Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

datadog

Securing the AI era: Outpace AI-powered attacks with unified security and observability

Jun 9, 2026 By Tim Knudsen In Datadog
Security teams are dealing with a fundamentally different operating environment than they were a few years ago. AI-assisted development is rapidly pushing more code and infrastructure into production, and according to Datadog’s 2026 State of DevSecOps report, 40% of running services have an exploitable vulnerability.
Read Post
datadog

Monitor Claude Enterprise activity with Datadog Cloud SIEM

Jun 8, 2026 By Kyra Abbu In Datadog
As Claude adoption expands across enterprises and workflows, security and compliance teams need to understand who is using Claude Enterprise, how it is accessed, and how it is administered and configured across the organization. The Claude Compliance API gives organizations access to valuable activity data that supports security monitoring, investigations, and governance initiatives.
Read Post
datadog

How to detect HTTP/2 abuse in Apache web server logs

May 27, 2026 By Mallory Mooney In Datadog
Apache HTTP Server is one of the most popular web servers in use today for engineering teams, and its prevalence naturally makes it a frequent target for attackers. In May 2026, the Apache Software Foundation patched CVE-2026-23918, a high-severity double-free vulnerability in Apache 2.4.66’s mod_http2 module. For teams not using Apache’s MPM prefork, the vulnerability would enable an attacker to crash worker processes or achieve remote code execution (RCE) in some specific cases.
Read Post
datadog

Securing AI agents: Why guardrail placement is a key design decision

May 22, 2026 By Yuki Matsuzaki In Datadog
When teams start building AI agents, especially with managed systems like Amazon Bedrock, they often wonder whether simply enabling guardrails is enough to secure their agents. A framework like Amazon Bedrock Guardrails provides a solid foundation for content filtering and policy enforcement, but having guardrails in place is only part of the equation.
Read Post
datadog

Improve API authentication detection with Datadog

May 22, 2026 By Matthieu Roux In Datadog
Many organizations have hundreds or thousands of API endpoints across their services, each of which handles authentication differently. For example, one service might rely on standard headers like Authorization: Bearer, while another uses an API key, and a third uses a custom JSON Web Token header with mechanisms or naming conventions specific to the team that built it.
Read Post
datadog

Reduce CVE noise with OpenVEX assessments in Datadog

May 20, 2026 By Tim Mannai In Datadog
Software composition analysis (SCA) tools have become essential in modern security programs. They continuously scan software supply chains and match component fingerprints against Common Vulnerabilities and Exposures (CVE) databases to surface vulnerabilities in dependencies. SCA tools are effective at scale, but they introduce a persistent challenge: Not every flagged vulnerability actually presents a risk.
Read Post

Reviewing Malicious PRs at Scale with AI

May 6, 2026 By Datadog In Datadog
As AI coding assistants accelerate software development, the volume of pull requests at Datadog has grown to nearly 10,000 per week, increasing the risk that malicious changes slip through due to review fatigue. To address this, Datadog built BewAIre, an LLM-powered code review system designed to identify malicious source code changes introduced by threat actors. By reducing approval fatigue for developers while increasing friction for attackers, BewAIre guides human reviewers to the areas where judgment matters most, without slowing developer velocity.
View Video

Incident Response: Keeping Cool When Everything's on Fire

May 6, 2026 By Datadog In Datadog
The DevOps revolution broke down the traditional silos between development and operations, fundamentally reshaping how we build and maintain software. But with this evolution came an inevitable, and often stressful, reality for many engineers: being on-call and responding to incidents. In this session, Daljeet Sandu will explore how on-call has evolved in recent years, highlight proven best practices, and share insights into the future of incident response in DevOps.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.