

Key Security Considerations When Scaling In House

May 7, 2025 By SecuritySenses In SecuritySenses
If you are looking to expand your capabilities by scaling up your in-house servers and storage solutions, it's always best to take a security-first approach. For the most part, scaling up will consist of the same security measures - both physical and digital - being scaled up equally. However, there may be some additional factors that you should consider, for example how you plan to scale and the equipment that you intend to bring on.
Read Post
Solana In The Spotlight: Will 2025 Be Its Breakout Year?

Solana In The Spotlight: Will 2025 Be Its Breakout Year?

May 7, 2025 By SecuritySenses In SecuritySenses
The Solana platform, acclaimed for its speed, scalability, and innovation, was established back in 2017 by Anatoly Yakovenko, a skilled software engineer with experience at Qualcomm. Solana supports high-speed and low-cost transactions on a single-layer blockchain. This means that decentralized finance (DeFi) protocols, game finance (GameFi) apps, and decentralized physical infrastructure networks (DePIN) networks can scale without requiring major infrastructure changes. Solana's chief innovation is speed. It can process approximately 65,000 transactions per second, so it's considerably faster than Ethereum.
Read Post
Aviation Training Meets Global Demand: How a U.S. Flight School Is Empowering International Talent - with $10,000+ in Tuition Savings

Aviation Training Meets Global Demand: How a U.S. Flight School Is Empowering International Talent - with $10,000+ in Tuition Savings

May 7, 2025 By SecuritySenses In SecuritySenses
Aviation has long been considered one of the most tightly regulated and security-conscious industries in the world. As global cybersecurity concerns expand beyond digital firewalls to physical domains - including transportation, air traffic systems, and supply chain logistics - pilot training has become part of a broader conversation around operational safety and human reliability.
Read Post

Random but Memorable - Episode 14.8: World Password Day Special

May 6, 2025 By 1Password In 1Password
It’s our World Password Day Special! Tune in as we answer all your burning questions about passwords, passkeys, 2FA and more. In Watchtower Weekly, we debate why your next security hire might be an algorithm. Sticking with the password theme, we then discuss why Gen Z still reuse passwords despite being aware of the security risks. If that wasn’t enough, in Alternative Security Questions we ask Roo, Sara, and Matt what they would hoard in a zombie apocalypse.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.