Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

cloudflare

Cloudy Summarizations of Email Detections: Beta Announcement

Aug 29, 2025 By Ayush Kumar In Cloudflare
Organizations face continuous threats from phishing, business email compromise (BEC), and other advanced email attacks. Attackers adapt their tactics daily, forcing defenders to move just as quickly to keep inboxes safe. Cloudflare’s visibility across a large portion of the Internet gives us an unparalleled view of malicious campaigns. We process billions of email threat signals every day, feeding them into multiple AI and machine learning models.
Read Post

The Human Factor: Don't Let Your Identity Become App-Rehended

Aug 29, 2025 By Lookout In Lookout
*Catch Lookout's On-Demand Session from Black Hat 2025!* Your digital identity is the crown jewel, and adversaries are bypassing traditional network and EDR defenses by weaponizing the human element. The modern kill chain has evolved, exploiting our most ubiquitous and often least-secured endpoints: mobile devices. This isn't theoretical; it's the operational reality for sophisticated threat actors.
View Video

Safeguard: Using the double-edged sword of AI for good

Aug 29, 2025 By One Identity by Quest In One Identity
Examine the function of AI in security tools, and how this double-edged sword can be used for good or ill in the cybersecurity sphere. Plus, see its integration into an identity fabric and get a glimpse into its responsible use – paired with the human element – in One Identity Safeguard.
View Video
teleport

Immediate, Automated, Compliant Access Enforcement with Teleport JIT Watcher

Aug 29, 2025 By Dan Johns In Teleport
A common request we hear at Teleport is for immediate Just-in-Time (JIT) access. Users shouldn't have standing access to resources, but they do need an audited escalation and approval process they can personally execute when access is required. This raises an important challenge: how do we ensure users only access the resources they truly need, without creating access sprawl or slowing teams down?
Read Post
nightfall

Securing Shadow AI: 6 Principles from Security Leaders Who've Been There

Aug 29, 2025 By Chris Martinez In Nightfall
Everyone's racing to use AI right now. But securing AI adoption while maintaining productivity—getting visibility into shadow AI, educating employees without blocking innovation, and building governance that actually works—is harder than it looks. We recently hosted a discussion between Anant Mahajan, Head of Product at Nightfall, and Yunique Demann, VP of Information Security at TPx, to dig into the practical realities of AI governance.
Read Post
ionix

FreePBX Authentication Bypass Leading to SQL Injection and RCE (CVE-2025-57819)

Aug 29, 2025 By Tal Zamir In IONIX
A new critical vulnerability has been identified in FreePBX, the widely adopted open-source, web-based graphical user interface for managing Asterisk PBX systems. Tracked as CVE-2025-57819, this flaw affects FreePBX versions 15, 16, and 17 and enables unauthenticated attackers to bypass administrator login controls. Once inside, threat actors can perform SQL Injection attacks that lead directly to remote code execution (RCE).
Read Post
keeper

Secure More with Less: Achieving Cost Avoidance in Government with Keeper's Unified Platform

Aug 29, 2025 By Kim Howard In Keeper
Government agencies are under increasing pressure to reduce operational costs while strengthening their defenses against costly cyber threats. Legacy systems and disjointed security tools lead to growing complexity, inefficiencies and higher expenses. Keeper Security offers a unified cybersecurity platform that eliminates the need for legacy Privileged Access Management (PAM) solutions, traditional password management, endpoint privilege management, remote access tools and secrets management.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.