Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

gitguardian

Trivy's March Supply Chain Attack Shows Where Secret Exposure Hurts Most

Mar 24, 2026 By Guillaume Valadon In GitGuardian
The Trivy story is moving quickly, and the latest reporting makes one thing clear: this is no longer just a GitHub Actions tag hijack. What started as a compromise of trivy-action, setup-trivy, and the v0.69.4 release has expanded into malicious Docker Hub images.
Read Post
nakivo

Setting the Number of VMware CPU Cores Per Socket: Best Practices

Mar 24, 2026 By NAKIVO Team In NAKIVO
When configuring processor settings for a new virtual machine, there are several key concepts to understand: how to calculate the number of processor cores per CPU and CPU cores per socket and how these settings affect the speed of virtual machines. In addition, it is important to understand what ensures better VM performance: limiting the number of processors and having more CPU cores or having more processors with fewer cores?
Read Post
nakivo

VMware vSphere HA and DRS Compared and Explained

Mar 24, 2026 By NAKIVO Team In NAKIVO
A VMware hypervisor allows you to run virtual machines on a single server. You can run multiple virtual machines on a standalone ESXi host and deploy multiple hosts to run more virtual machines. If you have multiple ESXi hosts connected via the network, you can migrate virtual machines from one host to another.
Read Post
cato networks

WebPromptTrap - New Indirect Prompt Injection Vulnerability in BrowserOS

Mar 24, 2026 By Dr. Guy Waizel In Cato Networks
Cato researchers have discovered a new indirect prompt injection exploit pattern workflow in BrowserOS (an open-source agentic AI browser). We named it “WebPromptTrap” because the prompt originates from untrusted web content and it traps users into approving an authorization step through a trusted-looking AI summary.
Read Post
Zenity

Securing the AI That Runs the Enterprise: Zenity + ServiceNow SecOps

Mar 24, 2026 By Andrew Silberman In Zenity
As agents take on more responsibility, they also introduce a new class of security challenges, ones that traditional tools weren’t built to handle. This is why Zenity and ServiceNow have partnered to bring end-to-end agent security directly into ServiceNow SecOps, where security teams already operate.
Read Post

The Future of Intelligent SOC -- Customer Brown Bag -- March 19th, 2026

Mar 24, 2026 By Sumo Logic, Inc. In Sumo Logic
Join us as Christopher explores how to build a modern, intelligent SOC with decision-ready detection, shared adversary context, and automated response that empowers faster, more confident security operations, featuring the role of the Sumo Logic SOC Agent in streamlining investigations and accelerating response.
View Video

Ep 35: RSAC FOMO? Dojo AI Demo

Mar 24, 2026 By Sumo Logic, Inc. In Sumo Logic
As we gear up for RSA Conference, we give viewers a sneak peek at Sumo Logic's SOC analyst agent, which turns a 45-minute analyst investigation into a five-minute AI-powered sprint. We walk through live demos showing how the agent automatically generates queries, maps threats to MITRE ATT&CK, and hands you recommended remediation actions all without making you switch tabs or tools. We also show off MCP integration that lets teams collaborate on active investigations right from Slack, because no one should be chained to their war room when there's dinner to be had.
View Video
levelblue

LevelBlue and SentinelOne: Advancing Integrated, IntelligenceDriven Security Operations

Mar 24, 2026 By Bob McCullen In LevelBlue
Today, I’m excited to share news that represents a major step forward in how LevelBlue helps organizations strengthen their resilience and modernize their security operations. LevelBlue and SentinelOne have entered into a strategic global partnership to deliver integrated, intelligence‑driven security operations and incident response for organizations worldwide.
Read Post
Forward Networks

Your Security Vision Has a Network Blind Spot

Mar 24, 2026 By Forward Networks In Forward Networks
Every organization has invested in endpoint detection, identity, and cloud security, yet breaches continue to occur. You’ve secured the individual points but lack the context of how those points connect; you haven't secured the paths attackers navigate. Security teams are running more tools than ever: EDR on every endpoint, MFA for every identity, CSPM on every cloud tenant, and SIEMs ingesting terabytes of logs.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.