Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Featured Post
Keep an eye out, breaches leave patterns

Keep an eye out, breaches leave patterns

May 5, 2026 By Afnan Zoheb In ManageEngine
Most major security breaches in the last five years had one thing in common. Not just unpatched vulnerabilities, but a decision someone made to live with it. A VPN credential that never got rotated, an admin account that outlasted the employee who owned it, or a privilege elevation request approved because it was easier than asking questions. The details change, but the pattern doesn't. This isn't a story about sophisticated attackers. It's a story about blind spots, misplaced trust, and what happens when organizations mistake the absence of an incident for the presence of security.
Read Post
Corelight

5 signs it is time to upgrade your DIY Zeek deployment

May 5, 2026 By Matt Ellison In Corelight
You already know the immense value of open-source Zeek. It provides the absolute gold standard of network evidence, giving you the deep visibility required to defend your organization. You have the right strategic foundation, but the operational workload of managing a do-it-yourself (DIY) deployment at scale is likely draining your energy.
Read Post
cato networks

Beyond Patch SLAs: Continuous Protection in the Frontier AI Era

May 5, 2026 By Dr. Guy Waizel In Cato Networks
Frontier AI is changing the economics of cybersecurity. Advanced models can accelerate vulnerability research, exploit-path analysis, attack planning, and disclosure workflows, making vulnerability discovery more continuous, automated, and AI-driven. This raises the bar not only for enterprises that need faster protection, but also for cybersecurity vendors that must adapt secure development, production security, runtime validation, incident response, and AI-assisted workflows to keep pace.
Read Post
cato networks

Threat Brief: CVE-2026-41940: Critical cPanel & WHM Authentication Bypass Actively Exploited in the Wild

May 3, 2026 By Dr. Guy Waizel In Cato Networks
CVE-2026-41940 is a critical authentication bypass vulnerability in cPanel & WHM, including DNSOnly, and WP Squared. The issue affects cPanel software versions after 11.40 and can allow an unauthenticated remote attacker to gain unauthorized access to exposed hosting control panels. cPanel released patched versions and published official remediation and detection guidance.
Read Post
cato networks

Cato Joins OpenAI's Trusted Access for Cyber (TAC) to Advance AI-Driven Defense

May 1, 2026 By Elad Menahem In Cato Networks
Over a decade ago, Cato Networks helped shift cybersecurity to a new frontier: a converged, cloud-native platform that combines security and networking. As a long-time security researcher, the Cato platform was a radical change, providing researchers with the rich context and end-to-end visibility we needed to identify threats faster and deliver accurate protections.
Read Post
Corelight

The 7 sins killing your SOC efficacy (and why NDR is the cure)

Apr 30, 2026 By Josh Porto In Corelight
Network Detection and Response (NDR) is a glorious tool for spotting the stuff that slips past the velvet ropes. The weird lateral movement. The "why is Finance talking to a printer in Moldova" moment. The internal reconnaissance that looks harmless until it's suddenly not. What can't NDR do? Trick question. It can't walk the dog, run a marathon, or explain to leadership why "just block Russia" isn't a complete strategy. NDR is your truth serum.
Read Post

Beyond the Firewall: Growing Your MSP with NDR

Apr 30, 2026 By WatchGuard Technologies In WatchGuard
A firewall is essential, but it’s no longer enough. Today’s attackers slip past perimeter controls, hide in encrypted traffic, and move fast once they get inside. Network Detection and Response (NDR) delivers always-on network visibility, earlier threat detection, and faster response, enabling you to see and stop what firewalls miss.
View Video
cato networks

Cato CTRL Threat Research: New Vulnerabilities in NVIDIA NeMo and Meta PyTorch Enable Full System Compromise

Apr 29, 2026 By Inga Cherny In Cato Networks
Cato CTRL has discovered high-severity vulnerabilities in NVIDIA NeMo (CVE-2025-33236 with a CVSS score of 7.8) and Meta PyTorch that turns AI model files into remote code execution (RCE) vectors. The NeMo vulnerability allows RCE by importing a malicious AI model. The NeMo framework silently executes threat actor-controlled code with no warning.
Read Post

Let's Talk Security: Operationalizing Zero Trust

Apr 28, 2026 By Forescout Technologies In Forescout
In this conversation, Forescout CEO Barry Mainz sits down with Dr. Chase Cunningham, also known as “Dr. Zero Trust,” to unpack why Zero Trust is often harder to implement than expected in real-world environments. They also explore what changes when Zero Trust becomes universal (UZTNA)—extending across every connection, every asset, and every environment.
View Video

Bot Management vs. ThreatX: How to Stop Business Logic Fraud

Apr 28, 2026 By A10 Networks In A10 Networks
Bot Management vs. ThreatX: How to Stop Business Logic Fraud In this video, A10 Networks security expert Gary Wang explores the critical differences between dedicated bot management platforms and the ThreatX approach. If you are concerned about protecting your web applications from sophisticated fraud, this breakdown is essential viewing. Using a real-world scenario—a convenience store referral program being exploited by bad actors—Gary explains how attackers bypass standard defenses to commit "business logic" fraud.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.